Key skills
CloudCyber SecurityFirewallsAnalyticsCommunication
About this role
Role Overview
- Lead the deployment, configuration, and tuning of insider threat detection tools to ensure optimal performance and integration with existing security systems.
- Mature and improve the comprehensive insider threat program aligned with organizational goals and regulatory standards.
- Monitor user and entity behavior analytics to identify suspicious activities and policy violations.
- Perform detection and investigative analysis activities for a variety of digital devices, computers, storage media, servers, networks, and cloud-based services.
- Perform advanced host and network forensics and malware analysis; Investigate and respond to incidents; provide recommendations to improve company’s security posture.
- Escalate complex issues as needed.
- Perform the tracking of investigations and incidents through resolution
- Help analyze vulnerabilities from insider threat perspectives and escalate & remediate as needed
- Use data collected from a variety of cyber defense tools (e.g., DLP, IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating insider threats.
- Maintain awareness of trends in security, regulatory, technology, and operational requirements, including current threat landscape, including adversary tactics, techniques, and procedures.
- Create intellectual property such as procedural documentation and tools for automated analysis and correlation activities.
- Represent the Insider threat team at internal and external threat intelligence and cybersecurity forums.
- Perform on-call activities when required.
- Ensure the company's commitment to protect the integrity and confidentiality of systems and data.
Requirements
- Education and/or experience typically obtained through completion of a Bachelor’s degree or 2-year degree in Computer Science, Engineering, Math or Physical Science or equivalent experience.
- Minimum 10 years of progressive information security technology experience
- Proven advanced analytical skills across various technologies
- Advanced understanding of Networking and security concepts
- Advanced understanding of Insider Threat Techniques and detection
- Ability to generate incident and event writeups for a non-technical audience
- Experience in identifying, triaging, and escalating tickets based on severity and malicious activity.
- Experience in responding to malicious threats coming from various sources
- Experience with the incident response process
- Ability to work within a team environment as well as independently
- Effective communication skills to speak and write for all technology experience levels.
- Effective interpersonal skills, able to comfortably present to peers, coworkers, and customers
- A propensity for continued development of skills though research and training.
Tech Stack
- Cloud
- Cyber Security
- Firewalls
Benefits
- Healthcare Coverage – Competitive medical (PPO/HDHP), dental, and vision plans as well as company contributions to your Health Savings Account (HSA) or pre-tax savings through flexible spending accounts (FSA) for commuting, health & dependent care expenses.
- 401(k) Retirement Plan – Featuring a 100% Company Safe Harbor Match on your first 6% deferral immediately upon eligibility.
- Paid Time Off – Flexible Time Off for Exempt (salaried) employees, as well as generous PTO for Non-Exempt (hourly) employees, plus 11 paid company holidays and a paid volunteer day.
- 12 weeks of Paid Parental Leave
- Maven Family Planning – provides support through your Parenting journey including egg freezing, fertility, adoption, surrogacy, pregnancy, postpartum, early pediatrics, and returning to work.
- And SO much more! We continue to enhance our program, so be sure to check our Benefits page here for the latest.