Data Loss Prevention Operations Response Manager - East

Job Description:

At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clients, teammates, communities and shareholders every day.

Being a Great Place to Work is core to how we drive Responsible Growth. This includes our commitment to being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting our teammates’ physical, emotional, and financial wellness, recognizing and rewarding performance, and how we make an impact in the communities we serve.

At Bank of America, you can build a successful career with opportunities to learn, grow, and make an impact. Join us!

Job Description:

The DLP Operations Response Manager is responsible for optimizing and managing Data Loss Prevention (DLP) operations, ensuring that security events are effectively triaged, investigated, and responded to in alignment with enterprise security objectives and regulatory requirements. This leader will oversee a team of DLP response analysts, drive process efficiency and automation, and ensure that DLP controls are operating effectively across cloud, endpoint, and network environments.

Operating within a Follow-the-Sun model, this role will collaborate with regional operations leads to standardize workflows, improve detection accuracy, and enhance response times. The DLP Operations Response Manager will also develop executive-level presentations and reports, providing key stakeholders with insights into operational performance, emerging risks, and areas for improvement.

This position requires a proactive, hands-on leader who can balance high-level operational oversight with direct engagement in event management, process optimization, and tool enhancements.

This role may require occasional on-call weekend schedule

Must be onsite in Charlotte - Ballantyne, not open to other locations

Manages a team or teams accountable for providing cybersecurity defense across multiple disciplines. Leads the analysis, implementation, execution and ongoing improvement of proactive security controls to prevent external threat actors from infiltrating company information or systems. Utilizes experience and deep knowledge of IT platforms, tools, and concepts to ensure cybersecurity protection is integrated at all layers of defense. Leads alert responses and problem solving workgroups across multiple functions with a focus on the enterprise risk framework. Typically has over 10 years of relevant experience including managing teams.

Key Responsibilities

• Oversee DLP operational effectiveness, ensuring that events are triaged, analyzed, and responded to in a timely and consistent manner.
• Manage and mentor a team of DLP response analysts, providing guidance on event investigation, remediation, and continuous process improvement.
• Drive efficiency and automation in DLP response workflows to improve alert fidelity, reduce false positives, and enhance detection accuracy.
• Act as a key liaison between regional DLP operations leads, driving consistency and standardization in event handling and response.
• Partner with DLP Engineering, Security Operations, and Governance, Risk & Compliance (GRC) teams to optimize workflows and enhance automation.
• Monitor operational KPIs and identify trends to improve response time, incident handling, and overall DLP program maturity.
• Ensure regulatory compliance with internal policies and external standards (e.g., FFIEC, GDPR, CCPA, NIST).
• Serve as the primary escalation point for high-priority DLP incidents, ensuring that response actions are well-documented and effectively managed.
• Develop and deliver executive-level presentations and reports, translating operational data into actionable insights for senior leadership.
• Continuously assess and improve DLP controls, ensuring they align with evolving business and security requirements.

Required Qualifications

• 10+ years of experience in cybersecurity operations, data protection, or risk management, with a focus on DLP event management and response.
• Experience leading and managing teams in a security operations or DLP environment.
• Proven ability to optimize event triage and incident response workflows, improving detection and remediation capabilities.
• Experience managing global, 24/7 security operations within a Follow-the-Sun model.
• Strong knowledge of DLP technologies, security monitoring, and event correlation across cloud, endpoint, and network environments.
• Hands-on experience with DLP tools (e.g., Symantec, Microsoft Purview, Forcepoint) and SIEM/SOAR platforms.
• Experience developing executive-level reports and presentations to communicate DLP performance, risks, and improvements.
• Knowledge of regulatory and compliance requirements (FFIEC, GDPR, CCPA, NIST).
• Strong analytical and problem-solving skills with a proactive approach to process optimization.
• Ability to manage multiple projects and priorities, ensuring DLP operations run efficiently and effectively.

Preferred Qualifications

• Experience in financial services or other highly regulated industries.
• Industry certifications such as CISSP, CISM, or CISA.
• Familiarity with machine learning, automation, and AI applications in DLP event management.

Shift:

Hours Per Week: