Job Description:
• Assist in developing playbooks, workflows, and implementation roadmaps to mature the Insider Threat operational support program.
• Administer and optimize the Insider Risk toolset, specifically DLP, UEBA, SIEM, and Microsoft Defender/Entra/Purview.
• Develop and maintain a convergence model to reduce risk to personnel and assets across regional operating divisions.
• Lead and assist in the investigation of all incidents involving potential insider threats.
• Coordinate with business and technology leaders to develop programmatic solutions and deliver high-level presentations on findings.
• Implement federal government and industry standards regarding insider threat programs and maintain programmatic gap analyses.
Requirements:
• 7+ years of relevant experience in a cyber-related field
• 5+ years of experience specifically configuring and administering security tools
• BS/BA in a cyber-related field (Direct experience or professional certifications may substitute for academic credentials)
• Demonstrated experience with Linux Operating Systems and Microsoft 365 environments
• Experience thriving within heavily regulated environments (e.g., federal or financial sectors)
• U.S. Citizenship or Permanent Residency is required.
Benefits:
• Insurance - health, dental, and vision
• Paid Time Off (PTO) and 11 Federal Holidays
• 401(k) employer match