Data Protection Analyst

Our Mission:

Provide security teams with breakthrough visibility and control over all high-value enterprise data, transforming how organizations protect their data from IP theft and insider threats.

About the Role

This is an ideal opportunity for a highly motivated individual to get in on the ground floor as we build out our Professional Services and Managed Services functions at Cyberhaven. The Data Protection Analyst holds a key position in providing continuous value for our customers and is responsible for advancing the mission of identifying potential insider threats and investigating endpoint forensic incidents. You will be responsible for performing technical analysis of data security incidents, finding and exposing risk in a customers environment as well as handling documentation and project management aspects of incident response. You will also perform analysis of events and incidents.

You will become an expert on Cyberhaven’s Data Detection and Response platform, understand how it interacts with customers’ technology endpoints, and understand how our customers are trying to reduce data loss threats across the organization. You will help our customers operationalize Data Detection and Response!

You should be  comfortable speaking with security and customer operation teams. You must have technical depth, be “client obsessed”, and have proven experience with a SaaS-based data protection security product. Having the desire to take initiative, being obsessed with proving value for customers, and love working in a fast paced, high growth environment is key.

You will be reporting to the Head of Global Service within the Professional Services Organization.

What you’ll be doing:

• Serve as a subject matter expert on data protection security issues, understand external DLP market trends, and incorporate these insights to illustrate realized value for our customers

• Analyze Cyberhaven’s Data Detection and Response platform event data to improve policies and incidents/alerts and bring focus to areas where data loss risk may exist

• Partner with clients to develop incident response workflows that map to their security objectives and policies

• Refine datasets and policies and manage them as customers’ data risk strategy matures and business needs evolve

• Identify trends and drive requirements aimed at improving and enhancing existing data detection and response policies

• Prepare and present formal summaries to technical  and non-technical audiences

• Collaborate with Cyberhaven’s Product and Development team to develop and implement innovative strategies for monitoring and preventing data loss

• Eliminate noise and false-positive information from analytic results

• Provide forensic analysis on people, groups, and non sanctioned egress destinations as requested by clients

Who you are:

• 3+ years’ experience in working with a data protection product, knowledge of endpoint protection best practices and incident mitigation workflows.

• 2+ years’ experience with Insider Threat Programs and Information Security. 

• 4+ years’ experience providing advice and expert guidance on security issues affecting data protection and procedures exploitable by insiders (both accidental and malicious actions).

• Excellent problem-solving and analytical abilities with creative and logical thinking. 

• Highly motivated, customer centric person, strong customer empathy and focus. 

• Ability to work as part of a global team. 

• Ability to create management level presentations and analysis on incident investigations.

• Excellent written and verbal communication skills. 

What you should have:

• Familiarity with technologies that are adjacent to Cyberhaven in which we integrate, (SIEM/SOAR) are desired.

• Knowledge of security controls for the handling of sensitive data types.

• Experience with performing technical analysis as well as handling documentation and project management aspects of an incident response regarding data security issues.

• Understanding of macOS, Linux and Windows environments.

• Expertise with  DLP, Insider Threat and CASB solutions

• Familiarity with cloud apps and services.

• Excellent communication and interpersonal skills required, with a passion for the cloud and related new technologies.

What you can count on:

• Remote-friendly culture.

• Competitive start up salary and generous stock options.

• Paid medical/dental/vision benefits for you and your family with the option to buy up to a premium medical plan

• Flexible time off.

• Potential fast-tracked career advancement opportunities.

• Experience building something from the ground up.

Cyberhaven is the AI-powered data security company revolutionizing how companies detect and stop the most critical insider threats to their most important data. We've raised over $140M from leading Silicon Valley investors like Khosla and Redpoint. Cyberhaven is also backed by founders, executives, and security leaders who have built transformational technologies at Crowdstrike, Nutanix, Palo Alto Networks, Meta, Google, Slack, and others.

Our company values are:

• Think Deeply and Use Sound Reasoning

• Step Up and Take Ownership

• Continuously Learn and Grow

• Obsess About Customers

• Enjoy the Journey

• Reach for Ambitious Goals

Cyberhaven is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.