Cyber Security Business Analyst, DLP
Novartis
full-time
Posted on:
Location Type: Hybrid
Location: Prague • 🇨🇿 Czech
Visit company websiteJob Level
JuniorMid-Level
Tech Stack
Cloud
About the role
- Drive the design of reliable, accurate Data Loss Prevention (DLP) and other security rules to protect critical Novartis information
- Partner with senior business managers to understand data usage, document data flows, risks, and operational constraints
- Translate business insights into functional specifications for DLP/Insider Risk rules in Microsoft Purview, including logic, exceptions, and deployment guidance
- Collaborate with engineering teams to implement DLP controls within Microsoft Purview
- Define acceptance criteria, run pilots, analyze false positives/negatives, and refine rules
- Recommend policy adjustments to reduce noise while preserving protection; perform periodic rule tuning and lifecycle management based on alert trends and business feedback
- Maintain a repository of rule designs and ensure traceability from business requirements to technical controls
- Conduct stakeholder engagement and support testing, tuning, and deployment activities
Requirements
- University working and thinking level; degree in business/technical/scientific area or comparable education/experience
- 2+ years in information security or business analysis
- Hands-on experience with Microsoft Purview DLP
- Familiarity with M365 services (SharePoint, OneDrive, Teams, Exchange)
- Experience conducting business interviews and translating requirements into functional specifications
- Strong analytical and stakeholder management skills
- Ability to work independently in a fast-paced environment
- Exposure to broader Microsoft security stack (Defender for Endpoint, Cloud Apps, Insider Risk, Information Protection, Entra ID, Conditional Access) (preferred)
- Familiarity with incident response workflows and SOAR/SIEM integrations (preferred)
- Experience in pharmaceutical, life sciences, or another highly regulated industry (preferred)
- Certifications: Microsoft Information Protection Administrator, CIPM/CIPP, CISSP, CCSK, or equivalent (preferred)
- Note: Novartis is unable to offer relocation support for this role; apply only if location is accessible to you
Benefits
- Monthly pension contribution matching your individual contribution up to 3% of your gross monthly base salary
- Risk Life Insurance (full cost covered by Novartis)
- 5-week holiday per year (1 week above the Labour Law requirement)
- 4 paid sick days within one calendar year without a medical sickness report
- Cafeteria employee benefit program – choice of benefits from Benefit Plus Cafeteria in the amount of 12,500 CZK per year
- Meal vouchers of 105 CZK for each working day (company covers full tax)
- Transportation Allowance
- MultiSport Card
- Hybrid work arrangement (#LI-Hybrid, 12 days/month in office)
- Accessibility and reasonable accommodation for candidates with disabilities
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Data Loss Prevention (DLP)functional specificationsrule tuningdata analysisincident response workflowsSOAR integrationsSIEM integrationsbusiness analysisstakeholder engagementpolicy adjustments
Soft skills
analytical skillsstakeholder managementindependent workcommunication skillscollaborationproblem-solvingadaptabilityattention to detailorganizational skillsfast-paced environment
Certifications
Microsoft Information Protection AdministratorCIPMCIPPCISSPCCSK