Data Protection Specialist (Data Discovery, CASB, Proofpoint)

Mindbox is a tech-driven company connecting top IT talents with technology projects for leading enterprises across Europe. The company focuses on consulting, engineering, and talent to build meaningful digital solutions.

• Proven experience with data protection products, ideally at least two from: Symantec DLP, CASB, Microsoft Information Protection (MIP), Data Insight, Proofpoint.
• Experience with anonymization tools such as Privitar, Delphix, CA TDM, or scripting for data masking.
• Strong knowledge of data protection policies, governance, and compliance frameworks.
• Experience working with audit teams, second lines of defense, and external regulators.
• Excellent stakeholder management and ability to lead governance meetings.
• Strong documentation and task management skills (e.g., Confluence, Jira).
• Familiarity with agile processes and ability to work in a fast-paced, global environment.
• Formal education in Information Security, Cybersecurity, Computer Science, or equivalent experience.
• Minimum of 2–3 years of cybersecurity experience is beneficial.

Nice to have:

• Information Security certifications such as GIAC, CISSP, CISA, CRISC, ISO 27001 Lead Auditor.
• Experience with Cloud Access Security Broker (CASB) solutions.
• Knowledge of risk management fundamentals and IT service management principles.

• Support the delivery and operation of data protection strategies and ensure compliance with security policies and standards.
• Act as a key representative and source of expertise on data protection issues.
• Collaborate with IT Security Officers, Compliance teams, Control Owners, and Capability Owners to ensure global adherence to security requirements.
• Provide audit and compliance support, including evidence, documentation, and responses for internal, external, and regulatory audits.
• Manage data protection policies and guidelines, ensuring effective implementation and governance.
• Lead and host data protection governance meetings with stakeholders, including audit and regulatory representatives.
• Drive engagement with global cybersecurity teams, IT functions, and business stakeholders.
• Promote a customer-focused culture, ensuring security solutions align with business needs.
• Support risk reduction by deploying technology solutions that mitigate threats while aligning with business risk appetite.
• Provide leadership and guidance to technical teams, fostering collaboration and knowledge sharing.