Data Loss Prevention Analyst

Summary

The Data Loss Prevention (DLP) Analyst plays a critical role in safeguarding the Firm’s sensitive information and ensuring compliance with internal policies and external regulations. This position is responsible for the ongoing design, implementation, monitoring, and refinement of the Firm’s DLP solutions. The Analyst proactively identifies and mitigates data loss risks by analyzing security events, investigating potential incidents, and enforcing DLP policies across business units. As a subject matter expert, the DLP Analyst partners with cross-functional teams—such as Information Technology, Information Governance, Legal, and Human Resources—to ensure the confidentiality, integrity, and availability of data assets throughout the organization. Additionally, this role supports the Security Incident Response Team (SIRT), contributing to swift and effective resolutions of security-related issues and may also assist with other insider threat investigations. The ideal candidate will demonstrate strong analytical skills, a keen attention to detail, and a deep understanding of enterprise data protection technologies and best practices.

Duties and Responsibilities

• Monitor DLP systems and alerts to identify potential data exfiltration or policy violations.
• Analyze and triage DLP events to determine root cause, impact, and risk level.
• Collaborate with stakeholders across departments (IT, Records Mgmt., HR, etc.) to investigate and resolve incidents.
• Create and maintain DLP policies, rules, and configurations tailored to the organization’s risk profile.
• Assist in developing awareness and training materials to promote secure data handling practices.
• Maintain documentation and procedures related to DLP incidents, resolutions, and policy updates.
• Continuously evaluate DLP technology effectiveness and recommend improvements.
• Participate in risk assessments and audits related to data protection and regulatory compliance (e.g.ISO, GDPR, HIPAA, CCPA).
• Stay up to date with current threats, vulnerabilities, and best practices in data security.

Salaries vary by location and are based on numerous factors, including, but not limited to, the relevant market, skills, experience, and education of the selected candidate. If an estimated salary range for this role is available, it will be provided in our Target Salary Range section. Our compensation package also includes bonus eligibility and a comprehensive benefits program. Benefits information can be found at Sidley.com/Benefits.

Target Salary Range

Qualifications

To perform this job successfully, an individual must be able to perform the Duties and Responsibilities (Duties) above satisfactorily and meet the requirements below. The requirements listed below are representative of the minimum knowledge, skill, and/or ability required. Reasonable accommodations will be made to enable individuals with disabilities to perform the essential functions of the job. If you need such an accommodation, please email [email protected] (current employees should contact Human Resources). 

Education and/or Experience: 

Required:

• Bachelor’s degree or equivalent combination of education and/or experience, with a preference for those with a degree.
• Minimum of 2 years of experience in an Information Security or Information Governance or Data Protection role.
• Experience with DLP technologies (e.g., Symantec DLP, Microsoft Purview, Forcepoint, Digital Guardian, Tessian, Cyberhaven, etc.).
• Demonstrated ability to analyze security events, perform initial triage, determine appropriate next steps, and report generation capabilities
• Demonstrated experience in IT Security, Information Governance, or Data Protection projects development, security vendor or services management, and request for proposal processes and procedures

Preferred:

• Relevant certifications (e.g. CISSP, Security+, etc.)

Other Skills and Abilities:

The following will also be required of the successful candidate:

• Strong organizational skills
• Strong attention to detail
• Good judgment
• Strong interpersonal communication skills
• Strong analytical and problem-solving skills
• Able to work harmoniously and effectively with others
• Able to preserve confidentiality and exercise discretion
• Able to work under pressure
• Able to manage multiple projects with competing deadlines and priorities

Sidley Austin LLP is an Equal Opportunity Employer

#LI-Hybrid

#LI-JW1