Oversee a team focused on the operational detection and prevention of insider threats
Ensure that TransUnion’s critical data assets are safeguarded
Lead a globally dispersed team of professionals and collaborate with stakeholders to ensure rapid response to insider threat alerts and optimal monitoring performance
Work closely with peers to continuously identify opportunities to enhance capabilities
Define team goals aligned with Cyber Defense objectives
Set clear expectations and foster a collaborative work environment
Leverage tools owned by the Insider Threat Engineering team and broader InfoSec to monitor, triage, and escalate alerts
Ensure effective operational processes and mature monitoring/response capabilities
Provide 24x7 alert triage and initial response to insider threat indicators
Conduct deeper behavioral analysis to proactively identify high-risk activity and potential account compromise
Partner with Insider Threat Engineering and Investigation teams for seamless monitoring capabilities and response
Engage with TransUnion’s global business units to ensure protection against data loss while supporting business enablement
Define KPIs and deliver regular reports to executive leadership on program effectiveness, incident trends, and risk posture
Stay up to date with global data protection laws and regulations to ensure compliance
Requirements
Bachelor's degree in cybersecurity, computer science, engineering, or a related field preferred
Extensive experience (7+ years) in cybersecurity with a focus on data loss prevention and insider threat
Experience managing tiered security operations (e.g., L1/L2) with defined escalation paths and playbooks
Deep experience with data loss prevention (DLP), insider threat detection, and user and entity behavior analytics (UEBA) capabilities such as Microsoft Purview, Symantec, Proofpoint, Netskope, Forcepoint, DTEX, etc.
Proven record of excellent leadership skills, with the ability to build and motivate high-performing teams
Proficiency in defining and reporting KPIs related to alert volume, response time, and incident trends
Experience operating in a regulated environment with a deep understanding of regulatory requirements and their practical implications, including PCI-DSS, GDPR, Reserve Bank of India (RBI), NYDFS, and other data protection/privacy regulations
Strong understanding of security frameworks such as CIS, ISO 27001, and/or NIST CSF as well as industry best practices
Certifications such as GIAC GSOC, GCIA, or Insider Threat Program Manager (ITPM) are a plus
Tech Stack
Cyber Security
Benefits
Flexible time off for exempt associates
Paid time off for non-exempt associates
Up to 12 paid holidays per year
Health benefits (including medical, dental, and vision plan options and health spending accounts)