Key Facts

Remote From:

Full time

Mid-level (2-5 years)

English, Spanish

Hard Skills

Okta Digital Forensics Python (Programming Language) Data Loss Prevention Computer Forensics Data-Flow Analysis Auditing General Security Network Monitoring Forensic Engineering +13 more

Other Skills

•
Personal Integrity

Roles & Responsibilities

5+ years in Cybersecurity, Digital Forensics, or Security Auditing
Expertise in Microsoft Purview, Okta, Mimecast
Proficiency in scripting (Python/APIs) to integrate AI models into security workflows
Bilingual: Native Spanish and Professional English

Requirements:

Ecosystem auditing of WithSecure (EDR), Microsoft Purview (DLP), and Mimecast to enforce policies and remove catch-all rules or unauthorized exceptions
Identity & Access Governance: Audit Okta and Entra ID logs for anomalous sign-ins from unknown or unmanaged devices accessing sensitive SaaS like Salesforce
AI-powered forensic pipeline: design and implement automation scripts (Python/API) to summarize quarantined emails and attachments using LLMs (Claude/OpenAI), turning raw security logs into actionable forensic artifacts
Data flow analysis: monitor and audit data movement between endpoints and cloud storage, ensuring integration between security tools and a centralized repository for long-term forensic hunting; provide incident accountability with forensic evidence for HR and legal proceedings

Job description

One Park Financial (OPF) is a fast-growing FinTech company headquartered in Miami, Florida. We provide flexible financing solutions to small businesses across the United States. We are seeking a Senior Data Protection Analyst (DLP) to lead our Data Egress & Collaboration Security program. This role focuses on preventing unauthorized data exfiltration, monitoring outbound communications, and ensuring compliance with internal data protection policies.

Role Objective: We are seeking a high-trust, elite Technical Architect to serve as the definitive "Watchman" over our global data flows. This role is responsible for the continuous audit of our DLP ecosystem, ensuring that security policies across Okta, Entra, and Mimecast are strictly enforced. The ideal candidate will leverage AI and automation to detect internal threats and exfiltration attempts before they impact the organization.

Core Responsibilities:

Ecosystem Auditing: Direct oversight and periodic auditing of WithSecure (EDR), Microsoft Purview (DLP), and Mimecast to ensure no "Catch-all" rules or unauthorized exceptions exist.
Identity & Access Governance: Audit Okta and Entra ID logs to identify anomalous sign-ins, focusing on "Unknown" or "Unmanaged" devices attempting to access sensitive SaaS like Salesforce.
AI-Powered Forensic Pipeline: Design and implement automation scripts (Python/API) to summarize quarantined emails and attachments using LLMs (Claude/OpenAI), converting raw security logs into actionable forensic artifacts.
Data Flow Analysis: Monitor and audit data movement between endpoints and cloud storage, ensuring integration between security tools and a centralized repository for long-term forensic hunting.
Incident Accountability: Provide forensic evidence for HR and legal proceedings regarding internal data misuse or policy violations.

Soft Skills:

Unwavering Integrity: Ability to handle highly sensitive information and investigation data with absolute discretion.
Analytical Curiosity: A "Forensic Mindset" that looks beyond the surface of a log to find the root cause of an anomaly.
Effective Communication: Capable of translating complex technical breaches into clear, non-technical summaries for executive leadership.
Autonomy: Proactive "hunter" mentality; able to operate with minimal supervision in a high-stakes environment.

Requirements

5+ years in Cybersecurity, Digital Forensics, or Security Auditing.
Expertise in Microsoft Purview, Okta, Mimecast.
Proficiency in scripting (Python/APIs) to integrate AI models into security workflows.
Bilingual: Native Spanish and Professional English.