Cybersecurity Analyst - Hybrid in MN

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Security, Computer Science, Criminal Justice, or a related field
• 3+ years of experience in cybersecurity
• 3+ years of experience in security analysis, investigations, insider risk, threat analysis, or digital forensics
• 2+ years of experience with working knowledge of security logs, user activity monitoring, and investigative techniques
• 2+ years of experience of documenting findings clearly and communicate effectively with both technical and non‑technical audiences
• Strong analytical and critical‑thinking skills with the ability to assess risk objectively
• Demonstrated ability to handle sensitive information with discretion and professionalism

Nice To Haves

• Experience supporting an insider risk, fraud, compliance, or digital forensics program
• Hands‑on experience with SIEM platforms (e.g., Splunk, Sentinel), DLP tools, endpoint security, or identity monitoring
• Familiarity with insider risk frameworks and best practices (e.g., CERT Insider Threat, NIST CSF)
• Experience collaborating with HR, Legal, Privacy, or Employee Relations teams
• Knowledge of privacy, data protection, and employee monitoring considerations in a regulated environment

Responsibilities

• Monitor and analyze user activity, system logs, and alerts to identify potential insider risk indicators, including data exfiltration, misuse of access, policy violations, or negligent behavior.
• Perform analytical triage of insider risk alerts generated from enterprise security tools (e.g., SIEM, DLP, endpoint, identity, and email systems).
• Establish baseline user behavior and identify deviations that may indicate insider risk activity.
• Conduct insider risk investigations by collecting, correlating, and analyzing data from multiple technical and non‑technical sources.
• Document investigative findings, timelines, and conclusions in accordance with Insider Risk Program procedures and records‑retention requirements.
• Prepare clear, concise investigative summaries and risk assessments for leadership and stakeholders.
• Analyze logs, email activity, file access, web activity, and authentication events to support investigations.
• Assist with digital forensic data collection and analysis in support of insider risk cases, as appropriate.
• Develop, maintain, and refine queries, dashboards, and analytical workflows to improve detection efficiency and investigative quality.
• Partner with HR, Legal, Compliance, Employee Relations, Privacy, and Information Security teams during insider risk reviews and investigations.
• Support escalation and coordination with Enterprise Information Security for incidents requiring broader security response.
• Participate in insider risk working groups and contribute to program governance activities.
• Contribute to the development and enhancement of insider risk policies, procedures, and standard operating processes.
• Assist in defining insider risk indicators, metrics, and reporting to support program maturity.
• Support audits, assessments, and program evaluations related to insider risk management.

Benefits

• comprehensive benefits package
• incentive and recognition programs
• equity stock purchase
• 401k contribution