Cyber Security Analyst

As a Cyber Security Analyst, you will play a crucial role in the operational security and compliance of the organization, with a primary focus on configuring our Data Loss Prevention (DLP) Solution with expertise M365 Security products (e.g. defender for cloud, endpoint, purview, Entra-id)

You will work closely with Legal, Data Protection Officers (DPO), and various internal stakeholders to ensure that our DLP strategies align with data protection regulations and corporate policies.

Additionally, you will contribute to our M365 security posture and other operational security activities by investigating and responding to security-related alerts as part of a comprehensive approach to information security.

Your role will be central to fostering an environment of proactive security management, ensuring that both data protection and security alerts are handled efficiently.

Your responsibilities:

• DLP Configuration & Management:
• Lead, configure and manage our DLP solution, ensuring they align with legal and regulatory standards for data protection.
• Leading the information protection related activities on M365
• Collaborate with internal stakeholders, including Legal and DPO, to develop and continuously improve DLP strategies, ensuring regulatory compliance with GDPR, CCPA, and other relevant laws.
• Alert Management & Investigation:
• Take ownership of DLP alerts, thoroughly investigating each alert and escalating as necessary based on severity and risk.
• Work cross-functionally to investigate, resolve, and prevent data leakage incidents.
• Provide insight and trend analysis on incidents to continuously improve detection capabilities.
• Collaboration with Legal & DPO Teams:
• Serve as a liaison between the security team and the legal, Data Protection and other departments to ensure DLP activities are compliant
• Act as subject matter expert for M365 security inquiries
• Operational Security Support:
• Support the operational security activities by responding to other security-related alerts (e.g., endpoint, network, or cloud security) including on-call rotation.
• Apply hands-on knowledge of security tools and techniques to manage alerts from various security systems and platforms.
• Assist in improving the organization’s incident response and investigation processes.
• Documentation & Reporting:
• Maintain comprehensive documentation on DLP rules, security configurations, incident reports, and compliance activities.
• Regularly report to senior management and stakeholders on DLP performance, trends in alerts, and ongoing improvements.
• Prepare and deliver security-related presentations, ensuring clear communication across technical and non-technical audiences.

Your Profile:

• Strong foundational knowledge in cyber securityStrong background in M365 or Microsoft Azure SecurityStrong analytical and investigative skills for handling security alerts and incidents.Ability to communicate effectively with cross-functional teams, especially Legal, DPO, and IT.Understanding of GDPR, and other relevant data protection regulations.Familiarity with security frameworks such as NIST, ISO 27001, and CIS controls.Nice to have:Proven experience working with DLP technologies (e.g., Symantec, McAfee, Digital Guardian, Microsoft Purview) or experience working administrating M365 or Azure.Practical experience in configuring, tuning, and optimizing DLP rules.Experience working with other security tools such as SIEM, endpoint protection, or cloud security solutions.Security related certification (CISSP, SC-200, SC-400 or equivalent)

How about?

Employment contract?

Of course. With us you do not have to worry about stable employment.

Benefits?

We have them! Among other: corporate incentive program, sport card, private medical care.

Lunch card?

With the cooperation extended and permanent contract, you will receive additional funds to use for meal purchases.

Working in a hybrid model?

Of course! ! You work with us 2 days a week from home.

Work wherever you want?

In PAYBACK you have the opportunity. Working 100% remotely, also from European countries for 15 days a year.

‎Flexible working hours?

Sounds great! We start working between 7 to 10.

Trainings?

Of course. We provide training to develop hard and soft skills.

Convenient location?

Sure! We invite you to our new office at Rondo Daszyńskiego, but we are currently also working remotely.

Dress code?

We definitely say no. There are no rigid dress code rules in our company, sneakers are more than welcome.

Friendly atmosphere at work?

Yes! In PAYBACK, people are the most important asset‎.

Something is missing?

Open communication is our priority, so dare to ask!

Don't wait

Send your cv!