About the role
This is an ideal opportunity for a highly motivated individual to get in on the ground floor as we build out our Professional Services and Managed Services functions at Cyberhaven. The Data Protection Analyst holds a key position in providing continuous value for our customers and is responsible for advancing the mission of identifying potential insider threats and investigating endpoint forensic incidents. You will be responsible for performing technical analysis of data security incidents, finding and exposing risk in a customers environment as well as handling documentation and project management aspects of incident response. You will also perform analysis of events and incidents.
What you’ll do
Provide insight into DLP analytics and related issues.
Analyze Cyberhaven’s Data Detection and Response (DDR) platform event data to improve policies and incidents/alerts and bring focus to areas where data loss risk may exist.
Refine datasets and policies and manage them as customers’ data risk strategy matures and business needs evolve.
Prepare and present summaries and reports to internal team members.
Eliminate noise and false-positive information from analytic results to enhance detection accuracy.
Conduct forensic analysis on people, groups, and non sanctioned egress destinations as requested.
Who you are
2–5 years with data protection or adjacent security tools (EDR, SIEM, SOAR) and 2+ years in Insider Threat/InfoSec.
Strong grasp of endpoint protection best practices and incident mitigation workflows.
Experience with DLP, Insider Threat, CASB and controls for handling sensitive data.
Comfortable across macOS, Linux, Windows and cloud platforms (AWS, GCP, Azure).
Data & automation: SQL for analysis; build/maintain dashboards; edit XML-based DLP rules; script and use APIs.
Excellent problem-solving and communication skills; collaborative on a global team; customer-centric with a passion for cloud security and emerging tech.
Joining Cyberhaven is a chance to revolutionize data security. Traditional tools fall short, but we’ve reimagined protection with AI-enabled data lineage that analyzes billions of workflows to understand data, detect risk, and stop threats. Backed by $250M from leading investors like Khosla and Redpoint, our team includes leaders who built industry-defining technologies at CrowdStrike, Palo Alto Networks, Meta, Google, and more. This role lets you shape the future of data security, alongside experts driven to help customers protect their most valuable information.
Cyberhaven is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
Top Skills
What We Do
Cyberhaven was founded by computer scientists and security experts from MIT and EPFL to rethink data security. Instead of stopping threats at the perimeter, we trace the full lineage of sensitive data, where it originates, how it moves, and who uses it. This breakthrough became the foundation of our data lineage platform, now powering Cyberhaven’s leadership in data detection and response and protecting enterprises from insider threats and data loss.
Our Data Detection and Response solution transforms how enterprises protect their data with a unique technology called data lineage. Cyberhaven records every event for every piece of data – every move, copy, edit, and share to fully understand how data moves throughout your company. We developed an architecture that achieves complete visibility of your data, including as it transits unmanaged cloud apps and unmanaged devices.
As data moves throughout your company, from person to person and application to application, it fragments and gets combined with other data. We calculate the lineage for every piece of data starting with its origin through every step it takes. Our product allows you to define what is risky for your organization, enforce actions to protect data, and educate your workforce in real time.
Why Work With Us
Cyberhaven is a Series D unicorn in AI-driven data security, protecting 300+ customers like Motorola, Reddit, and Snowflake. We solve next-gen DLP by tracing full data lineage and enabling real-time insights. As a value-driven company with remote and hybrid work, you’ll grow alongside bold thinkers, making real impact.
Gallery
