Job Title: Insider Threat Analyst
The role of an insider threat analyst is multifaceted and demanding, requiring the ability to navigate complex security landscapes and identify potential threats from within.
Key Responsibilities:
* Support the day-to-day operations for insider threat investigations by performing examinations and ensuring case management and alert development life cycles are followed or adjusted when necessary.
* Conduct continuous enterprise-wide insider threat monitoring with the ability to review end-user activity and identify threats from SEIM dashboards and tool consoles.
* Responsible for accurate and complete investigations and ensuring tasks like case follow-up, lessons learned, and case studies are conducted and socialized with appropriate stakeholders.
Requirements
To be successful in this role, you will need:
* A bachelor's degree or four or more years of work experience, with relevant experience demonstrated through work experience and/or military experience.
* Four or more years of relevant experience required, with experience writing and presenting high and low-level security reports and briefings for insider threat investigations.
* Experience with implementation of cybersecurity, network defense, and investigative frameworks (such as NIST CSF, ISO 27000 series, MITRE ATT&CK, Lockheed Martin Cyber Kill Chain, etc.) into network defense processes.
Preferred Qualifications
While not required, having one or more of the following qualifications would be beneficial:
* Knowledge of SOC or similar environment methodology, including threat monitoring, intrusion detection, analysis, threat determination, incident handling, and remediation tracking.
* Experience defending against insider threats by leveraging tools like UEBA and DLP.
* Experience interpreting data from network security tools and infrastructure technologies such as SIEM, firewall, proxies, IPS/IDS devices, full packet capture (FPC), and email platforms.
What We Offer
This role offers a unique opportunity to work in a dynamic and innovative environment, with a focus on developing and enhancing our existing insider threat defense capabilities.
As an insider threat analyst, you will have the chance to work closely with cross-functional stakeholders to develop a program tailored to utilizing proactive and mitigating measures to detect and respond to potential threats to our infrastructure, employees, and intellectual property.
Additionally, you will have access to training and professional development opportunities to help you grow and advance in your career.
Join our team and contribute to creating a safer and more secure work environment.