Associate Dir Engineer - Cybersecurity

The Associate Director - Data Security Technologies will join our growing cybersecurity team and is ideally based Baltimore, MD. Candidates may also be considered in Fort Worth, Evansville, and Fort Mill. The Associate Director - Data Security Technologies will be responsible for implementing, maintaining, documenting, and reviewing the implementation of data security capabilities across on-premises and cloud environments.

The Associate Director - Data Security Technologies will lead the Data Security Technologies team while collaborating across several business and technology organizations to develop, deploy, and mature data protection technologies. The Associate Director - Data Security Technologies will have deep technical expertise in Data Loss Protection, Prevention (DLP), data inventory, and data classification/labeling, and will play a key role in safeguarding sensitive data across cloud and on-premise environments.

Manage and mentor a team of data security analysts, fostering a collaborative and high-performance work environment.

Lead the design, deployment, and tuning of enterprise Data Loss Prevention (DLP) solutions across endpoints, email, cloud, and network infrastructure.

Develop and manage automated processes to maintain a comprehensive and accurate data inventory, including sensitive data mapping across systems and data stores.

Implement and maintain data classification and labeling frameworks, integrating with DLP and cloud security tools.

Develop and enforce data protection capabilities, controls, and monitoring aligned to regulatory, contractual, and internal risk requirements.

Conduct risk assessments on data storage and movement; recommend and implement mitigating controls.

Monitor and tune DLP alerts and data security events while working closely with incident response and SOC teams to operationalize alert triage and response.

Create and maintain documentation for data protection architecture, configurations, and standard operating procedures.

Develop test plans, implementation plans, and project timelines for various data security projects.

Develop and implement metrics to measure the effectiveness, efficiency, coverage, and maturity of the data security technologies team and its processes.

Excellent verbal and written communication skills.

Ability to track, manage, and prioritize multiple simultaneous projects while ensuring work is completed in a timely manner.

Self-motivated to seek out and discover security gaps or weaknesses in existing implementations.

Demonstrated knowledge of secure build and configuration standards in a highly regulated environment.

Proficiency with DLP platforms (e.g., Microsoft Purview, Endpoint Protector, Nightfall, Zscaler).

Strong experience with data discovery and classification tools (e.g., Microsoft Information Protection, NVision

X, Varonis).

Solid understanding of data security principles, including encryption, tokenization, masking, and access control.

Experience with cloud platforms (AWS, Azure, GCP) and securing data in SaaS/IaaS/PaaS environments.

Familiarity with regulatory frameworks (e.g., GDPR, PCI-DSS, NY DFS, CCPA) and their implications on data handling and protection.

Security certifications such as CISSP, CISM, GIAC, or Azure Security Engineer Associate.

Experience with SIEM integration for DLP and data security alert correlation.

Familiarity with data governance tools and frameworks (e.g., Collibra, Informatica).

Knowledge of insider risk programs and behavior analytics related to data misuse.

One Main Financial (NYSE: OMF) is the leader in offering nonprime customers responsible access to credit and is dedicated to improving the financial well-being of hardworking Americans. Since 1912, we’ve looked beyond credit scores to help people get the money they need today and reach their goals for tomorrow. Our…