CV/Mission de Data Analyst DLP freelance

Exemple de missions de Pacome,
Data Analyst DLP habitant ?

EXPERIENCE PROFESSIONNELLE

2020- Security Consultant- Symantec DLP Engineer @ Santander Bank UK
 Support the Symantec DLP Email & Web infrastructure
 Ensure 3rd Line support to end-users & other technical colleagues

March 2018 – Sept 2019: Contractor-Security Consultant - Symantec DLP Specialist, Experian UK, Nottingham
Responsibilities: In the Global Security Team, I was primarily responsible for the administration of all the data-at-rest (DAR) scanning activities of Experian across the globe (North America, EMEA, APAC) to ensure that no sensitive data is saved on all corporate shares, SharePoint, Cloud to ensuring that Experian Data Security and Handling policy is not breached by internal users.
Configure, Test and Schedule all scanning targets and Performed full DAR Scanning including rules settings
Validate all Full scanning result and outputs for each region before remediation is undertook by Risk Officers
Run workshop and Provide DLP DAR training on incident remediation to all 60 Experian Risk Managers
Design and implement DAR procedures for effective DLP incident remediation management
Provide support to all Risk Officers using the DLP tool to manage their DLP incidents
Run Regular meeting with the developer team to help integrate the ticketing of DLP Incident with ServiceNow
Provide relevant DLP documentation and support to ServiceNow engineering to help setup the DLP ticketing

Oct 2018 – March 018: Contractor- Security Consultant – DLP & Data Protection, Natixis Bank, Paris, France
Responsibilities: In the Application Data Protection team, I am part of the team primarily responsible for the testing and deployment and administration of the security solution to help the Bank protect its data at different levels in Data Classification, Data Loss Prevention, Data Anonymisation and Masking, Enterprise Data Encryption and Database Encryption, Trusted Services
I worked on three POC projects to help deploy Hytrust DataControl for VMs, Gemalto Keysecure and Maarch Trusted Services
Request servers and Install on VMware the Gemalto Keysecure servers and the Hytrust servers and configure them
Run the POCs and Test the different encryption functionalities on the Hytrust and Gemalto Keysecure servers in the test environment, Liaise with IT Infrastructure team to ensure technical requirements are meet.
Resolve technical issues on the Hytrust and Gemalto Keysecure servers with the relevant vendors support
Assisted the Vendor (Maarch) Developers to install and test the Bank new in-house Trusted Services functionalities

Dec 2017 – Sept 2018: Contractor- Security Consultant – DLP Specialist- Symantec DLP, Deloitte UK, Audit and Risk Advisory, London
Responsibilities: In the information protection team, I was primarily responsible for the administration of the two security platforms (Symantec DLP and Veritas Data Insight) for one of the top UK insurance and investment company in the capacity of Senior Security Analyst and security Engineer. Daily tasks cover BAU and ad hoc project work on these platforms.
Support and Administration of the Symantec DLP application
Support DLP policies (Configuration, Testing, Reviewing of policy rule sets, response rules, Fine tuning) and Review policies for Data-in-Motion, Data-in-Use, and Data-at-Rest Insider Threat Policies to ensure effectiveness
Scheduled, Performed Data-at-Rest Scanning, Configured Discovery scanning targets
Raised change requests to implement changes of DLP configuration and parameters when required
Handled and resolved infrastructure incidents on the DLP platform based on the recommendations from the Vendor
Administered, Maintained, Patching of 24 DLP servers including a Remote Indexer
Performed daily system administration operational checks and monitoring duties
Co-ordinate with relevant IT teams and Symantec to help implement changes in the DLP platform to help resolve DLP technical incidents.
Followed the incident response process through events triage to escalations to Level 2 team of the managed client
Support and Administration of the Veritas Data Insight application including resolving any technical issues
Performed daily operational check and monitoring of logs, Registering new scanning targets
Provide data access intelligence to assist Security teams in the Investigation of Data breaches
Performed level 1 triage and investigation for Data-at-Rest events in violation of DLP policy using Data Insight
Managed and Performed regular Data Insight scanning to ensure filers are updated with Data access intelligence
Raised change requests to help on board new scanning targets

DLP Service Delivery Reporting
Produced ad hoc DLP reports for the client, Produced the DLP service monthly reports for management review
Created and Maintained all DLP and Data Insight Operational procedures including Filers On boarding, Run book, DLP Incident management, DLP project documentation
Documented event analysis and writes comprehensive reports of DLP technical incident handled
Provide advice to the client to help streamline their current DLP processes and procedures

