Senior Insider Threat Analysis

About The Position

Requirements

• Bachelor’s degree and at least 4 years of Information/Cyber Security experience OR a High School Diploma/GED and at least 7 years of experience in Information/Cyber Security
• At least 3 years of Cyber Security experience in at least three of the following: Active threat hunting (open source or commercial tooling), Intrusion analysis, Managed or enterprise information security services, Incident response, Endpoint forensics (Windows, MAC, or Linux), Malware analysis, Penetration testing, Network defense, Threat hunting, Information security consulting
• Experience establishing & maintaining relationships with individuals at all levels of the organization, in the business community & with vendors.
• Experience using time management skills such as prioritizing/organizing and tracking details and meeting deadlines of multiple projects with varying completion dates
• Experience analyzing and reporting data in order to identify issues, trends, or exceptions to drive improvement of results and find solutions.
• Willing to travel up to/at least 10% of the time for business purposes (within state and out of state).

Nice To Haves

• 5+ years in cybersecurity, with focus on DLP, Insider Threat, or Security Operations
• Hands-on experience with DLP technologies (Microsoft Purview, Netskope, Symantec, Forcepoint, etc.)
• Strong understanding of data classification, labeling, and protection strategies
• Experience conducting investigations across endpoint, network, and cloud environments
• Familiarity with SIEM/UEBA platforms (Splunk, Sentinel, Exabeam, etc.)
• Knowledge of identity systems (Active Directory, Entra ID) and access patterns
• Strong analytical and problem-solving skills
• Experience building Insider Threat programs or use cases from ground up
• Familiarity with behavioral analytics and anomaly detection techniques
• Scripting or automation experience (Python, PowerShell)
• Understanding of regulatory frameworks (HIPAA, SOX, PCI-DSS)
• Certifications: CISSP, GCIA, GCIH, or similar
• Experience mentoring less experienced team members

Responsibilities

• Monitors, identifies, investigates and analyzes all response activities related to cybersecurity incidents within the organization that require broad expertise or unique knowledge.
• Identifies security flaws and vulnerabilities; responds to cybersecurity incidents, conducts threat analysis as directed and addresses detected incidents.
• Evaluates event flows to identify common to advanced risks and vulnerabilities to develop and implement solutions.
• Provides assistance in monitoring the security of all designated networks and systems.
• May prepare detailed incident reports and technical briefs for the IT security team.
• May present issues to team This role works on significant and unique issues where analysis of situations or data requires an evaluation of intangibles.
• Exercises independent judgment in methods, techniques and evaluation criteria for obtaining results.
• Assists with security audits, risk analysis, network forensics and penetration testing.
• Creates formal networks involving coordination among groups.
• May indirectly supervise other Specialists.
• Provides subject matter expertise and insight to clients about industry attack trends and defenses by developing and maintaining deep awareness and understanding of evolving threats, adversaries and intrusion trends.
• Provides subject matter expertise to less experienced team members.
• May participate in teaching and training members of the work team.