Data Loss Prevention Specialist – Ict – Level 8 (2 Posts)
Ict & Computer Jobs
Job Description
Applications are invited from suitably qualified persons to fill the following posts within the Zimbabwe Revenue Authority (ZIMRA) – an equal opportunity employer.
Duties and Responsibilities
Key Responsibilities
▪ Design, implement and maintain the organisation’s DLP program and roadmap.
▪ Deploy and configure DLP tools across endpoints, network, email, cloud apps (CASB integration) and data repositories .
▪ Create, tune and manage detection rules, content classifiers, fingerprints, regex patterns and policy templates to identify sensitive data (PII, PHI, financial, IP, credentials).
▪ Maintain and improve data discovery and classification workflows; integrate with data classification tools and the organization’s data catalog.
▪ Monitor DLP alerts, triage incidents, validate true positives vs false positives and determine severity and impact.
Lead or support containment and remediation actions (blocking, quarantine, encryption, revocation of access), coordinating with IT and incident response teams.
Maintain incident logs, evidence and timelines for investigations and for audit/regulatory purposes,Conduct data flow mapping and risk assessments to identify where sensitive data resides and how it moves (in use, in motion, at rest).
▪ Evaluate and reduce insider risk through monitoring, behavioural analytics and integration with UEBA or insider-risk tools.
▪ Develop and maintain DLP policies, playbooks, escalation paths and standard operating procedures.
▪ Ensure compliance with relevant laws and standards (ISO27001, Data Protection Act, NIST, COBIT 2019) and provide evidence for audits.
Qualifications and Experience
Job Skills and Competencies
▪ Hands-on experience with DLP platforms (e.g., Microsoft Purview, Netskope).
▪ Familiarity with data discovery, classification, regular expressions, fingerprinting and content inspection techniques.
▪ Strong understanding of networking, email systems (Exchange, SMTP), cloud storage (AWS, Azure, GCP), endpoints and encryption technologies.
▪ Experience integrating DLP with SIEM, CASB, IAM and endpoint agents.
▪ Scripting/automation skills (Python, PowerShell) and comfort reading logs and telemetry
▪ Knowledge of Zimbabwe’s Data Protection and Cyber Security Act, plus relevant international standards (ISO/IEC 27001, GDPR, PCI-DSS, NIST CSF).
Qualifications and Experience
▪ Bachelor’s Degree in ICT, Computer Science, Information Systems, Cybersecurity, or equivalent discipline.
▪ Minimum of three (3) year experience in ICT of which One (1) year should be in ICT security, data loss prevention, data classification and policy formulation.
▪ Professional certification in cybersecurity (minimum one recognised certification) such as Certified Information Systems Security Professional (CISSP), Certified Data Privacy Solutions Engineer (CDPSE)
▪ Vendor-specific certifications (Forcepoint Data Loss Prevention (DLP) System Engineer, Proofpoint Certified DLP Specialist (covering endpoint, CASB and email) are an added advantage
How to Apply
Interested candidates should submit applications, accompanied by a detailed Curriculum Vitae by 19 May 2026. All applications should be emailed to ZimraRecruitment@zimra.co.zw with the position title clearly stated in the email subject line, e.g. Head ICT Operations & Service Delivery – ICT Level 5. The applications should be
addressed to:
Director Human Capital
Zimbabwe Revenue Authority
6th Floor ZB Centre
Corner First Street / Kwame Nkrumah Avenue
P. O. Box 4360
HARARE
Please note that only shortlisted applicants will be responded to and females are encouraged to apply.