1+ months

Manager - Data Security

Discovery Communications
Sterling, VA 20164
  • Job Code
    114691541
Discovery Communications


Manager - Data Security

US-VA-Sterling

Job ID: 24772
Type: Company Employee Full-Time
# of Openings: 1
Category: IT & Technical Operations
US-VA-Sterling

Overview

Our Team

As Discovery Inc's portfolio continues to grow – around the world and across platforms – the Global Technology & Operations team is building media technology and IT systems that meet the world class standard for which Discovery is known. GT&O builds, implements and maintains the business systems and technology that are critical for delivering Discovery’s products, while articulating the long-term technology strategy that will enable Discovery’s growing pay-TV, digital terrestrial, free-to-air and online services to reach more audiences on more platforms.

Within our Information Security team, there has never been a busier or more urgent time to obtain the best talent we can for a function so critical to Discovery Communications. In light of the constant threats and attacks occurring in companies across the globe, and across all industries, the Information Security Team at Discovery is a growing group of cyber security professionals, that are using the latest tools and resources to protect the assets from our internal infrastructure to the shows we broadcast across the globe on Discovery Channel, Animal Planet, Discovery ID, TLC, EuroSport and more. From the US to Singapore, India to LA, we are tasked with protecting, training, and implementing the best of the best in tools, resources, monitoring, threat detection, and more.

The Role

The Data Security Manager is a technology and process focused security professional with an emphasis in information security, data discovery, data classification, data security/privacy compliance and remediation. The Manager will coordinate and oversee the data security compliance programs, including review, assess, recommend and implement policy and technical controls to ensure the Discovery’s Data Security program is effective.



Responsibilities

1. Collaborate with the InfoSec Department and Privacy Office in cataloguing applications and systems that fall into scope of privacy compliance programs such as General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA).
2. Respond to day-to-day requests from Data Security, Information Security Team, and the CISO such as advising on enterprise-wide initiatives
3. Monitor and analyze the results, trends, patterns, and events from Data Security and Privacy Compliance Tools (e.g., SAS, OneTrust, BigID, etc.) in addition to other tools (e.g., Splunk/QRadar) to enforce Data Privacy and Security requirements
4. Quality Assurance & Review for DPS and Data Compliance Deliverables (1st Level-Reviewer)
5. Assess the data security posture of systems through focused reviews with application owners, identify gaps to data protection safeguards, and areas for enhancements including encryption, anonymization and escalate to management's attention through timely reporting
6. Monitor the risk and compliance of data security safeguards through measurements and monitoring
7. Develop & Implement Data Flow Review (DFR) process for new and existing/critical business IT services
8. Provide data security requirements and guidance on secure software development and deployment
9. Evaluate, recommend, and implement data security solutions through open-source and COTS tools
10. Coordinate with business and IT teams, as a SME/InfoSec liaison, supporting data security initiatives
11. Identify, Assess, and Recommend Data Security and Privacy Enhancing Technologies (PET) software and tools
12. Enable continuous data security monitoring hygiene through managing the execution of security control assessments of applications and systems, through establishing a repeatable process
13. Work with the InfoSec Department and Privacy Office in socializing the data security control enhancements and developing remediation actions through coordination with business units



Qualifications

* Bachelor’s or Master’s degree in related field, such as Business, IT, Computer Science or equivalent work experience
* 5 to 10+ years of work experience in Data Protection, Information Security Dept. (e.g., Cyber SecOps, Security Architecture & Engineering, and/or Data Security/Forensic Analysis)
* Understanding of privacy compliance programs such as General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Payment Card Industry Data Security Standard (PCI-DSS), etc.
* Strong working knowledge and experience with data security compliance, control design, and processes
* 4+ years of professional experience, supporting Cybersecurity Operation program(s) using security solutions such as enterprise data loss prevention tools, data encryption technologies, SIEM, EDR, etc.
* Active learner - ability to enhance professional growth through new knowledge and experiences
* Excellent analytical, problem-solving, and interpersonal skills to interact with senior management
* Investigates, interprets, and responds to technical and/or complex IT security data
* Strong organizational, time management and diplomacy skills
* Demonstrated ability to be proactive, take ownership of and solve problems, and to deliver work products which are consistent with sound and ethical business practices
* Excellent communication skills, including the ability to present complex topics in clear, non-technical language; outstanding analytical, writing, and oral presentation skills

