Insider Risk Analyst

About The Position

Requirements

• Bachelor’s degree in Information Technology, Computer Science, Information Systems, Criminal Justice, Legal Studies, or a related field required.
• 3–5 years of experience supporting internal investigations, eDiscovery, compliance, security operations, or digital forensics in an enterprise or regulated environment required.
• Practical experience with eDiscovery workflows, including legal holds, data preservation, and evidence review coordination.
• Experience reviewing and triaging Data Loss Prevention (DLP) and insider risk policy violations.
• Experience working in regulated environments such as healthcare, financial services, government, or similarly regulated industries.
• Strong analytical and critical‑thinking skills with the ability to synthesize technical data into clear, factual findings.
• Demonstrated ability to communicate complex technical concepts and investigative findings to non‑technical stakeholders, including leadership and legal counsel.
• Proven ability to work with minimal supervision, manage multiple concurrent priorities, and apply sound judgment.
• Demonstrated professionalism and discretion when handling highly sensitive and confidential information.
• Must have a valid California driver’s license, an automobile, and proof of minimum levels of car insurance as required under California law, although limits of $100,000 are recommended. An acceptable driving record is also required.

Nice To Haves

• Certified E‑Discovery Specialist (CEDS) – highly preferred.
• Certified Insider Threat Analyst (CITA) – highly preferred.
• 2+ years of experience working in coordination with Human Resources, Legal, and/or Employee Relations teams on sensitive matters highly preferred.

Responsibilities

• Support approved internal investigations by assisting with the identification, preservation, and collection of Electronically Stored Information (ESI).
• Coordinate technical aspects of eDiscovery and legal hold workflows in partnership with Human Resources and Legal.
• Assist with the review of insider risk, data protection, and behavior policy alerts to support investigative efforts.
• Establish timelines, contextual findings, and technical summaries for investigations without making employment or disciplinary determinations.
• Partner with Information Security, NetOps, and IT Operations teams to ensure appropriate logging, monitoring, and retention is in place to support investigations.
• Validate that logging and monitoring controls are operating as intended and support investigative and audit requirements.
• Prepare clear, factual documentation and summaries of technical findings for non‑technical audiences.
• Maintain detailed records of investigative support activities to ensure defensibility, traceability, and audit readiness.
• Contribute to the development and maintenance of standard operating procedures, workflows, and documentation related to insider risk and investigations.
• Handle sensitive employee and organizational information with a high degree of confidentiality, professionalism, and discretion.
• Perform other duties as assigned.

Benefits

• Mileage and other reimbursement governed by policy.