Senior Data Security Manager @ Southern New Hampshire ...

Southern New Hampshire University Flexible and affordable, SNHU offers over 200 career-focused programs to more than 200,000 learners online and on our 300-acre NH campus. Southern New Hampshire University is a team of innovators. World changers. Individuals who believe in progress with purpose. Since 1932, our people-centered strategy has defined us "” and helped us grow a team that now serves over 180,000 learners worldwide. Our mission to transform lives is made possible by talented people who bring diverse industry experience, backgrounds and skills to the university. And today, we're ready to expand our reach. All we need is you. Make an impact "” from near or far At SNHU, you'll have the option to work remotely in the following states: Alabama, Arizona, Arkansas, Delaware, Florida, Georgia, Hawaii, Idaho, Indiana, Iowa, Kansas, Kentucky, Louisiana, Maine, Maryland, Massachusetts, Michigan, Mississippi, Missouri, Nebraska, New Hampshire, New Mexico, North Carolina, North Dakota, Ohio, Oklahoma, South Carolina, South Dakota, Tennessee, Texas, Utah, Vermont, Virginia, West Virginia, Wisconsin and Wyoming. We ask that our remote employees have access to a reliable internet connection and a dedicated, properly equipped workspace that is free of distractions. Employees must reside in, and work from, one of the above approved states. The opportunity The Senior Data Security Manager will report directly to the Deputy Chief Information Security Officer. This is a technical role within the Information Security Management Office team to lead the development of a Data Security Posture Management (DSPM) practice and deployment of tool(s) to support that practice. You will work with data stewards, IT, multiple teams within the Information Security Management Office, and business teams across the University to establish and enforce data security management practices and ensure data across SNHU is accessed, used, stored, and managed securely. You will work 100% remotely in any of our approved States. #LI-Remote What You'll Do: Lead development of Data Security Posture Management practice that includes data discovery, data labeling, data access control, and data monitoring across the SNHU ecosystem (e.g., databases, SaaS applications, cloud file storage, on-premise file servers) using multiple tools like Varonis and Microsoft Purview. Develop goals, operational metrics, run books, and development plans/roadmap for data security posture management practice. Partner with ISMO GRC, other ITS teams, data stewards, and business partners to assess and report on data security posture management. Manage administration, configuration, and continuous improvement of Data Security Posture Management tools, acting as the primary technical and subject matter expert for tool implementation. Design Data Classification Framework, Sensitive Content Discovery and Labelling within the DSPM tool. Organize, communicate, and manage installs, upgrades, and support for DSPM tool. Manage requests for server reboots, security exceptions, and open ports, including tracking change requests. Validate data classification engine rules for multiple regulatory standards (e.g., GLBA, PCI) to ensure compliance. Test and configure multiple DSPM tool modules, including Data Classification Engine (DCE), Data Classification Label (DCL), and Link Remediator, according to our requirements. Collaborate with our teams and external vendors to troubleshoot and resolve issues related to DSPM tool servers, file servers, and SharePoint Online. Develop and implement strategic plans for future enhancements and scalability of the platform. Complete research and remediation of folder and share permission issues. Run and analyze reports in DSPM tool to identify and address sensitive open access and broken permissions. Enforce controls around sensitive data access, use, and storage. Analyze identified data risk/exposure to prioritize remediation efforts. Lead remediation projects to address holistic data security issues. Identify, confirm, and coordinate remediation of inconsistent permissions and global group access on unstructured data stores (e.g., SharePoint, OneDrive, or file servers) with department subject matter experts and ITS teams using both manual and automated methods. Map data security posture management controls and risks to relevant compliance frameworks. Create and enforce procedures to prevent the recurrence of sensitive data with open access. Develop detailed Standard Operating Procedures (SOPs) for remediation and system management. Engage with partners to communicate project progress, risks, and outcomes. Manage transformation and improvement of written policies into technical processes to be used within the DSPM tool, and assist IT and departments with completing exception requests where policy cannot be satisfied. Collaborate with ITS teams to develop Purview governance and operating model. Evaluate Purview capabilities to integrate with Varonis and enhance DSPM program. Work cross-functionally across ITS and all SNHU teams to provide guidance and technical implementations. Work with the Information Security team to create awareness campaigns to reduce the number of policy violations. Partner with Security Operations to build monitoring and incident response capabilities including alerting and runbook development. Help with risk management, security assessment, auditing, and security authorization programs, as directed by the university's Information Security Management team. Other responsibilities as assigned. Job responsibilities can change at any time, with or without notice. What We're Looking For: 8+ years' experience in a quantitative, data-driven business environment working with data directly. 3+ years' experience in a data analyst or business analyst role. 2+ years' experience in data security, cybersecurity, or information security. Experience securing the File servers, O365 applications using a DSPM platform. Experience in Security concepts, Microsoft systems administrator or similar, implying an understanding of Microsoft server-side technologies, including MS Active Directory management concepts. Experience with data privacy regulations (e.g., FERPA, GLBA). Experience in data management, data governance, or a related field. Experience with Data Security Posture Management Tools (Varonis and Purview) for management of unstructured data environments. Additional Experience In: 1+ certifications, such as ISC2 CISSP Certification, Microsoft Azure, Cisco, CompTIA, and ITIL. Bachelor's degree required in information technology, computer science, mathematics, data analytics or related field. Experience in project management (defining goals, scope and timelines, analyzing/exploring data to distill insights, communicating results with rich visualizations). Experience with the development of data solutions such as data warehousing, data marts, tabular models, and reports. Knowledge of Compliance Regulations (GLBA, PCI, FERPA, FTI) and experience providing evidence to internal and external Auditors. Experience managing Storage technologies. We believe real innovation comes from inclusion - where different experiences, perspectives and talents are celebrated. So if you're wondering whether SNHU is right for you, take the leap and apply. You might be just the person we're looking for. Compensation The annual pay range for this position is $110,590.00 - $176,978.00. Actual offer will be based on skills, qualifications, experience and internal equity, in addition to relevant business considerations. We expect this position to be hired in the following target hiring range $122,202.00 - $165,333.00. Exceptional benefits (because you're exceptional) High-quality, low-deductible medical insurance Low to no-cost dental and vision plans 5 weeks of paid time off (plus almost a dozen paid holidays) Employer-funded retirement Free tuition program Parental leave Mental health and wellbeing resources #J-18808-Ljbffr

Created: 2025-03-01