Data Security Analyst - Milestone Technologies : Job Details

Security Data Classification and DLP Analyst needed for a remote project!

Experience with Data Classification and Data Loss Prevention is required.

Pharmaceutical/Biotech/Medical Devices/Life Sciences HIGHLY preferred.

This is a W2 role only. No C2C.

$75.00 an hour supporting EST time zone (7 a.m. EST start time to accommodate European partners)

Position Notes:

• Role will implement DLP (Data Loss Prevention) at new location(s). Basic data classification policy – gap is current state does not classify most of the docs.
• Role will need to help classify docs and implement the DLP. The use of Cyera for tagging and use classification by default.
• Data engineers to validate the classification is correct. Then work with the DLP team and tools.
• Client has a current DLP resource. Our role is to be a liaison between BO and the tech DLP team.
• Tool is Cyera. Implementation for DLP is Netskope.
• Requirement is for any DLP tools, knowledge, to support the DLP Netskope person(s).
• Familiar with RIM (Records Information Management)

Job Description:

• Hands-on experience with data classification frameworks (e.g., sensitivity labels like public, confidential, restricted).
• Knowledge of records lifecycle (creation, usage, storage, and disposition).
• Familiarity with retention schedules and compliance with legal, regulatory, and corporate policies.
• Understanding of physical and electronic records management processes.
• Certification (e.g., Certified Records Manager (CRM) or Information Governance Professional (IGP)).
• Familiarity with tools for classification (e.g., Microsoft Purview, Boldon James, Titus).
• Knowledge of regulatory requirements for data (e.g., GDPR, CCPA, HIPAA, PCI-DSS).
• Ability to identify and classify structured vs. unstructured data.
• Expertise in deploying and managing DLP solutions (e.g., Cyera, Netskope).
• Skills in defining DLP policies and rules to prevent unauthorized data access or leakage.
• Incident response and investigation experience for DLP alerts.
• Some training experience is a preferred
• DLP and Data File Exceptions experience is a preferred
• Training awareness experience – training of classification to end users
• Communication skills
• Exceptions to the classification and able to describe to the end users

Professional Experience:

Implementation and Management:

• Proven track record in implementing RIM, data classification, or DLP systems.
• Hands-on experience in rolling out data classification and DLP policies at scale.

Risk and Compliance:

• Experience working in regulated industries (e.g., healthcare, finance, or government) and managing compliance requirements.
• Audit and monitoring activities tied to RIM, data classification, and DLP processes.

Cross-functional Collaboration:

• Demonstrated ability to collaborate with IT, legal, compliance, and business teams for governance projects.

Metrics and Reporting:

• Experience in generating reports and dashboards to measure the effectiveness of RIM, data classification, and DLP strategies.

Certifications and Education

• Relevant certifications (e.g., CRM, CIP, CISSP, CISM, GIAC certifications for DLP).
• Advanced degrees or coursework in information governance, cybersecurity, or IT management.

Soft Skills

• Analytical thinking and problem-solving skills.
• Strong communication skills for policy advocacy and training end-users.
• Detail-oriented, with a proactive approach to handling sensitive information.

Bonus Points

• Case studies or projects highlighting RIM/DLP implementation success.
• Familiarity with emerging technologies like AI/ML in data classification and information protection.
• Participation in industry forums or thought leadership on data security topics.