The Data Protection & DLP Engineer is responsible for designing, implementing, and maintaining the organisationās data classification, data protection, and Data Loss Prevention (DLP) capabilities. Operating within the Cyber Security team and reporting directly to the CISO, this role ensures that sensitive data is correctly identified, labelled, monitored, and protected across the enterprise. The position requires strong analytical skills, deep technical expertise with DLP technologies, and the ability to collaborate with business stakeholders to translate regulatory and business requirements into effective security controls.
Key Responsibilities
ā¢ Analyse business requirements, regulatory constraints, and operational workflows to determine data classification and protection needs
ā¢ Develop and maintain a comprehensive data classification framework aligned with organisational risk appetite and industry best practices
ā¢ Collaborate with business owners to ensure accurate mapping of data types to classification levels.
ā¢ Design and implement data labelling and protection policies using, ensuring alignment with business requirements and approved security standards
ā¢ Create, fine-tune, and maintain automated policies for data discovery, labelling, encryption, and access control
ā¢ Configure the DLP tools to enforce data classification standards across web, email, cloud, and endpoint channels
ā¢ Oversee continuous tuning and optimisation of DLP systems to reduce false positives and ensure effective detection
ā¢ Manage daily DLP alerts and cases, ensuring timely investigation, triage, documentation, and resolution.
ā¢ Provide metrics, reporting, and insights to the CISO and leadership team regarding DLP activity, trends, and risk areas
ā¢ Conduct regular training and awareness sessions for employees to promote best practices in data handling and prevent data leakage