Job Information
Synchrony VP, Cloud Data Protection in Kansas City, Kansas
Job Description:
Role Summary/Purpose:
The VP, Cloud Data Protection will be part of the company wide cloud security program that safeguards our cloud platforms and services. The VP, Cloud Data Protection will play a role in shaping the organization's efforts to identify, assess, and protect the organization's sensitive data. This includes conducting regular data risk assessments, recommending controls, and countermeasures to mitigate identified risks, and monitoring the effectiveness of the implemented data loss prevention measures. This role will collaborate with other data protection engineers in the organization and will be involved in developing the overall data security and protection program.
We're proud to offer you choice and flexibility. At Synchrony, our way of working allows you to have the option to work from home, near one of our Hubs or come into one of our offices. Occasionally you may be required to commute to our nearest office for in person engagement activities such as business or team meetings, training and culture events.
Essential Responsibilities:
Experience securing cloud environments (Azure, AWS) in conjunction with data loss prevention, data discovery and tokenization
Grow and implement data protection strategies and initiatives, including data loss prevention, scanning and labeling data and encryption
Must have the business acumen and build strong relationships with teams, vendors and stakeholders and effectively communicate, influence, and understand the flow of sensitive data between systems and applications
Create automation programs in the cloud specifically for data protection realm
Maintain and/or take part in data protection policies, procedures, standards, and ensure that they are followed by the entire organization
Advise business and application teams on tokenization best practices and implementation
Drive the design and implementation of data labeling, ensuring protection of sensitive data
Working knowledge of data encryption standards and strategies to secure data at rest and in transit on-prem and in the cloud
Lead and conduct regular data risk assessments to identify potential vulnerabilities and threats to the organization's data and information systems
Stay in tune of new developments in the field of cybersecurity and ensure the organization's risk assessment and data security processes are aligned with industry standards and best practices
Work with other data protection engineers in the organization, providing guidance and support on data protection methodologies, techniques, and best practices
Work together with Data Loss Prevention engineers, and act as the liaison between Line of Business Units and DLP engineers to establish new DLP policies and rules and/or rule refinement
Contribute to the Zero Trust program for the Data pillar and establish principles to secure critical business data from Insider Threats and external adversaries, and enable authorized employees to securely collaborate with partners, suppliers and customers.
Qualifications/Requirements:
Bachelor's degree in Computer Science, Information Systems, or equivalent education is preferred OR in lieu of a degree, High School Diploma/G.E.D. and minimum of 10 years of IT experience
5+ years of experience in cybersecurity, with focus on data protection and privacy
10+ years of experience with architecture and design
3+ years of experience with AWS, GCP, Azure, or another cloud service
Proven experience with data discovery, classification, handling, access, inventory, and retention
Working knowledge of data protection technologies, such as encryption, tokenization and traditional and next-generation data loss prevention tools.
Proven automation skills using Terraform, Python, and API calls, to automate manual tasks in the deployment of security solutions and configurations during the company's Public Cloud migration.
Working knowledge of CI/CD pipelines such as Jenkins, CloudBees, GitLab etc. to enable automation and orchestration of security configuration.
Familiar with API programming in the cloud using languages such as PowerShell, C++, Python, Java, or .Net
Experience with designing and implementing data security solutions for enterprise environments
Experience in developing and managing data protection programs focused on data discovery, data loss prevention and encryption for both structured and unstructured data
Experience with design, implementation and delivery of Data Loss Prevention solutions in a hybrid environment (e.g. on-premises data centers, cloud data centers).
Strong understanding of data privacy laws and regulations (i.e. NYDFS, PCI, etc.)
Strong analytical and problem-solving skills
Excellent communication and presentation skills to effectively communicate with management and other stakeholders
Grade/Level: 12
The salary range for this position is 130,000.00 - 210,000.00 USD Annual and is eligible for an annual bonus based on individual and company performance.
Actual compensation offered within the posted salary range will be based upon work experience, skill level or knowledge.
Salaries are adjusted according to market in CA, NY Metro and Seattle.
Eligibility Requirements:
You must be 18 years or older
You must have a high school diploma or equivalent
You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process
You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.
New hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles. Once this new hire time in position requirement is met, the associate will have a minimum 6 months' time in position before they can post for future non-exempt roles. Employees, level 8 or greater, must have at least 18 months' time in position before they can post. All internal employees must consistently meet performance expectations and have approval from your manager to post (or the approval of your manager and HR if you don't meet the time in position or performance expectations).
Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.
Our Commitment:
When you join us, you'll be part of a diverse, inclusive culture where your skills, experience, and voice are not only heard-but valued. We celebrate the differences in all of us and believe that our individual, unique perspectives is what makes Synchrony truly a great place to work. Together, we're building a future where we can all belong, connect and turn ideals into action. Through the power of our 8 Diversity Networks+ (https://www.synchronycareers.com/our-culture/#diversity) , with more than 60% of our workforce engaged, you'll find community to connect with an opportunity to go beyond your passions.
This starts when you choose to apply for a role at Synchrony. We ensure all qualified applicants will receive consideration for employment without regard to age, race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status.
Reasonable Accommodation Notice:
Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.
If you need special accommodations, please call our Career Support Line so that we can discuss your specific situation. We can be reached at 1-866-301-5627. Representatives are available from 8am - 5pm Monday to Friday, Central Standard Time
Job Family Group:
Information Technology