Position: Consultant Data Loss Prevention (DLP) Analyst
Location: Bangalore
Shift: General
Experience: Around 3–5+ years in Cyber Security, Information Security, Security Operations, Data Protection, or a related technical discipline
POSITION DESCRIPTION
The Data Loss Prevention (DLP) Analyst is part of CGI's Global Security Operations Centre (GSOC), which provides enterprise wide security monitoring, threat detection, incident response, and data protection services across the organisation.
The DLP Analyst is responsible for monitoring, analysing, and investigating Data Loss Prevention (DLP) events to identify and mitigate risks relating to the unauthorised disclosure, misuse, or loss of sensitive information. Working closely with Security Monitoring, Incident Response, Insider Threat, Security Engineering, and business stakeholders, the role supports the protection of CGI's information assets while enabling secure business operations.
The DLP Analyst is responsible for investigating DLP alerts, validating policy violations, identifying malicious or accidental data loss, and coordinating appropriate response activities. In addition, the role contributes to the ongoing development and optimisation of CGI's DLP capabilities by improving policies, reducing false positives, supporting new technology deployments, and ensuring data protection controls remain effective.
This role requires a strong understanding of data protection principles, cybersecurity, cloud services, Microsoft 365, endpoint technologies, and modern collaboration platforms. The successful candidate will possess excellent analytical and investigative skills, demonstrate sound judgement when assessing risk, and effectively communicate technical findings to both technical and non technical stakeholders.
POSITION RESPONSIBILITIES
Key Responsibilities
The following are the key responsibilities related to this role:
. Monitor and investigate Data Loss Prevention (DLP) alerts across endpoint, email, cloud, and collaboration platforms.
. Analyse DLP events to determine whether activity represents accidental data exposure, policy violations, insider threats, or malicious exfiltration.
. Conduct investigations into suspected data loss incidents, documenting findings and recommending appropriate remediation actions.
. Work closely with Incident Response, Security Monitoring, Insider Threat, Legal, HR, Privacy, and business teams during investigations where appropriate.
. Escalate confirmed security incidents in accordance with established incident response procedures.
. Develop, maintain, and optimise DLP policies to improve detection accuracy while reducing false positives.
. Support the implementation and ongoing administration of enterprise DLP technologies.
. Identify trends and recurring data protection risks, providing recommendations to strengthen organisational controls.
. Produce clear technical reports and management summaries relating to DLP investigations and operational metrics.
. Contribute to the continuous improvement of DLP processes, playbooks, and operational procedures.
. Support user awareness initiatives by identifying common data handling issues and recommending improvements to security awareness programmes.
. Maintain awareness of emerging threats, data protection regulations, and industry best practices.
. Ensure activities are conducted in accordance with organisational policies, regulatory obligations, and recognised security frameworks.
. Support user awareness initiatives by identifying common data handling issues and recommending improvements to security awareness programmes.
QUALIFICATIONS TO BE SUCCESSFUL IN THIS ROLE
Experience
. Experience working within cybersecurity, information security, security operations, data protection, or a related technical discipline.
. Experience investigating security alerts or data protection events in an enterprise environment.
. Good understanding of Data Loss Prevention (DLP) concepts, information classification, and data protection principles.
. Knowledge of common data exfiltration techniques, insider threats, and information security risks.
. Experience developing DLP policies, tuning detection rules, and reducing false positives.
. Strong analytical and investigative skills with the ability to assess business risk and prioritise appropriately.
. Excellent written and verbal communication skills.
. Ability to work collaboratively with technical and non technical stakeholders across the organisation.
. Experience administering enterprise DLP platforms such as ZScaler DLP.
. Knowledge of Microsoft Information Protection (MIP), sensitivity labels, and data classification.
. Experience supporting Insider Risk Management investigations.
. Understanding of regulatory requirements such as GDPR, ISO 27001, PCI DSS, or other data protection frameworks.
Qualifications & Certifications
Bachelor's degree in Cyber Security, Information Security, Computer Science, Information Technology, or a related discipline, or equivalent practical experience
Relevant industry certifications are desirable, including one or more of:
. Microsoft SC 400: Information Protection Administrator
. Microsoft SC 200: Security Operations Analyst
. Microsoft SC 900: Security, Compliance, and Identity Fundamentals
. Zscaler Certified Administrator (ZDTA)
. Zscaler Data Security (EDU 220)
. Zscaler Data Security Certified
. CompTIA Security+
. Certified Information Privacy Professional (CIPP/E)
. CISSP
. CISM
Your future duties and responsibilities
Required qualifications to be successful in this role
Together, as owners, let’s turn meaningful insights into action.
Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because…
You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction.
Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise.
You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons.
That same commitment to fairness extends to how we use technology. To support our recruitment team, AI tools may be used to help assess applications though they never replace human judgement. All hiring decisions remain entirely in the hands of our recruitment professionals.
Come join our team—one of the largest IT and business consulting services firms in the world.