Consultant - Threat Detection Engineer

Kalles Group•Seattle, WA

8d•$70 - $95•Remote

About The Position

Everyone deserves to be secure. Our mission at Kalles Group is to help secure the future for companies of all shapes and sizes. While our expertise spans multiple disciplines, our method remains consistent: building trust and relationship with people -- whether you are a client, a consultant, or--in this case--a candidate. No matter what role you come from--whether you're an executive or just starting your career-you can expect our highest level of attention and respect. We want to find the right fit for each role, but we also want you to find the right fit for your career. We believe the best way to show you what our team is like is to treat you like you're already a part of it. We hope you'll consider joining our team of experienced professionals who are building their careers at Kalles Group—and having fun while doing it. We are seeking a senior Threat Detection Engineer Consultant to lead a focused insider threat and privileged access analysis initiative centered on systems containing sensitive guest (customer) data for our global retail client. This individual will independently investigate, document, and analyze complex data environments to answer foundational questions around where customer data resides, how it flows across systems, and who has privileged access to it. The consultant will translate technical findings into clear risk-based insights and actionable recommendations that inform long-term insider threat and privileged access management strategies.

Requirements

Senior-level experience as a Threat Detection Engineer, Security Analyst, Security Engineer, or Security Program Manager with strong technical depth
Proven ability to conduct self-directed security investigations involving structured data, access models, and complex system landscapes
Hands-on experience analyzing privileged access, identity controls, and insider threat risks
Strong understanding of customer/guest data security, data flows, and data lifecycle risk
Experience working across cloud and enterprise environments such as AWS, Oracle (OCI), and data-centric platforms
Ability to synthesize complex technical findings into clear documentation and actionable recommendations
Comfort interfacing independently with engineering, analytics, identity, HR, fraud, and security teams
Excellent written and verbal communication skills, with experience delivering analysis to both technical and non-technical audiences

Nice To Haves

Experience supporting or integrating with PAM, Zero Trust, or insider threat programs is strongly preferred
Consulting experience or demonstrated ability to succeed in ambiguous, evolving project scopes

Responsibilities

Lead an insider threat analysis focused on accounts with privileged access to systems containing guest/customer data
Identify , inventory, and document where customer data originates, how it flows across systems, and where it is stored
Analyze how risk changes across the data lifecycle based on system controls, access models, and data sensitivity
Inventory and assess privileged access across in-scope platforms and data environments
Perform deep-dive technical analysis and produce clear, well-structured findings, recommendations, and executive-ready reporting
Partner closely with Identity and Information Security teams while independently engaging a wide range of technical and business stakeholders
Support and influence long-term roadmaps for insider threat detection and privileged access management programs
Apply a threat-informed mindset shaped by recent industry breaches and evolving insider risk scenarios
Contribute to related security initiatives such as Zero Trust and Privileged Access Management (PAM) efforts
Operate with a high degree of autonomy, setting direction, driving discovery, and managing deliverables end to end