loss prevention Somerset, NJ
Job description
Terumo Medical Corporation (TMC) develops, manufactures, and markets a complete, solutions-based portfolio of high-quality medical devices used in a broad range of applications for numerous areas of the healthcare industry. TMC places a premium on providing customers with world-class products, training and education programs that drive clear economic value, better clinical outcomes and improved quality of life for patients. TMC is part of Tokyo-based Terumo Corporation; one of the world’s leading medical device manufacturers with $5+ billion in sales, 20,000+ employees worldwide and operations in more than 160 nations. Terumo Medical Corporation is comprised of two strategic business divisions: Terumo Interventional Systems and Terumo Medical Products.
Job Summary
The Data Loss Prevention (DLP) Specialist is a responsible for securing and monitoring all data accessed, transmitted and stored throughout Terumo. He/she will manage the complete data lifecycle, from the beginning to disposal, and should ensure that data access is controlled and maintained in line with Terumo's information security principles. He/she will collaborate with various teams, including IT, Cybersecurity, Legal, and Compliance, to identify, assess, and mitigate data loss risks across Terumo.
The DLP Specialist collaborates with both technical and non-technical teams to establish, implement, and supervise data protection protocols to reduce the risks of insider threats and data breaches while ensuring equitable data usage at Terumo. The individual will be accountable for advising and validating controls to ensure that the protection is aligned with policies, procedures, and risk management. In the event of any incidents or suspected events, the specialist will collaborate closely with the incident response team.
Job Details/Responsibilities
- Key member of the Cybersecurity team responsible for identifying, establishing and maintaining data protection technical controls in context of business and compliance requirements
- Collaborate with cross-functional teams to identify, assess, and mitigate data loss risks across the organization.
- Support and maintain a wide range of data protection technologies, including but not limited to DLP, data classification, and data governance across a variety of technology ecosystems.
- Assess risks by locating sensitive data.
- Document data protection policy exceptions, and periodically review with business units.
- Provide recommendations for improvements to ensure least privilege to data and rigorous security practices, without negatively impacting user’s productivity or leading to employees attempting to circumvent controls.
- Execute tactical requests supporting the strategic vision for rigorous and scalable data protection controls.
- Monitor and investigate potential incidents of data loss, including data breaches, insider threats, and unauthorized data exfiltration.
- Understand business processes to assist managing enterprise data protection.
- Constantly interact with business units to understand their plans, risk posture and tolerance, and how to share responsibility and support their vision and business obligations securely.
- Implement DLP projects across all Terumo business units.
- Maintain up-to-date knowledge of emerging threats and vulnerabilities in the data security landscape and adjust DLP strategies and technologies accordingly.
Knowledge, Skills and Abilities (KSA)
- Solution-oriented - dive into situations with a high degree of uncertainty or missing information and you experiment tactically to find a way forward.
- Data-driven - makes decisions based on data, purposefully and swiftly when needed.
- Customer-centric - consider responsiveness a hallmark of your professional identity. You approach everything you do with the end user's best interests in mind.
- Able to manage and coach individual contributors to maximize their potential and able to delegate responsibilities effectively.
- Proactive and flexible communication - anticipate others' information needs and adapt to different communication styles and personalities to meet the demands of the circumstances.
- Resilience - When the going gets tough, rise to the occasion
- Writing - communicate technical information effectively to technical and non-technical audiences.
- Strong knowledge in the current data protection landscape and upcoming threats.
- Strong analytical and problem-solving skills, with the ability to analyze complex data security issues and develop effective solutions.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with cross-functional teams.
Qualifications/ Background Experiences
- Associate degree in computer science, information technology, or a related field with a minimum of 5 years of experience or equivalent combination of education and relevant experience
- Hands-on experience with Data Loss Prevention tools and technologies for network, endpoint and cloud solutions, such as Proofpoint DLP, Microsoft DLP, or others.
- Hold one or more of the following certifications is a plus: CISSP, and CISM
It is Terumo’s policy to provide equal employment opportunity to all its employees and applicants for employment regardless of their race, creed, color, national origin, age, ancestry, nationality, marital or domestic partnership or civil union status, sex, pregnancy, gender identity or expression, disability status, liability for military service, protected veteran status, sexual orientation, atypical cellular or blood trait, genetic information (including the refusal to submit to genetic testing), or any other category protected by law. As a Company, we value diversity of background and opinion, and prohibit discrimination or harassment on the basis of any legally protected class in the areas of hiring, recruitment, promotion, transfer, demotion, training, compensation, pay, fringe benefits, layoff, termination or any other terms and conditions of employment.
