Data Loss Prevention Specialist

at Merck in Dover, Delaware, United States

Job Description

Job Description

Attention NJ Applicants : In April 2020, our Company announced plans to consolidate our New Jersey campuses into a single New Jersey headquarters location in Rahway, NJ by 2023. Therefore, the NJ work location for this role will be temporarily based and the exact timing of the departmental move to Rahway, NJ will be communicated at a future date.

Our IT team operates as a business partner proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver the services and solutions that help everyone to be more productive and enable innovation.

As a key member of the Information Technology Risk Management and Security (ITRM&S) organization, the incumbent will be act as a member of the Data Loss Prevention team, and be responsible for managing and remediating instances of data leakage and other cyber security incidents related to data loss prevention that occur on our Company’s global network and global computing assets. The incumbent will also participate in sensitive information protection activities. As part of these duties, the incumbent will be expected to manage data loss prevention (DLP) incidents to the point of remediation and clearly communicate any remediation activities and status to colleagues and/or senior management. As a member of the Data Loss Prevention team this role requires the incumbent to be part of a global Intellectual Property and Sensitive Information Protection Program.

Primary Responsibilities:

+ Investigate incidents generated from our Data Loss Prevention Tools. Using log management tools, packet captures reports, data visualization, and pattern analysis.

+ Analyze, escalate, and assist in remediation of critical information security incidents related to data loss prevention.

+ Improve and challenge existing processes and procedures in a very agile and fast moving information security environment.

+ Security analysts should have knowledge of:

+ Information security policies and best practices

+ Data Loss Prevention Tools (including network, endpoint, and cloud based DLP tools)

+ The current IT Data Protection landscape and upcoming trends in security

The incumbent will work with our Global Security Group, Legal, and other business units as appropriate based upon corporate policy to respond to DLP incidents and take the appropriate response actions. The incumbent will create, modify and review various reports and dashboards from our various reporting tools. The incumbent will also be responsible for analyzing DLP related security incidents that are generated from other tools such as our Company’s Big Data platform. The incumbent will maintain DLP Policies/Rules and associated events which support compliance to our Company’s corporate policies. The incumbent will also help maintain/troubleshoot issues with the DLP security infrastructure. The incumbent will also be an active participant in weekly DLP management meetings reporting on security incidents that have occurred.

The DLP security solutions that the incumbent will be working on support our Company’s current and future state capabilities for achieving desired levels of information protection, confidentiality, integrity and availability of services. The incumbent will be responsible for end-to-end problem and service management, and clear communication of ongoing problem status to colleagues and management. The incumbent will make recommendations to strengthen the security posture of our computing environment as well as recommend process and technology improvements to ensure timely response to future DLP security incidents.

The incumbent will be required to maintain up-to-date data protection industry awareness and trends, and be able to understand how emerging threats may potentially impact the organization. The role also requires active and ongoing collaboration with our Company’s many other organizations and departments acting in a consultative capacity promoting information security awareness and compliance to corporate policies.

Required Experience and Skills:

+ Excellent analytical and communication skills are essential for this role, as well as passion for problem solving, a desire to learn, and the ability to work in a team environment.

+ Demonstrated skills working with various IT technologies and services.

+ Proven record of successfully managing incidents to resolution, and the ability to trace a problem to root cause.

+ The candidate must be able to adapt and rapidly learn new technologies and must have some background in an information security related discipline.

+ System administration on Windows, Unix or Linux.

+ Data Loss Prevention Tools experience.

+ Investigating security incidents, Tier-2 support.

+ Various general technical skills including knowledge of networking (i.e. TCP/IP) and security product experience.

+ Willingness to acquire in-depth knowledge of network and host security technologies and products.

+ Demonstrated ability to work in a team environment.

+ Strong written and verbal communication skills.

Desired Experience and Skills:

+ Prior experience as a data loss prevention analyst.

+ Ability to build strong relationships with business and technology stakeholders, self-motivation, personal drive and high energy are highly valuable for this position.

+ Experience or familiarity with Data Loss Prevention solutions for network, endpoint and cloud solutions.

+ Experience or familiarity with content monitoring and user activity monitoring solutions.

+ Knowledge of other information security related products is a plus.

+ CISSP or similar Information security industry certification is a plus.

Education Minimum Requirement:

+ Bachelor’s Degree with 3 years experience, or High School Diploma with 5 years of experience.

Our Support Functions deliver services and make recommendations about ways to enhance our workplace and the culture of our organization. Our Support Functions include HR, Finance, Information Technology, Legal, Procurement, Administration, Facilities and Security.

Who we are …

We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world’s most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world.

What we look for …

Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us-and start making your impact today.


In accordance with Managers’ Policy – Job Posting and Employee Placement, all employees subject to this policy are required to have a minimum of twelve (12) months of service in current position prior to applying for open positions.

If you have been offered a separation benefits package, but have not yet reached your separation date and are offered a position within the salary and geographical parameters as set forth in the Summary Plan Description (SPD) of your separation package, then you are no longer eligible for your separation benefits package. To discuss in more detail, please contact your HRBP or Talent Acquisition Advisor.

**New hires in office-based roles in the US & P

Copy Link

Job Posting: JC216196654

Posted On: Jun 15, 2022

Updated On: Jul 28, 2022