Data Protection Senior Analyst

at  Zoetis

Position Summary:
Zoetis is looking for a candidate to join its growing Information Security Team as a Data Protection Sr. Analyst. This position requires at least 3-5 years of experience with Data Loss Prevention and Classification technologies, processes, and events. The Data Protection Sr. Analyst will be responsible for analysis, investigation and responding to events involving sensitive data across the organization.

Responsibilities:

• Support Data Protection Service including Data Loss Prevention and Information Classification technologies
• Triage events and work with Business Units to understand sensitive data, where it resides and determine how to protect it
• Liaise with Legal, Privacy, and Human Resources to investigate and escalate incidents
• Establish metrics and reporting cadence to illustrate service performance and potential areas of improvement
• Analyze security events to identify patterns or anomalies consistent with Indicators of Compromise (IOCs) and determine Tactics, Techniques, and Procedures (TTPs) used by threat actors
• Review logs/events/alerts, triage and take action based on severity and potential impact to the organization.
• Evaluate/implement defenses and countermeasures to reduce associated risks
• Process creation and maintenance to standardize analysis and enable quick response actions
• Produce valuable and informative security reports driven by analysis and evidence derived from analysis
• Keeping up with industry news including topics like vulnerabilities, attack types, defenses and countermeasures

Education & Experience:

• Bachelor’s degree in Computer Science, Information Security, Information Systems, Engineering, Sciences or related field
• 3-5+ years working as a data protection analyst working with data loss protection and classification technologies
• Ability to work independently, manage multiple priorities, and work in an unstructured environment
• Excellent written, verbal, and presentation skills; graphic design experience a plus
• Participation in information security industry forums or other information security organizations
• 2+ years of programming/scripting language use such as Python, JavaScript or PowerShell
• Strong analytical skills to effectively correlate large data sets to understand and spot patterns
• Ability to critically analyze and interpret data to draw logical conclusions
• Experience with data protection technologies, Data Loss Prevent (DLP), Cloud Access Security Broker (CASB) and classification tools
• Must be able to work both autonomously and in group settings
• Able to interpret and explain complex IT issues using simple terminology
• Industry certifications like CISSP, CEH, GCIH, GREM or similar/equivalent a plus

Travel Requirements: <10%
Full time
Regular
Colleague
Any unsolicited resumes sent to Zoetis from a third party, such as an Agency recruiter, including unsolicited resumes sent to a Zoetis mailing address, fax machine or email address, directly to Zoetis employees, or to Zoetis resume database will be considered Zoetis property. Zoetis will NOT pay a fee for any placement resulting from the receipt of an unsolicited resume.
Zoetis will consider any candidate for whom an Agency has submitted an unsolicited resume to have been referred by the Agency free of any charges or fees. This includes any Agency that is an approved/engaged vendor but does not have the appropriate approvals to be engaged on a search.
Zoetis is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, color, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status or any other protected classification. Disabled individuals are given an equal opportunity to use our online application system. We offer reasonable accommodations as an alternative if requested by an individual with a disability. Please contact Zoetis Colleague Services at zoetiscolleagueservices@zoetis.com to request an accommodation. Zoetis also complies with all applicable national, state and local laws governing nondiscrimination in employment as well as employment eligibility verification requirements of the Immigration and Nationality Act. All applicants must possess or obtain authorization to work in the US for Zoetis. Zoetis retains sole and exclusive discretion to pursue sponsorship for the acquisition or maintenance of nonimmigrant status and employment eligibility, considering factors such as availability of qualified US workers. Individuals requiring sponsorship must disclose this fact. Please note that Zoetis seeks information related to job applications from candidates for jobs in the U.S. solely via the following: (1) our company website at www.Zoetis.com/careers site, or (2) via email to/from addresses using only the Zoetis domain of “@zoetis.com”. In addition, Zoetis does not use Google Hangout for any recruitment related activities. Any solicitation or request for information related to job applications with Zoetis via any other means and/or utilizing email addresses with any other domain should be disregarded. In addition, Zoetis will never ask candidates to make any type of personal financial investment related to gaining employment with Zoetis

• Support Data Protection Service including Data Loss Prevention and Information Classification technologies
• Triage events and work with Business Units to understand sensitive data, where it resides and determine how to protect it
• Liaise with Legal, Privacy, and Human Resources to investigate and escalate incidents
• Establish metrics and reporting cadence to illustrate service performance and potential areas of improvement
• Analyze security events to identify patterns or anomalies consistent with Indicators of Compromise (IOCs) and determine Tactics, Techniques, and Procedures (TTPs) used by threat actors
• Review logs/events/alerts, triage and take action based on severity and potential impact to the organization.
• Evaluate/implement defenses and countermeasures to reduce associated risks
• Process creation and maintenance to standardize analysis and enable quick response actions
• Produce valuable and informative security reports driven by analysis and evidence derived from analysis
• Keeping up with industry news including topics like vulnerabilities, attack types, defenses and countermeasure