TJX Companies

At TJX Companies, every day brings new opportunities for growth, exploration, and achievement. You'll be part of our vibrant team that embraces diversity, fosters collaboration, and prioritizes your development. Whether you're working in our four global Home Offices, Distribution Centers or Retail Stores-TJ Maxx, Marshalls, Homegoods, Homesense, Sierra, Winners, and TK Maxx, you'll find abundant opportunities to learn, thrive, and make an impact. Come join our TJX family-a Fortune 100 company and the world's leading off-price retailer.

Job Description:

Who we are

A Data Loss Prevention (DLP) Engineer on the Data Security team will focus on maintaining, improving and optimizing our DLP tools. You will act as a subject matter expert to identify/recommend/implement process & technology improvements. We seek creative, security-minded professionals to provide hands-on talent and social expertise to protect TJX and its assets. You'll work with engineers, business programs, and other security professionals to adapt and improve our security posture in applications, infrastructure, and cloud modernization efforts through well-designed and broadly applied data security controls.

What you'll do

As a Data Loss Prevention Engineer, you will demonstrate deep knowledge and experience in designing and implementing business functionality in your assigned Platform(s)/Product(s) area. You will own the technology aspect for your assigned area, leading the technical direction, partnering with architecture and security consultants, and presenting team progress alongside the Scrum Master and Product Manager. Engineers at this level can lead & deliver on assigned Epics in their area of support.

You will act as the Primary DLP expert to operate host & network data loss prevention technologies. You will focus on design, architecture, implementation, and the operation of data loss prevention and data protection technologies in all areas of the environment including network, endpoints, applications, and cloud. This will be done in parallel to daily triage off DLP alerts and escalation of data loss incidents to the investigations team. You will also look to conduct analysis, troubleshooting, and trending of incidents/events detected from Endpoint Security solutions, DLP and other security applications.

Successful candidates will have

7+ years' experience with data loss prevention technologies, along with data discovery and classification processes.
Please note: DLP toolset exposure must include Microsoft DLP tools (Purview, Defender, Azure Cloud, and Information Protection). Exposure to other DLP tools such as Proofpoint DLP, Palo DLP, Zscaler DLP, or others.
Extensive experience with data analysis, data discovery, and data classification systems.
A thorough understanding of how to design, test, deploy, tune, and maintain DLP alert policies by leveraging automation.
Experience with developing regular expressions (RegEx) and machine learning algorithms which can be used to accurately match numbers, terms, and other alphanumeric expressions.
Experience analyzing, reviewing, and investigating alerts from deployed technologies to provide key data points to other Cybersecurity programs and key executive stakeholders.
The ability to discern, communicate, and drive policy recommendations across multiple functional groups to minimize organizational risk.
The technical capabilities required to support business and cybersecurity risk assessments for data discovery, data classification, and data loss prevention systems
Experience with deploying and maintaining DLP software and platform upgrades on Windows, iOS, and MacOS endpoints
The interpersonal skills necessary to establish strong relationships with your peers, TJX vendors, and associated third parties to derive well-designed security value.
Education Level: Bachelor's degree in relevant fields or equivalent technical experience is expected

Preferred Qualifications

Preferred experience with the automation of DLP processes and DLP reporting/analytics using PowerShell, Power BI, or Python.
Exposure to DLP techniques and scenarios involving prompts for AI services such as Chat GPT and Copilot or the training of Large Language Models.
Experience with mentoring, training, and upskilling junior associates
Experience with developing and maintaining Cybersecurity plans for incident response and recovery
Experience with risk identification techniques and data analysis across large datasets

Benefits include Associate discount; 401(k) match; medical/dental/vision; HSA; health care FSA; life insurance; short/long-term disability; paid holidays/vacation /sick/bereavement/parental leave; EAP; incentive programs for management; auto/home insurance discounts; tuition reimbursement; scholarship program; adoption/surrogacy assistance; smoking cessation; child care/cell phone discounts; pet/legal insurance; credit union; referral bonuses. All benefits are subject to applicable plan or program terms (including eligibility terms) and may change from time to time. Contact your TJX representative for more information.In addition to our open door policy and supportive work environment, we also strive to provide a competitive salary and benefits package. TJX considers all applicants for employment without regard to race, color, religion, gender, sexual orientation, national origin, age, disability, gender identity and expression, marital or military status, or based on any individual's status in any group or class protected by applicable federal, state, or local law. TJX also provides reasonable accommodations to qualified individuals with disabilities in accordance with the Americans with Disabilities Act and applicable state and local law.

Address:

770 Cochituate Rd

Location:

USA Home Office Framingham MA 770 Cochituate Rd

This position has a starting salary range of $112,800.00 to $146,600.00 per year. Actual starting pay is determined by a number of factors, including relevant skills, qualifications, and experience. This position is eligible for an annual incentive as well as long-term incentives.