* Must have the legal right to work in the United States

Preferred Qualifications
* Desirable certifications include CISSP, CISM, CIPP, CIPT, CIPM, GCFE/GCFA, GCIH, CEH, OSCP, CHFI
* 2+ years of data security or security architecture and engineering experience
* 1+ years of security experience with cloud security environments
* Working knowledge with digital forensic tools such as Encase, SIFT Workstation, etc.
* Experience in leading and performing data privacy discussions, reviews, and IT/security audits
* Working knowledge and experience in developing and reporting performance and risk metrics (e.g., KPIs/KRIs – Status Reporting and Dashboard for senior management)

Sterling, Virginia, VA

Discovery Communications, Inc. is an equal opportunity employer. Discovery is committed to being an employer of choice, not just a good place to work, but a great and inclusive place to work. To that end, we strive to recruit and maintain a workforce that meaningfully represents the diverse and culturally rich communities that we serve. Qualified applicants will receive consideration for employment without regard to their race, color, religion, national origin, sex, sexual orientation, gender identity, protected veteran status or disabled status or, genetic information.

EEO is the Law

Pay Transparency Policy Statement

If you are an individual with a disability and need an accommodation during the application process, please send an email request to HR@discovery.com.

PI114691541

<b>Discovery Communications</b><br/><br/><br/><b>Manager - Data Security</b><br/><br/>US-VA-Sterling<br/><br/><b>Job ID:</b> 24772<br/><b>Type:</b> Company Employee Full-Time<br/><b># of Openings:</b> 1<br/><b>Category:</b> IT & Technical Operations<br/>US-VA-Sterling<br/><br/><b>Overview</b><br/><br/><p style="margin: 0px;"><strong>Our Team</strong></p><p style="margin: 0px;">As Discovery Inc's portfolio continues to grow around the world and across platforms the Global Technology & Operations team is building media technology and IT systems that meet the world class standard for which Discovery is known. GT&O builds, implements and maintains the business systems and technology that are critical for delivering Discoverys products, while articulating the long-term technology strategy that will enable Discoverys growing pay-TV, digital terrestrial, free-to-air and online services to reach more audiences on more platforms.<br /><br />Within our Information Security team, there has never been a busier or more urgent time to obtain the best talent we can for a function so critical to Discovery Communications. In light of the constant threats and attacks occurring in companies across the globe, and across all industries, the Information Security Team at Discovery is a growing group of cyber security professionals, that are using the latest tools and resources to protect the assets from our internal infrastructure to the shows we broadcast across the globe on Discovery Channel, Animal Planet, Discovery ID, TLC, EuroSport and more. From the US to Singapore, India to LA, we are tasked with protecting, training, and implementing the best of the best in tools, resources, monitoring, threat detection, and more.</p><p style="margin: 0px;"> </p><p style="margin: 0px;"><strong>The Role</strong></p><p style="margin: 0px;">The Data Security Manager is a technology and process focused security professional with an emphasis in information security, data discovery, data classification, data security/privacy compliance and remediation. The Manager will coordinate and oversee the data security compliance programs, including review, assess, recommend and implement policy and technical controls to ensure the Discoverys Data Security program is effective. </p><br/><br/><b>Responsibilities</b><br/><br/><p style="margin: 0px;">1. Collaborate with the InfoSec Department and Privacy Office in cataloguing applications and systems that fall into scope of privacy compliance programs such as General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA).<br />2. Respond to day-to-day requests from Data Security, Information Security Team, and the CISO such as advising on enterprise-wide initiatives <br />3. Monitor and analyze the results, trends, patterns, and events from Data Security and Privacy Compliance Tools (e.g., SAS, OneTrust, BigID, etc.) in addition to other tools (e.g., Splunk/QRadar) to enforce Data Privacy and Security requirements<br />4. Quality Assurance & Review for DPS and Data Compliance Deliverables (1st Level-Reviewer)<br />5. Assess the data security posture of systems through focused reviews with application owners, identify gaps to data protection safeguards, and areas for enhancements including encryption, anonymization and escalate to management's attention through timely reporting<br />6. Monitor the risk