Insider Threat Program Manager
Virginia, United States of America
Full Time
4 hours ago
No H1B
Key skills
Cyber SecurityLeadershipCommunication
About this role
Role Overview
- Assist the QTS Insider Threat HUB in maturing the program by developing the necessary framework, governance, and workflows.
- Develop relationships with stakeholders to gain access to data needed for threat education, awareness, and communication.
- Deter, detect, and mitigate all insider threats.
- Perform case management, investigations, and analysis to predict, detect, and respond to insider threats and incidents.
- Identify potential threats against the company and workforce from internal and external actors and develop strategies to mitigate those threats to protect the company’s reputation, workforce, clients, and assets.
- Oversee the triage of insider events and risk analysis by a team of analysts.
- Work closely with various partners within the firm including HR, Legal, Cybersecurity, and Technology, as well as external parties.
- Gather, review, assess, and respond to information from HR, Legal, Cyber, and Security databases to identify insider threat concerns.
- Lead or assist in investigations and provide in-depth assessments of insider risks and threats, coordinating with relevant stakeholders.
- Partner with internal technical engineers to apply innovative techniques to detect suspicious behavior and potential insider threats.
- Coordinate response activities with various stakeholders for confirmed incidents and recommend mitigation strategies.
- Develop and deliver training and awareness programs to educate employees on recognizing and reporting suspicious activities.
- Facilitate referral of anomalous activity for investigation and cross-functional coordination of mitigation strategies.
- Provide SME-level support for insider threat matters leveraging deep knowledge of insider risk and counterintelligence.
- Lead the organization's efforts in identifying, mitigating, and managing insider threats.
- Develop and implement strategies to safeguard sensitive information and maintain a secure work environment.
- Communicate complex problem sets clearly to various audiences including Senior Leadership.
- Manage program governance documentation, ensuring compliance with the control environment.
- Collaborate with stakeholders within the company and external partners to stay abreast of industry trends and best practices.
- Design, implement, and manage an insider threat program that aligns with organizational goals and best practices.
- Conduct risk assessments to identify insider threats and vulnerabilities within the organization.
- Provide regular updates to senior management on the status of the Insider Threat Program, including metrics and incident trends.
- Stay informed about emerging threats, industry trends, and best practices to continuously improve the program.
- Travel when needed domestically or overseas in support of specific investigations.
Requirements
- 10 years of relevant work experience with a Bachelor’s Degree or 8 or more years of experience with an Advanced Degree (e.g. Masters, MBA, JD, MD)
- 8 years or more relevant counterintelligence, insider threat, or investigative experience
- Deep knowledge of insider threat indicators, such as those associated with espionage, theft of intellectual property, sabotage, workplace violence, and fraud
- Familiarity with the Intelligence cycle along with adversarial and insider threat tactics, techniques, and procedures
- Demonstrated success in working closely with a range of company partners, to include Security, Legal, HR, and Business Continuity, as well as external partners such as industry peers and Law Enforcement
- Experience conducting end-to-end investigations, including collecting and analyzing qualitative and quantitative data, and handling sensitive materials
- Direct experience serving as an insider threat/risk program manager or senior analyst in industry or government assessing complex threats; scoping and developing mitigation strategies in coordination with cross-disciplinary teams
- Experience conducting or providing analytical support to insider threat/risk, counterintelligence, criminal, cybersecurity, and/or other types of investigations
- Proven ability to strategize and demonstrate ‘out of the box’ thinking and creativity to solve complex problems and deliver practical and effective results
- Experience building successful sustainable relationships across lines of business and with technical partners to develop solutions
- Very strong oral and written communication skills, with focus on attention to detail; experience communicating with senior leadership levels
- U.S. Citizenship for this position is required by law due to federal customer contracts
- Ability to obtain a U.S. Top Secret Security Clearance
Tech Stack
- Cyber Security
Benefits
- medical, dental, vision, life, and disability insurance
- 401(k) retirement plan
- flexible spending and HSA accounts
- paid holidays
- paid time off
- paid volunteer days
- employee assistance program
- tuition assistance
- parental leave
- military leave assistance
- QTS scholarship for dependents
- wellness program
- other company benefits
- Bonus eligible