NEWPosted 3 hours ago

Job ID: JOB_ID_3220

Position Summary

The DLP Recertification Specialist is responsible for managing and executing the recurring Data Loss Prevention (DLP) recertification process to ensure that all DLP controls, policies, exceptions, and user access remain compliant with corporate security requirements and regulatory frameworks. This role works closely with Security, Compliance, Legal, and Business Units to validate the accuracy of existing DLP rules, assess exceptions, and remediate risks.

Key Responsibilities

  • DLP Recertification Management: Plan, coordinate, and execute periodic (quarterly/annual) DLP recertification cycles.
  • Review all existing DLP policies, rule sets, sensitivity labels, and alerting thresholds to confirm accuracy and relevance.
  • Validate all active DLP exceptions, justifications, and expiration dates to ensure no unauthorized access persists.
  • Conduct risk assessments for policy gaps identified during recertification.
  • Document required updates and collaborate with DLP engineering teams to apply configuration changes.
  • Access & Exception Review: Lead reviews of user, group, and application access associated with DLP capabilities.
  • Verify that privileged access is still required and that separation-of-duties controls are maintained.
  • Coordinate with business owners to validate or revoke access as part of the recertification process.
  • Analyze exception patterns to detect recurring risks or inappropriate approvals.
  • Compliance & Audit Support: Ensure recertification processes meet internal audit, regulatory, and industry framework requirements (e.g., SOX, NERC CIP, HIPAA, GDPR, ).
  • Generate audit-ready evidence, logs, and documentation.
  • Work with internal/external auditors during security audits or compliance reviews.
  • Maintain detailed procedures, timelines, and run books for the recertification program.
  • Reporting & Metrics: Develop dashboards and reports to track recertification progress, completion rates, overdue items, and risk findings.
  • Present results to leadership and recommend corrective actions.
  • Monitor trends in exceptions, false positives, and violations to enhance policy maturity.
  • Cross-Functional Collaboration: Partner with Legal, HR, Compliance, and IT Owners for policy validation and custodial approvals.
  • Provide training and guidance to business teams involved in recertification.
  • Work with DLP engineers and analysts to implement policy changes identified during certification.

Required Qualifications

  • Bachelor’s degree in Cybersecurity, Information Technology, or related field or equivalent experience.
  • 3+ years of experience in Data Loss Prevention, Information Security Governance, or Access Recertification.
  • Experience with enterprise DLP platforms (Microsoft Purview, Symantec, Force point, etc.).
  • Familiarity with governance/risk/compliance (GRC) tools (ServiceNow, Archer, SailPoint, etc.).
  • Strong understanding of security frameworks and regulatory requirements.
  • Excellent documentation, analytical, and communication skills.

Compensation & Location

Salary: $50 – $70 per year

Location: Remote

Recruiter / Company – Contact Information

Email: ep.kumar@estuate.com

Interested in this position?
Apply via Email

Recruiter Notice:
To remove this job posting, please send an email from
ep.kumar@estuate.com with the subject:

DELETE_JOB_ID_3220

to delete@join-this.com.