Share this Job

Title:  Data Protection Analyst (DLP, UEBA, CASB)


Research Triangle Park, NC, US, 27709

Requisition ID:  40981


Are you data-driven?  We at NetApp believe in the transformative power of data – to expand customer touchpoints, to foster greater innovation, and to optimize operations.  We are designed for simplicity, optimized to protect, created to embrace future opportunity, and open to enrich choice.  We are the data authority for hybrid cloud, and we are helping our customers realize the full potential of their data.


We’ve built a Data Fabric for a data-driven world – to simplify and integrate data management across the resources that are best for the business.  With the Data Fabric, our customers can harness the power of cloud data services, build cloud infrastructures, and modernize storage through data management.

Job Description

The Data Protection team encompasses a variety of security tools and processes, including endpoint Data Loss Prevention (DLP) and insider threat user and entity behavior analytics (UEBA). The Team is responsible for initial analysis, monitoring and escalation of security events detected from data protection controls. The successful candidate will gain experience operating in a technically complex, dynamic environment. They will be exposed to various forms of security threats including intellectual property theft, insider threat, fraud and espionage. This role provides an opportunity to work for a global InfoSec team with leading edge tools, processes and subject matter expertise. The NetApp Data Protection team sits within the Enterprise Information Security (EIS) group reporting to the CISO. Collaboration with our Security Operations Center (SOC) and Governance, Risk, & Compliance (GRC) teams is frequent and exposure to and/or understanding of these domains is preferred.

Required Skills & Experience
  • 3-5 years of related work experience in information security, data protection, data privacy and security, or similar field.
  • Experience identifying threats, vulnerabilities, exploitations and applying security controls, tools and techniques to detect or gather information on domains or subjects.
  • Very good understanding of data loss prevention methodologies, tools, and processes.
  • Self-motivated individual with ability to leverage technical skills and correlate data to streamline analysis quickly and effectively.
  • Ability to navigate and work/communicate effectively across a complex organization that is geographically dispersed.
  • Excellent communication skills and the ability to provide data in a polished and easy to understand format.
  • Understanding of both Windows and Mac operating systems.
  • Strong understanding of documentation procedures for systems, changes and desk level procedures. Demonstrated technical writing skills required for documentation, troubleshooting guides, acceptance procedures, upgrade procedures, and process.
Preferred Skills & Experience
  • Experience and hands on knowledge with Insider Threat tools  (e.g., Symantec DLP/ArcSight/McAfee ePO/Forecepoint/QRadar/Exabeam/Splunk/Wireshark/Snort/Forensic tools).
  • Knowledge of endpoint protection technology and loss protection strategies.
  • Operational experience with multiple security technologies that can affect change management, security management, audit and control, encryptions, etc.  
  • Administrative experience in multiple versions of operating systems such as Windows, Solaris, BSD, Linux, SCO, HPUX, etc.- Solid scripting ability in Shell, PERL, Python, or other similar use language.
  • Familiarity with common incident management/ticketing systems (e.g., ServiceNow).
  • Certifications a plus (not required): Security+, Network+, CEH, CISSP, CISA, CCNA, CCNP, SQL, Web Dev.
Enterprise Role Overview

Assists with development and execution of security controls, defenses and countermeasures via tools like Data Loss Prevention (DLP), UEBA, CASB, etc to prevent attempts to exfiltrate company email, data, and intellectual property. Researches attempted or successful efforts to compromise systems security and designs countermeasures.

Ability to follow documented daily procedures and policies; monitoring tools and response guidelines, escalation and notification processes; and Trouble/Ticket management processes and guidelines. Responsibility and Interaction: The tasks this individual is responsible are often unstructured and the issues addressed are less defined requiring new perspectives and creative approaches. This individual will apply attained experiences and knowledge in solving problems that are complex in scope requiring in-depth evaluation. Demonstrate good judgment in solving problems as well as identifying problems in advance, and proposing solutions.


So get ready to tap into the data visionary within, and join us as we accelerate digital transformation and empower our customers to change the world with data!


If you ask a NetApp employee why they work here, the answer is inevitably the same: the people. At NetApp, our culture is at the heart of what we do. We place importance in trust, integrity, teamwork, and caring above all else. NetApp is a place where people are empowered to make a difference. Empowered to innovate. Empowered to collaborate. Empowered to help ourselves and others be data-driven and change the world. We take care of each other, our customers, our partners, and our communities simply because it’s the right thing to do.


We work hard but also recognize the importance of work-life balance for our employees because what’s important to them is important to us!  Recently we implemented Family First, which encourages employees to take paid time off to bond with a new child (through birth or adoption) or to care for a family member with a serious health condition.  Our volunteer time off program is best in class, offering employees 40 hours of paid time off per year to donate their time with their favorite organizations.  We provide comprehensive medical, dental, wellness and vision plans for you and your family.  We offer educational assistance, legal services, and access to discounts and fitness centers. We also offer financial savings programs to help you plan for your future.  


Join us and see what empowerment can do. 



Equal Opportunity Employer Minorities/Women/Vets/Disabled

Nearest Major Market: Durham
Nearest Secondary Market: Raleigh

Job Segment: Database, Medical, Data Analyst, System Administrator, Cisco, Technology, Healthcare, Data