Sr. Specialist DDIT ISC Cyber Security Business Analyst

Location: Prague, Czech Republic; Barcelona, Spain; #LI-Hybrid (12 days/month in office)

Internal job title: Sr. Specialist DDIT ISC Cyber Security Business Analyst

The role is based in Prague/Barcelona. Novartis is unable to offer relocation support for this role: please only apply if this location is accessible for you.

About the role:

The Cyber Security Business Analyst (DLP focus) will drive the design of reliable, accurate Data Loss Prevention (DLP) & other security rules to protect critical Novartis information. They will partner with senior business managers to understand data usage and risks, translate those insights into clear DLP rule design concepts, and collaborate with engineering teams to implement them within Microsoft Purview. This is a medior-level position intended to challenge and grow technical information security skillsets

Key Responsibilities:

• Stakeholder Engagement: Conduct interviews with senior business managers to understand & document data flows, risks, and operational constraints.
• Rule Design & Documentation: Translate business insights into functional specifications for DLP and/or Insider risk rules in Microsoft Purview, including logic, exceptions, and deployment guidance.
• Testing & Tuning: Define acceptance criteria, run pilots, analyze false positives/negatives, and refine rules.
• Recommend policy adjustments to reduce noise while preserving protection, perform periodic rule tuning and lifecycle management based on alert trends and business feedback.
• Lifecycle Management: Maintain a repository of rule designs and ensure traceability from business requirements to technical controls.

Essential Requirements:

• University working and thinking level, degree in business/technical/scientific area or comparable education/experience.

• 2+ years in information security or business analysis.

• Hands-on experience with Microsoft Purview DLP.
• Familiarity with M365 services (SharePoint, OneDrive, Teams, Exchange).
• Experience conducting business interviews and translating requirements into functional specifications.
• Strong analytical and stakeholder management skills.
• Ability to work independently in a fast-paced environment.

Preferred requirements:

• Exposure to broader Microsoft security stack (Defender for Endpoint/Cloud Apps, Insider Risk, and Information Protection, Entra ID, Conditional Access) and integrations.
• Familiarity with incident response workflows and SOAR/SIEM integrations.
• Experience in a pharmaceutical, life sciences, or another highly regulated industry.
• Certifications: Microsoft Information Protection Administrator, CIPM/CIPP, CISSP, CCSK, or equivalent.

Commitment to Diversity & Inclusion:

We are committed to building an outstanding, inclusive work environment and diverse teams representative of the patients and communities we serve.

You'll receive (CZ only):

Monthly pension contribution matching your individual contribution up to 3% of your gross monthly base salary; Risk Life Insurance (full cost covered by Novartis); 5-week holiday per year; (1 week above the Labour Law requirement) ; 4 paid sick days within one calendar year in case of absence due to sickness without a medical sickness report; Cafeteria employee benefit program – choice of benefits from Benefit Plus Cafeteria in the amount of 12,500 CZK per year; Meal vouchers in amount of 105 CZK for each working day (full tax covered by company); Transportation Allowance; MultiSport Card. Find out more about Novartis Business Services:

Why Novartis?

Our purpose is to reimagine medicine to improve and extend people's lives and our vision is to become the most valued and trusted medicines company in the world. How can we achieve this? With our people. It is our associates that drive us each day to reach our ambitions. Be a part of this mission and join us Learn more here:

Join our Novartis Network: If this role is not suitable to your experience or career goals but you wish to stay connected to learn more about Novartis and our career opportunities, join the Novartis Network here:

Accessibility and accommodation:

Novartis is committed to working with and providing reasonable accommodation to all individuals. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the recruitment process, or in order to receive more detailed information about the essential functions of a position, please send an e-mail to and let us know the nature of your request and your contact information. Please include the job requisition number in your message.

Why Novartis: Helping people with disease and their families takes more than innovative science. It takes a community of smart, passionate people like you. Collaborating, supporting and inspiring each other. Combining to achieve breakthroughs that change patients' lives. Ready to create a brighter future together?

Join our Novartis Network: Not the right Novartis role for you? Sign up to our talent community to stay connected and learn about suitable career opportunities as soon as they come up:

Benefits and Rewards: Read our handbook to learn about all the ways we'll help you thrive personally and professionally:

Division

Operations

Business Unit

CTS

Location

Czech Republic

Site

Prague

Company / Legal Entity

CZ02 (FCRS = CZ002) Novartis s.r.o.

Alternative Location 1

Barcelona Gran Vía, Spain

Functional Area

Technology Transformation

Job Type

Full time

Employment Type

Regular

Shift Work

No