Additional skills: Support Administration of the Cyber Ark platform (In the information protection team, in addition to the above described my daily BAU work, I was also supporting the Cyber Ark services when needed to cover PAM Analyst tasks:
Safe creation for IT infrastructure team (Provisioning of the safe with permissions, Adding of required AD groups)
Platforms creation when requested, On boarding of new accounts when required with relevant permission
Monitoring of some specific privileged account activities (Root and Super admin accounts)
Unlocking user accounts and Reconcile privileged account to help resolve access issues
Handling of all request sent to our queue from IT service Desk

Oct 2016 Maintenant
Analyste Securité Informatique DLP
Corporate Security
Groupe Vodafone, UK

Responsabilités
Chargé de veiller sur la sécurité de l information du groupe Vodafone et sur la conformité aux normes PCI DSS, éviter des fuites de données confidentielles et sécrètes du groupe Vodafone pour permetre aux utilisateurs finaux du groupe des 25 marchés locaux de rester conformes à la politique générale de sécurité de l'information du groupe.

Cyber Surveillance, Détection d Incidents de Sécurité Gérer les incidents de sécurité en utilisant des logiciels DLP, informer rapidement et efficacement les employés concernés sur les incidents réels.

Resoudre les Incidents de Sécurité Examiner le contenu des documents, examiner les fuites de données causées par les employés, les encourager ou aider à reclassifier les documents de manière appropriée conformément à la politique de classification des données du groupe Vodafone, veiller à ce que ces informations confidentielles soient supprimées rapidement du Cloud.

Transmettre les Dossiers non résolus à l équipe DLP Investigation pour mener les enquêtes Forensics, Collecter les preuves nécéssaires et contacter au niveau local les équipes de sécurité, le RH afin de resoudre l incident le plus rapidement possible.

Assurer la Cyber Surveillance Preventive Pour tous les documents et données envoyés par les utilisateurs finaux de Vodafone sur le Cloud via Ms Office365 Yammer , SharePoint et OneDrive afin d assurer la conformité des utilisateurs finaux à la politique de sécurité de l'information du groupe Vodafone et éviter des perte de données.

Politiques et Procédures Évaluer régulièrement l'efficacité des règles DLP et faire des recommandations pour les améliorer, Participer au succès du projet DLP en prodiguant les conseils nécéssaires pour les formations de sensibilisation des employés de l'entreprise.

Assurer la liaison avec l'équipe de l'ingénierie de sécurité pour résoudre les problèmes techniques que rencontre le logiciel et pour metre en toutes les fonctionnalités requises pour gérer éfficacement les incidents DLP.

Avril-Sep 2016
Administrateur SOC - Securité Informatique
Groupe Co-Operative, UK

Responsabilités
Mission principale d aider la mise en place de l équipe SOC, et d assurer la collecte des logs et des evenements de securite et gestion des incidents de securite et apportuer un support administrative a tou sles niveux aux analyste de l equipe SOC.

IDS Suivre la procédure de resolution des incidents IDS, surveiller les alertes de sécurité de l IDS Cisco FireSight et effectuer un triage initial lorsque nécéssaire pour déterminer les évènements potentiellement malveillants et escalader les dossiers aux analystes de niveau 2 pour investiguer les incidents.
DLP Suivre la procédure de resolution des incidents DLP, organiser la collecte des logs et événements de sécurité DLP à partir de différentes logiciels DLP Symantec DLP, Cisco IronPort RSA DLP et WebSense DLP , Entamer le triage initial de ces alertes, traiter les incidents par l envoi d emails aux employés concernés, Transmettre les incidents DLP complexes pour des enquêtes plus poussées. Les alertes DLP incluent les alertes de perte potentielles de données par email, trafic Web ainsi que les alertes de non-conformité aux normes PCI DSS.
AV and Protection Endpoint Collecte de logs de sécurité à partir de nos consoles de sécurité Sophos et Kaspersky suite à des infections par des virus ou des logiciels malveillants sur les postes de travail, Effectuer un triage initial, Transmettre les incidents complexes aux analystes de niveau 2.
Incidents Pour Pertes de Matériels Creation de dossiers d incidents de sécurité pour perte de matériels Portables, Clé Fob RSA etc , Collecter les informations nécéssaires pour évaluer la perte potentielle de données et notifier l équipe Group Risk et Data Protection
Incidents Pour Emails Spam et Phishing Examiner les emails spams potentiellement malveillants transmis par les employés à l'équ...