Dlp Analyst

**DLP Analyst**

**About the AstraZeneca**

AstraZeneca is a global, innovation-driven biopharmaceutical business that focuses on the discovery, development, and commercialization of prescription medicines for some of the world's most serious diseases. But we're more than one of the world's leading pharmaceutical companies.

At AstraZeneca, we're proud to have an outstanding workplace culture that encourages innovation and collaboration. Here, employees are empowered to express different perspectives - and are made to feel valued, energized and rewarded for their ideas and creativity.

**About the team**

Enterprise Technology Services (ETS) are a global team that are accountable for many of the IT tools and services that directly chip in to the effectiveness of our AstraZeneca colleagues.

We partner locally in more than 60 global business sites for service delivery and IT experience and are accountable for all infrastructure, cybersecurity, IT operations and End User services and technologies.

ETS also handles many of the large IT contracts at AZ, as well as partnering with large organisations on behalf of AZ to deliver value and innovation through new and existing capabilities and services.

**About The role**

Cybersecurity Defence Operations (CSDO), which sits within ETS, is fundamental to enterprise information security and responsible for detecting, analysing, and responding to real or potential security incidents. The Data Loss Prevention (DLP) Analyst specializes in the collection and analysis of data loss incidents to proactively identify and mitigate potential data breaches at AstraZeneca. The DLP function empowers operational decision-makers to a) respond more effectively to data loss incidents through informed decision-making and b) implement measures to mitigate or close gaps in defence, thereby preventing data breaches from occurring in the first place.

**The DLP Analyst will be accountable for**:

- Use the SIEM solution to analyse data loss incidents from diverse sources, generating actionable insights including rapid alerts, dashboards, and reports.
- Monitor and Investigate alerts generated by DLP systems to support investigations to figure out root cause and severity of potential data breaches.
- Continuously monitor user activities and data transfer patterns to detect any deviations from normal behaviour that may indicate insider threat activities.
- Implement anomaly detection mechanisms to automatically identify suspicious user behaviour and generate alerts for further investigation.
- Collaborate with relevant support team to gather data to support investigations into potential Data Loss incidents, security incidents, insider threats, and legal discovery requests.
- Generate reports and metrics on DLP incidents, trends, and effectiveness of controls for management and partners.

**Requirements**:
**Essential**
- At least 1 to 3 years’ experience in Data Loss Prevention
- Degree in Information Security, Cyber Security, or relevant experience
- Familiarity with Security Technologies (Endpoint Detection, SIEM, Office 365 product etc.)
- Familiarity with Data Loss Preventions tools such as ZScaler, Microsoft Purview, Amazon Macie etc.
- Adaptability and a willingness to learn new technologies and methodologies to stay ahead of evolving data loss threats and prevention strategies.
- Integrity and professionalism in handling sensitive information and maintaining confidentiality throughout data loss investigations and incident response activities.

**Desirable**
- A background in either Cybersecurity Operations, eDiscovery, or Access Management
- A natural curiosity towards investigative analysis, with a proactive approach to uncovering potential data loss incidents and proclivity to ask why and delve deeper into the root causes of data security incidents, enabling comprehensive understanding and effective resolution.
- Superb communication and social skills to collaborate efficiently with multi-functional teams and communicate technical concepts to non-technical partners.
- Excellent written and verbal communication skills in English
- Experience with Data Loss Protection controls and collaboration with collaborators to develop and implement DLP policies and procedures tailored to organizational requirements.

***Strong English communication skills required.**

*** Positions are open to Mexican Citizens and official residents of Mexico.**

*** Location: Guadalajara **(hybrid - Expectation of working in the office 3 days a week)
When we put unexpected teams in the same room, we unleash bold thinking with the power to inspire life-changing medicines. In-person working give us the platform we need to connect, work at pace and challenge perceptions. That’s why we work, on average, a minimum of three days per week from the office. But that doesn’t mean we’re not flexible. We balance the expectation of being in the office while respecting individual flexibility.

**Why AstraZeneca?**