Data Loss Prevention & Detection Specialist

Key Responsabilities Architect/engineer Data Loss Prevention security solutions covering Broadcom DLP EndPoint, Discovery Provide advice, training and support on DLP Policy development Support the architecture, design, deployment and integration of DLP solution Create engineering solutions for back-end management server infrastructure and databases Develop and maintain detection rules and use cases across security monitoring platforms (SIEM, EDR, NDR, cloud security tools). Analyse emerging threats and translate them into actionable detection logic. Continuously improve detection coverage based on threat intelligence, incident trends, and vulnerability exposure. Monitor security alerts and identify suspicious activities that may indicate malicious behaviour. Investigate anomalous events and determine whether they represent real security threats. Work closely with SOC analysts and incident responders to ensure detections support effective investigations. Reduce false positives by tuning detection rules and correlation logic Applying system, user and application changes as needed Tracking and troubleshooting user issues or tasks and incidents Create, review, maintain and update documentation including Documenting \u0026amp; Publishing fixes in central knowledge base Work with global teams to provide consistent processes and solutions Tools \u0026amp; Technologies Security Information and Event Management (SIEM) o\u00a0\u00a0Microsoft Sentinel o\u00a0\u00a0Splunk Enterprise Security Endpoint Detection and Response (EDR/XDR) o\u00a0\u00a0Microsoft Defender XDR o\u00a0\u00a0CrowdStrike Falcon Network and Infrastructure Detection o\u00a0\u00a0Network Detection and Response (NDR) platforms o\u00a0\u00a0Intrusion Detection / Intrusion Prevention Systems (IDS/IPS) o\u00a0\u00a0Firewall, proxy, VPN, and network telemetry solutions Cloud and Identity Security Monitoring o\u00a0\u00a0Microsoft Entra / Azure AD logs o\u00a0\u00a0Microsoft 365 security telemetry Threat Intelligence and Detection Engineering o\u00a0\u00a0Threat intelligence platforms and indicator feeds o\u00a0\u00a0MITRE ATT\u0026amp;CK mapping and detection use case libraries o IOC/IOA-based detection content Experience and s kills required Bachelor\u2019s degree in information technology, Computer Science or a related discipline 5+ years of experience in data leakage analysis or data loss prevention for an enterprise network, cybersecurity monitoring, detection engineering, or SOC operations. Strong background of architecting, engineering and automating security solutions for a global environment of focusing on Data Leakage Solutions Log analysis and event correlation Detection rule development Advance knowledge of security monitoring tools (SIEM, EDR/XDR, NDR) Good scripting knowledge (Python, PowerShell, or similar) Knowledge of common attack techniques and tactics Understanding of network protocols and system behaviour Knowledge of Symantec, Broadcom and O365 Understanding of SIEM integrations General knowledge of infrastructure (LDAP, Group Policy, Kerberos, Active Directory, etc.) and networking (routing, firewalls, OSI Model, packet trace and analysis, etc.) \ufeff DTSE-RO is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. All employment decision at DTSE-RO are based on business needs, job requirements and individual qualifications, with no regard to race, color, religion or belief, national, social or ethnic origin, sex, age, physical, mental or sensory disability, sexual orientation and gender identity. DTSE-RO will not tolerate discrimination or harassment based on any of these characteristics. By applying for this job you accept the DT privacy statement: To process your online application we collect, process and use your personal data. We will treat your data as strictly confidential in accordance statutory provisions. By submitting your application, you consent to your data being processed electronically, including by third parties. Data is only passed on to HR service providers that have been carefully selected by Deutsche Telekom AG. For detailed information read the local data protection when applying for a job position at Deutsche Telekom Group. #LI-Hybrid