Int Security Analyst to support DLP alert investigation using Palo Alto XSIAM and Proofpoint within a Retail environment

Location: Brampton (4 days onsite)

Duration: Initial contract until December 31st (high chance of 1 year extension)

Hours: 37.5 hrs/week

Interview: 1 round (Director + team)

Our client, Canada’s largest retailer, is seeking an Int Security Analyst to support Data Loss Prevention (DLP) alert investigation and tuning within a high-volume security environment.

The consultant will work across Palo Alto XSIAM and Proofpoint to identify, investigate, and escalate potential data leakage events, while partnering with engineering teams to improve detection accuracy and reduce false positives. Work will focus on protecting sensitive healthcare and personal data (PHI).

• Investigate and triage DLP alerts using Palo Alto XSIAM and Proofpoint
• Analyze data leakage events involving sensitive healthcare data (PHI)
• Escalate confirmed incidents and support remediation with internal teams
• Review and assess DLP policies and rule effectiveness
• Partner with engineering to tune alerts, reduce false positives, and improve detection quality
• Support ongoing integration of new environments into existing DLP controls and standards

• 3-5+ years experience as a Security Analyst supporting DLP alert investigation
• Hands-on experience with Palo Alto (XSIAM or similar SIEM/SOAR platforms)
• Experience with Proofpoint and/or email security platforms
• Background in SOC / Security Operations (incident triage and escalation)
• Experience working with data protection or data leakage scenarios (PHI or sensitive data)

• Exposure to XSOAR (incident response / automation workflows)
• Experience with Splunk or Microsoft Defender
• Experience working in healthcare or regulated data environments