Location
Egypt Delivery Center
Data Protection Tech Lead, Cairo, Egypt
Connect to your career at Deloitte.
Deloitte drives progress. Using our vast range of expertise, that covers audit, risk advisory, and consulting services across tax, legal, business, technology, and corporate finance, we help our clients’ become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more.
What brings us all together at Deloitte? It’s how we approach the thousands of decisions we make every day. How we behave, our beliefs and our attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact how and where it matters most.Collaborate for measurable impact.
Connect to your opportunity.
We are seeking skilled data protection architects and engineers with expertise in Data Loss Prevention (DLP), data discovery, access governance, database monitoring, Cloud Access Security Broker (CASB), data classification and rights management. The ideal candidate will have a background in designing, implementing, integrating, and operating data protection solutions to mitigate the risk of sensitive data loss for our clients. As part of this role, you will be expected to:
- Define data protection use cases, functional and non-functional solution requirements, and technical specifications, e.g., safeguarding data (structured and unstructured) across its lifecycle, from creation to deletion, in both on-premises and cloud environments, using solutions such as DLP, CASB, etc.
- Design and architect Data Protection solutions by creating high-level and low-level designs that align with business objectives and comply with industry cybersecurity standards (e.g., NIST). This includes being able to architect solutions to protect structured and unstructured data.
- At rest e.g., on-premises storage environments, cloud services such as Azure, Amazon Web Services (AWS), and Google.
- In transit e.g., email, web traffic, endpoint, cloud services.
- In use, e.g, Used across Data Platforms which collect/store, transform and share data.
- Creating design documents will include:
- Creating high-level and low-level system architecture and data flow (e.g, for data in transit and in use across egress channels and systems) diagrams with technical descriptions of each component.
- Defining the dependencies to implement the solution, e.g., network rules, server infrastructure required.
- Defining the system specifications to support optimal performance e.g, for data discovery scanners.
- Integrating workflows with third-party systems and security tools, such as Security Information and Event Management (SIEM) solutions, enterprise data transformation platforms and cloud platforms like Amazon Web Services (AWS) and Azure.
- Defining the Responsible, Accountable, Consulted, and Informed (RACI) matrix to operate and maintain the Data Protection solution’s infrastructure components.
- Implement Data Protection solutions, including:
- Configuring and implementing data discovery servers.
- Configuring and implementing security rules (e.g., DLP policies or rules) on data protection solutions to protect sensitive data at rest and in transit. As part of this, fine-tune and configure the rules for accurate detection based on data points such as false positive rates.
- Work with IT infrastructure teams (e.g, Networks, Storage team, Messaging team) to ensure pre-requisites have been met and are in place.
- Configuring and implementing agents to perform database monitoring, DLP monitoring etc.
- Configuring and implementing DLP servers and/or endpoints to detect sensitive data across email, web, and endpoint egress channels.
- Integrating Data Protection solutions with existing enterprise applications/systems such as Office 365 applications, HR systems, endpoints using out of the box or custom API connections.
- Configuring custom reporting dashboards using 3rd party tools such as PowerBI.
- Develop technical documentation for Data Protection implementations including process documentation to enable operation of the solution e.g, defining processes which cover DLP incident management, DLP policy management, data discovery scanning, Shadow IT remediation etc.
- Execute unit, integration, functional and non-functional testing for Data Protection solutions. As part of this, troubleshoot and resolve issues (e.g, DLP alerts not generating, scan failures etc) by working with vendors.
- Deliver services post-implementation, from hyper-care support, resolving additional issues in production through advanced troubleshooting and debugging to ensure smooth operation.
- Conduct knowledge transfer to client Data Protection teams through technical training sessions on operating and maintaining the solution, empowering clients to effectively manage and support the Data Protection environment.
Connect to your skills and professional experience.
To succeed in this role, you will need the following skills:
• Experience — 7+ years of hands-on experience in the data protection domain.
• Bachelor’s or master’s degree in information technology, Cybersecurity, computer science or a related field.
• Domain expertise, implementation and/or integration skills in two to four or more (depending on years of experience) of following areas:
• Data discovery, inventory, and classification solutions (e.g., Microsoft, BigID, Cyera).
• Data Loss Prevention (DLP) and Cloud Access Security Broker (CASB) (e.g., Microsoft, Netskope, Proofpoint, ZScaler).
• Database Activity Monitoring (DAM) (e.g., Imperva, IBM Guardium).
• Data Access Governance (e.g., Varonis).
• Information Rights Management (e.g., Microsoft, Seclore, Vera).
• Data Security Posture Management (DSPM) tools (e.g., Symmetry, Flow, Polar, Laminar).
• Systems administration experience with various operating systems (e.g., Windows Server, Unix, and Linux).
• Database administrator (DBA) experience with database technologies (e.g., Oracle and Microsoft SQL).
• Security of data lakes, and data warehouses leveraging unstructured databases and big data platforms.
• Ability to optimise data security operations including ruleset tuning, triaging, and reporting or solutions such as DLP and data discovery.
The following skills are also preferred:
• Experience in secure configuration of container-based architectures and implementations (e.g., Kubernetes, Docker, etc.).
• Technical skills including scripting - Python/JAVA/ASP/C#/PowerShell, Coding frameworks.
We welcome candidates with various security certifications and exposure to other security domains (e.g., Cloud).
Personal independence
Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to several audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints. This can mean that you and your "Immediate Family Members" are not permitted to hold certain financial interests (shares, funds, bonds etc.) with audit clients of the firm. The recruitment team will provide further detail as you progress through the recruitment process.
Connect to your Industry.
“What attracted me to Deloitte were the endless opportunities and the collective experience of other like-minded individuals. Deloitte’s clients include many of the world’s largest organizations; I wanted to be part of a team that made a difference that I could be proud of.” Dan, Consulting
Connect with your colleagues.
Location: Cairo. Egypt
Your Work, Your Way: We call our hybrid working vision Deloitte Works. And it does. We trust you to make the right choices around where, when, and how you work. You’ll be able to make decisions about how you work best, to be collaborative, learn from colleagues, share your experiences, build the relationships that will fuel your career and prioritize your wellbeing. Having great conversations with your team and your leadership paves the way for great collaborative ways of working.
Our commitment to you.
Making an impact is more than just what we do: it’s why we’re here. So we work hard to create an environment where you can experience a purpose you believe in, the freedom to be you, and the capacity to go further than ever before.
We want you. The true you. Your own strengths, perspective, and personality. So, we’re nurturing a culture where everyone belongs, feels supported and heard, and is empowered to make a valuable, personal contribution. You can be sure we’ll take your wellbeing seriously, too. Because it’s only when you’re comfortable and at your best that you can make the kind of impact you, and we, live for.
Your expertise is our capability, so we’ll make sure it never stops growing. Whether it’s from the complex work you do, or the people you collaborate with, you’ll learn every day. Through world-class development, you’ll gain invaluable technical and personal skills. Whatever your level, you’ll learn how to lead.
Connect to your next step.
A career at Deloitte is an opportunity to develop in any direction you choose. Join us and you’ll experience a purpose you can believe in and an impact you can see. You’ll be free to bring your true self to work every day. And you’ll never stop growing, whatever your level.