Key Responsibilities
Insider Risk (IRM) Monitoring: Assist in reviewing anonymized alerts in the Microsoft Purview Insider Risk Management console - help identify patterns like "Data
Resignation" (at-risk departing employees) or & "Data Leaks" by correlating activity across Teams, SharePoint, and Endpoint.
DLP Strategy & Policy: Help manage Data Loss Prevention (DLP) specifically for IRM and Data Protection offering
Optimization of & "Auto-labelling" policies that automatically encrypt documents containing PII, PHI, or Intellectual Property
Alert Correlation: Use the Content Explorer to investigate what was shared and the Activity Explorer to understand how it was shared
Create weekly "Risk Snapshots" for leadership, visualizing trends in sensitive data exfiltration attempts.
Technical Qualifications
1. Education: Degree in Cybersecurity, Behavioural Science, Data Analytics, or Information Systems and/or 6+ years of hands on experience
2. Analytical Logic: Strong ability to use Boolean logic and Regular Expressions (Regex) to define sensitive data types.
3. Microsoft 365 Core: Comfortable navigating the M365 ecosystem (understanding how a file moves from OneDrive to an external USB or Personal Cloud).
4. Discretion: High level of integrity; this role involves handling highly sensitive information regarding company risk and employee behaviour.
Never miss an opportunity! Create an alert based on the job you applied for.
