Staff Data Security Analyst – Data Classification & Governance

Staff Data Security Analyst – Data Classification & Governance

Requirements

• Bachelor’s degree in Information Security, Computer Science, Information Systems, or a related field, or equivalent practical experience.
• 7+ years of experience in data security, governance, IT risk management, or a similar analytical role focusing on data protection.
• Strong, demonstrable understanding of data classification principles, methodologies, data lifecycle management, and data handling best practices.
• Hands-on experience with data discovery and/or data classification tools and technologies.
• Solid understanding of data protection concepts and technologies (e.g., DLP, data masking, tokenization, encryption, IAM).
• Knowledge of key data privacy regulations (e.g., CCPA, GDPR) and their impact on data handling.
• Excellent analytical, problem-solving, and critical-thinking skills with meticulous attention to detail.
• Proven ability to work effectively in a cross-functional team environment and manage multiple tasks.
• Strong written and verbal communication skills, with the ability to articulate technical concepts to varied audiences.

Responsibilities

• Actively participate in data discovery initiatives to identify and inventory sensitive data (PII, SPI, financial, IP, AI training data) across key enterprise systems (e.g., Google Workspace, Salesforce, Workday, NetSuite, Snowflake).
• Assist in executing pilot programs for data classification on high-priority systems and contribute to refining classification processes.
• Assist data Stewards and system owners in implementing the data classification policy and data handling standards to support their operationalization.
• Collaborate with BT and Security engineering teams to test and validate the implementation of technical controls (e.g., DLP rules, CASB configurations) based on data classification.
• Help define and test controls related to sensitive data input into enabled AI tools.
• Become proficient in using selected data discovery, classification, and governance tools (potential tools include Varonis, native Google/Snowflake capabilities).
• Assist with the configuration, including helping to set up scans and reviewing results.
• Contribute to developing and maintaining documentation for classification procedures and tool usage.
• Work closely with Data Stewards (from D&I and business units) to understand data context, validate classification results, and ensure alignment with business needs.
• Partner with BT application owners to facilitate classification efforts and implement necessary data handling changes.
• Support Security GRC by providing data and insights for risk assessments and compliance reporting related to data classification.
• Assist in establishing and tracking key metrics for data classification coverage, accuracy, and the effectiveness of associated controls.
• Contribute to developing dashboards and reports for program stakeholders and the Data Governance Council.

Preferred Qualifications

• Experience with specific data governance or classification platforms (e.g., Varonis, OneTrust, Google Cloud DLP, Snowflake Data Classification).
• Experience implementing or operating data security controls in SaaS environments (e.g., Salesforce, Workday, Google Workspace, M365) and cloud platforms (AWS, Azure, GCP).
• Familiarity with security considerations for AI/ML systems and data inputs, including knowledge of AI-native solutions for data labeling and classification.
• Hands-on experience with AI governance principles and frameworks, including implementing controls for responsible AI use.
• Experience in developing and delivering training or awareness materials.
• Relevant industry certifications (e.g., CISM, CISSP, CIPP, CDMP, or tool-specific certifications).