About this role

Assist in developing playbooks, workflows, and implementation roadmaps to mature the Insider Threat operational support program.
Administer and optimize the Insider Risk toolset, specifically DLP, UEBA, SIEM, and Microsoft Defender/Entra/Purview.
Develop and maintain a convergence model to reduce risk to personnel and assets across regional operating divisions.
Lead and assist in the investigation of all incidents involving potential insider threats.
Coordinate with business and technology leaders to develop programmatic solutions and deliver high-level presentations on findings.
Implement federal government and industry standards regarding insider threat programs and maintain programmatic gap analyses.

7+ years of relevant experience in a cyber-related field.
5+ years of experience specifically configuring and administering security tools.
BS/BA in a cyber-related field (Direct experience or professional certifications may substitute for academic credentials).
Demonstrated experience with Linux Operating Systems and Microsoft 365 environments.
Experience thriving within heavily regulated environments (e.g., federal or financial sectors).
U.S. Citizenship or Permanent Residency is required.

Security Engineer – Insider Risk

Key skills