and compliance of data security safeguards through measurements and monitoring<br />7. Develop & Implement Data Flow Review (DFR) process for new and existing/critical business IT services<br />8. Provide data security requirements and guidance on secure software development and deployment <br />9. Evaluate, recommend, and implement data security solutions through open-source and COTS tools<br />10. Coordinate with business and IT teams, as a SME/InfoSec liaison, supporting data security initiatives<br />11. Identify, Assess, and Recommend Data Security and Privacy Enhancing Technologies (PET) software and tools<br />12. Enable continuous data security monitoring hygiene through managing the execution of security control assessments of applications and systems, through establishing a repeatable process<br />13. Work with the InfoSec Department and Privacy Office in socializing the data security control enhancements and developing remediation actions through coordination with business units</p><br/><br/><b>Qualifications</b><br/><br/><p style="margin: 0px;">* Bachelors or Masters degree in related field, such as Business, IT, Computer Science or equivalent work experience <br />* 5 to 10+ years of work experience in Data Protection, Information Security Dept. (e.g., Cyber SecOps, Security Architecture & Engineering, and/or Data Security/Forensic Analysis)<br />* Understanding of privacy compliance programs such as General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Payment Card Industry Data Security Standard (PCI-DSS), etc.<br />* Strong working knowledge and experience with data security compliance, control design, and processes<br />* 4+ years of professional experience, supporting Cybersecurity Operation program(s) using security solutions such as enterprise data loss prevention tools, data encryption technologies, SIEM, EDR, etc.<br />* Active learner - ability to enhance professional growth through new knowledge and experiences<br />* Excellent analytical, problem-solving, and interpersonal skills to interact with senior management<br />* Investigates, interprets, and responds to technical and/or complex IT security data<br />* Strong organizational, time management and diplomacy skills<br />* Demonstrated ability to be proactive, take ownership of and solve problems, and to deliver work products which are consistent with sound and ethical business practices<br />* Excellent communication skills, including the ability to present complex topics in clear, non-technical language; outstanding analytical, writing, and oral presentation skills</p><p style="margin: 0px;">* Must have the legal right to work in the United States</p><p style="margin: 0px;"> </p><p style="margin: 0px;"><strong>Preferred Qualifications</strong><br />* Desirable certifications include CISSP, CISM, CIPP, CIPT, CIPM, GCFE/GCFA, GCIH, CEH, OSCP, CHFI<br />* 2+ years of data security or security architecture and engineering experience<br />* 1+ years of security experience with cloud security environments<br />* Working knowledge with digital forensic tools such as Encase, SIFT Workstation, etc.<br />* Experience in leading and performing data privacy discussions, reviews, and IT/security audits<br />* Working knowledge and experience in developing and reporting performance and risk metrics (e.g., KPIs/KRIs Status Reporting and Dashboard for senior management) </p><p style="margin: 0px;"><span style="color: #ffffff;">Sterling, Virginia, VA</span></p>Discovery Communications, Inc. is an equal opportunity employer. Discovery is committed to being an employer of choice, not just a good place to work, but a great and inclusive place to work. To that end, we strive to recruit and maintain a workforce that meaningfully represents the diverse and culturally rich communities that we serve. Qualified applicants will receive consideration for employment without regard to their race, color, religion, national origin, sex, sexual orientation, gender identity, protected veteran status or disabled status or, genetic information. <br><br> <a href="https://discovery.icims.com/icims2/servlet/icims2?module=AppInert&action=download&id=581131&hashed=1619517695">EEO is the Law</a> <br><br> <a href="https://discovery.icims.com/icims2/servlet/icims2?module=AppInert&action=download&id=588767&hashed=2014725565">Pay Transparency Policy Statement</a><br><br> If you are an individual with a disability and need an accommodation during the application process, please send an email request to HR@discovery.com. <img src="https://analytics.click2apply.net/v/QljVVWSeDqrOcV65iBRkn"> <p>PI114691541</p>

Categories

Posted: 2019-10-19 Expires: 2019-11-19

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Manager - Data Security

Discovery Communications
Sterling, VA 20164

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast