Introducing T&S Pro Voices. 👉 Learn More.
C

Insider Threat and Data Governance Analyst

Coupang
On-site
South Korea
Analyst
Description:
Our Why: We exist to protect a way of life that many people have come to rely on. We protect the small business that relies on Coupang to be able to open their doors every day. The customer trust in protecting their PII fiercely. Also, our fellow employees and their data as they come to work every day being proud to work for Coupang.
We exist to be thought leaders and help the industry and government partners. To come to work focused on outcomes and not egos, and to head home at the end of a day with a sense of pride with what we accomplished together as a team. Our why drives everything that we do.
As our Director over Insider Threat and Data Governance you will be responsible for building a new program that combines our existing global Data Loss Prevention function with a proactive approach to Data Governance leveraging modern toolsets around data identification, classification, and retention enforcement across all possible data sources from endpoint to cloud.
This is a new function being created to address the unique challenges of the eCommerce space of a global company. You will need a proven track record of building successful programs, inspiring and developing teams, with the ability to work across levels and organizations with autonomy.
In addition to being a leader, you will be a technical manager that has expert working knowledge in Insider Threat, IR, investigation and hunt techniques, root-cause security issues, quickly assessing the potential threats, and educating other members of the broader team.


Key Responsibilities:
Operate an Insider Threat program that spans multiple geographies and cultures
Operate and contribute to the maturity in building a robust DSPM program which provides complete visibility into the data lifecycle of the company
Operate and improve data classification and tagging solutions that covers all aspects of structured and unstructured data on prem and in the cloud.
Work with various governments and regulatory authorities in response to activities
Ensure retention schedule enforcement through technical means
Partner with internal and external organizations to build a comprehensive data flow mapping
Investigate the root cause of incidents and collaborate with stakeholders to implement effective remediation measure, ensuring the issue does not recur
Enhance governance processes while considering organization-wide processes and requirements to strengthen the company’s overall security posture
Ensure successful and timely delivery of results by providing technical leadership to a project


Qualifications:
6+ years of experience in information security with at least 3+ years of Forensic and Insider Threat experience
Experience of Host based security investigation (Windows, Linux, Network/Security appliances)
Experience of managing large scale Insider Threat programs
Experience of analyzing security event from endpoint security solutions (EDR, HIPS, Anti-Virus, DLP, etc.)
Experience of analyzing security event from application (Web application, Mobile app, Email security, etc.)
Experience of analyzing security event and knowledge of AWS or Cloud environment
Experience implementing and managing DSPM programs
Experience with forensic toolsets
Experience in Automation and Scripting using Bash, Python, PowerShell
Experience working in a fast-paced international enterprise
Bachelor’s degree or equivalent practical experience


Preferred Languages and Certifications:
CISSP
CSPM
GCIH
English, Korean, and Mandarin