Job Description: Responsibilities - Your Mission In order to enhance compliance in handling sensitive data, Airbus Cyber Security has developed a new capability, the Data Compliance Center (DCC). The primary goal of the DCC is to ensure that potential non-compliance with sensitive data transfers and hosting (such as Internal Classification and Export Control) is detected, alerted upon, and remediated effectively.
As a Data Compliance Analyst, you will have a key role in safeguarding our organization's data security by investigating and addressing non-compliance issues. Working at the crossroads of security and compliance, you will employ tools like Splunk SIEM, SOAR, and Jira to analyze, respond to, and report on data compliance alerts. Your role encompasses a broad range of tasks, including incident response, forensic analysis, alert qualification, and collaboration with data governance stakeholders.
Responsibilities: Monitor and Respond: Continuously monitor data security and compliance alerts generated by the Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) systems.Triage and prioritize alerts to ensure timely and effective responses.Execute predefined playbooks and workflows to respond to alerts promptly and effectively.Incident Response: Perform initial analysis and investigation of incidents to determine the scope and impact.Escalate incidents to relevant teams as necessary.Provide detailed incident reports and documentation to support response and remediation efforts.Detection and Analysis: Conduct detailed analysis of alerts to investigate potential breaches, policy violations, or suspicious activities.Qualify alerts by distinguishing between genuine threats, false positives, and benign activities.Utilize forensic analysis techniques to gather and preserve evidence.Collaboration and Communication: Collaborate with relevant stakeholders, including legal, compliance, and IT teams, to communicate and resolve compliance issues effectively.Participate in regular meetings and briefings with the security operations team to discuss ongoing incidents and improvement strategies.Support the team in designing and testing new detection use cases and improving existing ones.Reporting and Documentation: Develop and maintain dashboards to monitor and report on compliance metrics and incident response effectiveness.Ensure comprehensive documentation of incidents, analysis, and remediation actions.Prepare detailed post-incident reports and participate in post-mortem reviews.Continuous Improvement: Evaluate the effectiveness of current detection mechanisms and propose enhancements as needed.Stay updated with the latest security threats, compliance regulations, and industry best practices.Contribute to the development and refinement of processes, playbooks, and procedures.Requirements - the ideal candidate will have Excellent problem-solving skills and the ability to work well under pressure.Effective communication skills for collaborating with cross-functional teams.Knowledge of incident response processes for security and compliance.Knowledge of security principles, compliance regulations, and privacy laws.Detail-oriented with a strong analytical mindset.Familiarity with Jira for issue tracking and workflow management.Company: Airbus Portugal SA
Employment Type: Permanent
Experience Level: Professional
Job Family: Digital
This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation and sustainable growth.
#J-18808-Ljbffr