Data Security Analyst

About UOB

United Overseas Bank Limited (UOB) is a leading bank in Asia with a global network of more than 500 branches and offices in 19 countries and territories in Asia Pacific, Europe and North America. In Asia, we operate through our head office in Singapore and banking subsidiaries in China, Indonesia, Malaysia and Thailand, as well as branches and offices.

Our history spans more than 80 years. Over this time, we have been guided by our values Honourable, Enterprising, United and Committed. This means we always strive to do what is right, build for the future, work as one team and pursue long-term success. It is how we work, consistently, be it towards the company, our colleagues or our customers.

Job Objectives

Data Lost Prevention Analyst is an operational role within UOB's Group Security Operations Center. The incumbent will be responsible for the continuous monitoring, analyzing, and investigating of insider threats and data leakage incidents. He/She must have good analytical and investigative skills to recognize and detect anomalous behavior.

Key Responsibilities

• Lead the DLP monitoring function to ensure protection of sensitive financial and customer data.
• Design and enforce DLP policies aligned with banking regulations (e.g., PCI DSS, PDPA, GDPR).
• Oversee incident response for data leakage involving customer PII, financial records, or insider threats.
• Coordinate with Compliance, Risk, Legal, and IT Security teams on investigations and audits.
• Conduct regular risk assessments and recommend enhancements to DLP strategy and tooling and automation integration.
• Report DLP metrics and incidents to senior management and regulatory bodies as required.
• Mentor and guide the DLP monitoring team, ensuring continuous improvement and knowledge sharing.

Required Skillsets

• 5+ years in cybersecurity, with 2+ years in DLP or data protection in financial institutions.
• Deep understanding of banking regulations and data classification standards.
• Experience with enterprise DLP platforms (e.g., McAfee, Microsoft Purview, Forcepoint).
• Familiarity with insider threat detection, endpoint protection, and SIEM integration.
• Strong leadership, communication, and stakeholder engagement skills.
• Preferred certifications: CISSP, CISM, CISA, or CRISC.