Job Description

Information Security Engineer - Forcepoint DCS

We are seeking a highly skilled and experienced Information Security Engineer with a strong emphasis on Forcepoint Data and Content Security (DCS) to join our team. In this role, you will be responsible for delivering product presentations, conducting proof of concepts, and providing support during the implementation of Forcepoint DCS solutions. Your expertise in Forcepoint DCS and related technologies will be crucial in ensuring the protection and classification of sensitive data within our organization.

Key Responsibilities:
• Forcepoint DCS Subject Matter Expertise: You will serve as the go-to expert for Network Access Control (NAC), Data Classification and Prevention, Data Rights Management, Data Leakage Prevention, and Information Rights Management, specifically within the Forcepoint DCS framework. Your in-depth knowledge of Forcepoint DCS will enable you to design and implement effective schema designs and data protection policies.
• Data Discovery and Classification: You will be responsible for the identification and classification of unstructured data within both on-premises and cloud repositories, using the capabilities of Forcepoint DCS. Your expertise will ensure accurate classification and effective protection of sensitive information.
• End-to-End Data and Content Security Suite Handling: Your role will involve handling the entire Forcepoint DCS suite from a post-sales perspective, ensuring its successful implementation and operation. You will provide ongoing support, troubleshoot issues, and optimize the performance of the solution.
• Compliance and Document Requirements: You will assist clients in achieving desired compliance standards, such as GDPR and HIPAA, through effective data classification and prevention measures within Forcepoint DCS. Additionally, you will work closely with clients to identify their specific document requirements and align the Forcepoint DCS solution accordingly.
• Security Product Knowledge: As a Senior Information Security Engineer, you will have hands-on experience with a range of security products, including Algosec, CrowdStrike EDR, Ivanti, Extrahop, Mobileiron, Sviwel_MFA_Solutions, Sailpoint, Forcepoint, Forescout, and others. Your broad understanding of these products will enable you to integrate them seamlessly into the overall security infrastructure.
• Project Lifecycle Documentation: You will be responsible for documenting various phases of the project lifecycle, including High-Level Designs (HLD), Low-Level Designs (LLD), Statements of Work (SOW), As-Built documentation, and project sign-off. Your comprehensive documentation will ensure a clear understanding of project requirements and facilitate seamless collaboration with stakeholders.
• Network Troubleshooting and Monitoring: You will utilize network troubleshooting tools like Wireshark to identify and resolve network-related issues. Additionally, you will monitor network activities to proactively identify potential security threats and take appropriate measures to mitigate risks.
• Presentation and Training: You will conduct product training sessions for strategic accounts post-implementation, focusing on Forcepoint DCS and its features. Your expertise in presenting technical information will be instrumental in conveying complex concepts to clients and stakeholders.
• Audit and Compliance: You will assist performing audits and ensure compliance with standards such as PCI, ISO 27001, ISO 27002, SAMA, and NESA.
Qualifications:
• Bachelor's degree in Computer Science, Information Technology, or a related field.
• Extensive experience in implementing and managing Forcepoint DCS solutions, with a strong emphasis on data and content security.
• In-depth knowledge of Forcepoint DCS features and capabilities, along with a solid understanding of related technologies such as Network Access Control (NAC), Data Rights Management, and Data Leakage Prevention.
• Strong familiarity with securing Office 365 environments and knowledge of CIS Security benchmarks.
• Proven experience in designing and implementing cybersecurity solutions, including firewalls,
endpoint security, DLP, encryption, cloud security, web application security, SIEM tools, and threat hunting solutions.
• Excellent understanding of encryption protocols, L2TP, IPSEC, firewall concepts, and 802.1Q.
• Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Forcepoint Security Professional (CFSP), or other related certifications would be advantageous.

Quick response

Required Knowledge

• K0001   Knowledge of computer networking concepts and protocols, and network security methodologies.
• K0004   Knowledge of cybersecurity and privacy principles.
• K0005   Knowledge of cyber threats an`d vulnerabilities.
• K0033   Knowledge of host/network access control mechanisms (e.g., access control list, capabilities lists).
• K0044   Knowledge of cybersecurity and privacy principles and organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).
• K0061   Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]).

Required Skills

• S0077   Skill in securing network communications.
• S0124   Skill in troubleshooting and diagnosing cyber defense infrastructure anomalies and work through resolution.
• S0367   Skill to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).

Required Abilities

• A0123  Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).