.**DLP Analyst****About the AstraZeneca**AstraZeneca is a global, innovation-driven biopharmaceutical business that focuses on the discovery, development, and commercialization of prescription medicines for some of the world's most serious diseases. But we're more than one of the world's leading pharmaceutical companies.At AstraZeneca, we're proud to have an outstanding workplace culture that encourages innovation and collaboration. Here, employees are empowered to express different perspectives - and are made to feel valued, energized and rewarded for their ideas and creativity.**About the team**Enterprise Technology Services (ETS) are a global team that are accountable for many of the IT tools and services that directly chip in to the effectiveness of our AstraZeneca colleagues.We partner locally in more than 60 global business sites for service delivery and IT experience and are accountable for all infrastructure, cybersecurity, IT operations and End User services and technologies.ETS also handles many of the large IT contracts at AZ, as well as partnering with large organisations on behalf of AZ to deliver value and innovation through new and existing capabilities and services.**About The role**Cybersecurity Defence Operations (CSDO), which sits within ETS, is fundamental to enterprise information security and responsible for detecting, analysing, and responding to real or potential security incidents. The Data Loss Prevention (DLP) Analyst specializes in the collection and analysis of data loss incidents to proactively identify and mitigate potential data breaches at AstraZeneca. The DLP function empowers operational decision-makers to a) respond more effectively to data loss incidents through informed decision-making and b) implement measures to mitigate or close gaps in defence, thereby preventing data breaches from occurring in the first place.**The DLP Analyst will be accountable for**:- Use the SIEM solution to analyse data loss incidents from diverse sources, generating actionable insights including rapid alerts, dashboards, and reports.- Monitor and Investigate alerts generated by DLP systems to support investigations to figure out root cause and severity of potential data breaches.- Continuously monitor user activities and data transfer patterns to detect any deviations from normal behaviour that may indicate insider threat activities.- Implement anomaly detection mechanisms to automatically identify suspicious user behaviour and generate alerts for further investigation.- Collaborate with relevant support team to gather data to support investigations into potential Data Loss incidents, security incidents, insider threats, and legal discovery requests.- Generate reports and metrics on DLP incidents, trends, and effectiveness of controls for management and partners