Job Details

Data Loss Prevention Cyber Security Engineer (ISD Engineer IV)

Navy Federal Credit Union
Vienna, Virginia, United States
Job Description


You have goals, dreams, hobbies and things you're passionate about.

What's Important to You Is Important to Us
We're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them-friends, family and passions. And we're looking for team members who are passionate about our mission-making a difference in military members' and their families' lives. Together, we can make it happen.

Don't take our word for it.
  • FORTUNE 100 Best Companies to Work Forฎ
  • Computerworldฎ Best Places to Work in IT
  • FORTUNEฎ Best Workplaces for Millennials
  • Forbesฎ America's Best Employers


Basic Purpose

Navy Federal Credit Union is seeking a Senior Cyber Security Engineer to implement the latest Data Loss Prevention (DLP) technology and strategies and work with the line of business stakeholders building DLP policies based on ongoing regulatory requirements and analysis of user business processes and workflows.


• Develop fundamental understanding of Navy Federal products and their unique valve propositions.
• Develop DLP program objectives, implement DLP controls, define standards and policies.
• Integrates Agile principles into team practices and work products using Objectives and Key Results (OKR).
• Work with DLP team members to influence/define product strategy and roadmaps to focus on quality and continuous delivery.
• Assess, report on, and make recommendations regarding current and proposed architectures, strategies, and systems in the DLP space.
• Analyze business requirements and provide recommendations for tuning content detection rules to improve accuracy across multiple systems.
• Assist to develop secure system solutions to meet DLP program requirements.
• Analyze SaaS productivity tool workflows and design Cloud Access Security Broker (CASB) controls.
• Create and maintain documentation related to DLP solutions; this may include conceptual, logical, and physical diagrams; new environment design documents; write ups on technical capabilities and solution configurations; etc.
• Follow up and work with internal IT teams to ensure solutions are built, deployed, and modified as necessary according to the projects.
• Support audit responses and investigations.
• Track and report key performance indicators and metrics.
• Identify gaps in controls, processes, systems and recommend solutions.
• Participate in various DLP audits, control testing and other processes.
• Ability to demonstrate strong written, oral and presentation skills with the ability to discuss highly technical concepts to all audiences, ranging from non-technical to executive level technical decision-makers.
• Ability to listen and collaborate with audiences ranging from IT administrators to executive level stakeholders to understand their requirements and position tools to fulfill those requirements.
• Must be self-motivated and self-educating, yet willing and able to work collaboratively.
• Engage in technical design of solutions based on use cases and business requirements.
• Participate in proof of concepts and other technical evaluations of technologies, designs and solutions and provide recommendations.
• Stay abreast of emerging technologies and threats to proactively assess and evaluate the adoption thereof into the organization.


• Bachelor's Degree in Computer Science, Information Technology or the equivalent combination of training, education, and experience
• Minimum 5+ years of total experience in Cyber Security engineering, on premise and cloud architectures, DLP and DRM policy tuning
• Minimum 3+ years of direct hands-on experience in tuning of network sensors like IDS/IPS, DDOS, Cloud Security services
• Domain expertise of cloud security access broker (CSAB)
• Domain expertise with Agile Methodology and developing OKRs
• Detailed understanding of Virtual Network Technologies Routers, switches, Load Balancers, firewalls, proxy, etc.
• Good understanding and exposure to Cloud standards, architecture and models
• Detailed proficiency with Linux (or similar) operating systems
• In depth understanding of TCP/UDP/ICMP/IP protocol
• Experience with Splunk
• Experience with PKI, SSL, SSH, HTTPS, etc.
• Experience with NIST SP 800-41, 800-43A
• Experience with NIST Risk Management Framework
• Experience with DISA STIG Hardening Standards
• Experience with industry leading firewalls, proxy and load balancing solutions
• Experience with network security concepts and principles
• Experience with Server and Endpoint operating system security
• CISSP, CCNP Security certification a plus

Hours: Monday - Friday, 8:00am - 4:30pm

Location: 820 Follin Lane, Vienna, VA 22180

*Due to COVID-19 and social distancing, this position will be temporarily working from home with plans to return to campus at the desired location listed once Navy Federal is back to normal operations. The specific logistics for returning to campus will be determined at a future date by individual leadership*

Equal Employment Opportunity

Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/Disability


Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position.

Bank Secrecy Act

Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act. - provided by Dice

Send application

Mail this job to me so I can apply later

Apply With CV

You are not logged in. If you have an account, log in to your account. If you do not have an account, why not sign up? It only takes a minute!

latest videos

Upcoming Events