Principal, Cybersecurity Analyst - Data Protection

Job Description:

Our team focuses on Data Security Posture Management for critical data assets. We strengthen our organization’s data protection capabilities by enabling our business units to discover, classify, catalogue critical data and adherence to regulatory compliance by shaping our overall data security strategy.

The Expertise You Have and The Skills You Bring

• Bachelor’s degree in computer science, Information Systems, or equivalent technology discipline

• Deep understanding of how to protect sensitive, highly regulated and business critical data across its full lifecycle – from discovery, classification & labeling to policy enforcement and remediation

• Proven knowledge of data privacy and security regulations including GLBA, PII, PHI, SOX, CPRA and industry standard framework such as NIST-800-53, ISO 27001, CIS Controls & NIST CSF

• Experienced in engaging cross functional teams including leadership, Compliance, legal, Data Governance & other technology teams to align on data security best practices with business objectives and regulatory mandates 

• 8+ Years of demonstrated Technology Experience with significant focus on Data, Cyber & Cloud security

• Experience in implementing and managing security measures for the protection of organization’s data, systems, networks, etc.

• Strong Understanding of data security Architecture and Controls in AWS/Azure as well as SaaS platforms like M365 & Salesforce

• Experience in data & database security including the design and implementation of access controls, encryption at rest/in transit & auditing for RDBMS and NoSQL databases e.g. Snowflake, Oracle, SQL Server, etc.

• Knowledge of Data Masking, Tokenization, RBAC and ABAC and its implementation methodologies

• Experienced in Developing and implementing data security strategies & controls to protect sensitive information

• Experienced in Python / SQL / Machine Learning for anomaly detection and user behavior analytics

• Hands On experience with Platforms such as BigID, Varonis, Immuta, Securiti.ai, Collibra/Alation, Splunk or similar solutions will be preferred

• CCSP, CISM, CISSP, AWS Security or similar relevant certifications preferred but not required 

The Value You Deliver

• You will shape and lead the company’s data security strategy, enabling proactive risk reduction and stronger posture management across all environments

• You will ensure the organization remain compliant with evolving privacy and data security regulations, reducing exposure and enhancing stakeholder trust

• You will be the catalyst driving alignment between business goals, regulatory expectations, and cybersecurity initiatives – delivering results that are secure, sustainable & scalable

• Your leadership will foster a data centric security mindset across the enterprise empowering business units to take ownership of data protection while enabling innovation

Certifications:

Category:Information Technology

Fidelity’s hybrid working model blends the best of both onsite and offsite work experiences. Working onsite is important for our business strategy and our culture. We also value the benefits that working offsite offers associates. Most hybrid roles require associates to work onsite every other week (all business days, M-F) in a Fidelity office.