Live chat
The Gap Inc.

eDiscovery and Forensics Engineer

The Gap Inc. - San Francisco, CA

eDiscovery and Forensics Engineer','222096','!*!Gap Inc.’s mission

to be the world’s favorite for American style. Our technologists

are driving retail technology innovation for all Gap Inc.’s brands and

delivering global, scalable, cloud-based platform solutions, using continuous

integration and open source technology. Reimagining retail has never been

more fun! The Security Engineer works as a member of the Gap Inc.

eDiscovery and Forensics team within the Information Security organization

(InfoSec), working closely with infrastructure, application, and managed

service provider teams to ensure the security posture of Gap Inc's global

enterprise is maintained- including endpoint, network, server, and border

security. Key Duties


enhance, and maintain infrastructure of data loss prevention and insider threat

tools, providing research, expert advice, and direction on configuration and management

of the tools.Create,

enhance, and tune data loss prevention and insider threat detection rules to

increase detection criteria and reduce false positives.Identify

security issues and risks associated with security events reported by L1 or L2

InfoSec teams, or via alerts from various security tools, and develop

remediation and/or risk mitigation plans.Leverage

a wide range of security technologies including, but not limited to:

SIEM/syslog, IDS/IPS, malware analysis and protection, logical access controls,

data loss prevention, insider threat, content filtering technologies, and

security incident response.Participate

in investigations of suspected information technology security misuse or

compliance reviews as requested by Gap’s Security Council, or InfoSec

leadership, when alerts are received from threat monitoring tools and threat

intelligence sources.Work

with critical business partners, and assist in responses to internal and

external compliance audits, data loss prevention or insider threat alerts, and

corporate investigations.Monitor

current and proposed laws, regulations, industry standards, and ethical

requirements related to information security and privacy

','!*!Competencies Bachelor's

degree in computer science or related field, preferredDesired

Certifications: CCFP, CCSP, CCSK, CISA, CISM, CFE, GCFA, GCFE, CISSP3-5 years’

experience with data loss prevention, insider threat, data protection,

automation, and multiple operating systems (Windows, UNIX, Linux, etc.)Experience

with scripting (bash, python, Perl, VBA, PowerShell etc.) commands to automate


with data loss prevention or insider threat detection program managementExperience

with Microsoft Office 365 environment, configuration, administration, and

available security features (DLP, Exchange Online Protection, etc.)Experience

working with Symantec Data Loss Prevention, Digital Guardian, or other industry

standard Data Loss Prevention solutionsUnderstanding

of the Payment Card Industry (PCI) data security standards (PCI DSS) and the

payment application data security standards (PA DSS) as well as experience in

the implementation of controls to mitigate PCI issues.Experience

with multi-national large-scale enterprises.Minimum Experience3 years 

Minimum Education

LevelBachelor's Degree','US-CA-SAN FRANCISCO','','Full-time','GapLabs','Technology/IT','Angeline Lo','','eDiscovery and Forensics Engineer']);


171 days 15 hours ago

The Gap Inc.


eDiscovery and Forensics Engineer The Gap Inc. - San Francisco, CA, United States


Location: San Francisco, CA