Senior Insider Threat Analyst

Universal Music Group•Santa Monica, CA

3d•$84,780 - $181,372

About The Position

We are UMG, the Universal Music Group. We are the world’s leading music company. In everything we do, we are committed to artistry, innovation and entrepreneurship. We own and operate a broad array of businesses engaged in recorded music, music publishing, merchandising, and audiovisual content in more than 60 countries. We identify and develop recording artists and songwriters, and we produce, distribute and promote the most critically acclaimed and commercially successful music to delight and entertain fans around the world. How we LEAD: The Senior Insider Threat Analyst, Global Insider Threat Management reports to the VP, Global Insider Threat Management. This role is responsible for detecting, investigating, and responding to potential data loss, insider threat, and AI-related security incidents across a global enterprise using SIEM, DLP, UEBA, and emerging AI security tools. The analyst will proactively identify risky behaviors, fine-tune detection capabilities, and deliver clear, actionable investigative insights that strengthen the organization’s overall data protection and insider threat posture. How you’ll CREATE: Respond to DLP alerts, monitor DLP consoles and analyze security events to identify potential data loss incidents. Hands-on investigation and threat hunting in SIEM, UEBA and DLP tools. Respond to alerts from AI security tools for monitoring and protection. Respond to AI-related security incidents or abuse. Conduct in-depth investigations of suspected insider threat incidents, including unauthorized access, data exfiltration, and policy violations. Regularly review and fine-tune DLP and UEBA rules/policies to reduce false positives and improve detection accuracy. Develop and implement insider threat detection use cases, alert rules, and incident response playbooks. Prepare detailed reports on investigation findings, risk assessments, and recommended remediation actions. Assess potential insider threats by evaluating the risks associated with users, data, and systems. Participate in data protection audits, compliance reviews, and risk assessments related to DLP. Contribute to knowledge-sharing initiatives by documenting case studies from DLP and UEBA incidents. Assist business units in identifying sensitive data and map out potential leakage points. Gathers documentation and contributes to the Global Insider Threat Management Team knowledge base. Organizes and facilitates cross-function insider threat project alignment with all applicable stakeholders to accomplish common goals. Duties as assigned. Bring your VIBE: Investigation and threat hunting skills Ability to work under pressure and handle multiple projects with tight deadlines across a global enterprise Self-motivated, detail oriented with analytical skills Good written and verbal communication skills, with the ability to convey complex technical information to non-technical stakeholders Identify trends and behavioral patterns that may indicate insider threat activity, ensuring alerts are risk-weighted and actionable High level of integrity and the ability to handle sensitive information with discretion Good interpersonal and group dynamic skills Strong collaborator and a team player Good ability to influence without explicit authority Willingness to participate in on-call rotations and respond to incidents outside of normal business hours if necessary Excellent analytical skills and a creative problem-solving mindset Good understanding of artificial intelligence and machine learning concepts and workflows Familiarity with the unique threats and vulnerabilities associated with AI/ML

Requirements

Investigation and threat hunting skills
Ability to work under pressure and handle multiple projects with tight deadlines across a global enterprise
Self-motivated, detail oriented with analytical skills
Good written and verbal communication skills, with the ability to convey complex technical information to non-technical stakeholders
Identify trends and behavioral patterns that may indicate insider threat activity, ensuring alerts are risk-weighted and actionable
High level of integrity and the ability to handle sensitive information with discretion
Good interpersonal and group dynamic skills
Strong collaborator and a team player
Good ability to influence without explicit authority
Willingness to participate in on-call rotations and respond to incidents outside of normal business hours if necessary
Excellent analytical skills and a creative problem-solving mindset
Good understanding of artificial intelligence and machine learning concepts and workflows
Familiarity with the unique threats and vulnerabilities associated with AI/ML
3-5 years of experience in cybersecurity, information security, or a related field with a focus on insider threat analysis and investigation.
Proven experience in digital forensics, incident response, or threat hunting.
Hands-on investigation and threat hunting in SIEM (Security Information and Event Management), DLP (Data Loss Prevention), UEBA (User and Entity Behavior Analytics) and other relevant security technologies.
Hands-on experience or exposure to AI technologies
Bachelor's degree in Cybersecurity Information Assurance or related field experience
Experience with insider threat detection platforms like SIEM, DLP, and UEBA.
Knowledge of relevant legal and regulatory requirements related to data protection and privacy.

Responsibilities

Respond to DLP alerts, monitor DLP consoles and analyze security events to identify potential data loss incidents.
Hands-on investigation and threat hunting in SIEM, UEBA and DLP tools.
Respond to alerts from AI security tools for monitoring and protection.
Respond to AI-related security incidents or abuse.
Conduct in-depth investigations of suspected insider threat incidents, including unauthorized access, data exfiltration, and policy violations.
Regularly review and fine-tune DLP and UEBA rules/policies to reduce false positives and improve detection accuracy.
Develop and implement insider threat detection use cases, alert rules, and incident response playbooks.
Prepare detailed reports on investigation findings, risk assessments, and recommended remediation actions.
Assess potential insider threats by evaluating the risks associated with users, data, and systems.
Participate in data protection audits, compliance reviews, and risk assessments related to DLP.
Contribute to knowledge-sharing initiatives by documenting case studies from DLP and UEBA incidents.
Assist business units in identifying sensitive data and map out potential leakage points.
Gathers documentation and contributes to the Global Insider Threat Management Team knowledge base.
Organizes and facilitates cross-function insider threat project alignment with all applicable stakeholders to accomplish common goals.
Duties as assigned.

Benefits

Comprehensive medical, dental, and vision coverage
Including 100% coverage for out-patient in-network mental health services
Fertility coverage for eligible medical plan participants
Wellbeing reimbursements for fitness classes, spa treatments, meal services, travel, and so much more (up to $720/year)
Student Loan Repayment Assistance and Tuition Reimbursement
401(k) with 100% immediate vesting on the first 5% of your contributions, plus an additional UMG contribution
A variety of ways to prioritize much-needed time away from work including: Flexible Paid Time Off (PTO) for exempt employees 3-weeks PTO for non-exempt employees 2-weeks paid Winter Break 10 Company Holidays (including Juneteenth and Wellbeing Day) Summer Fridays (between Memorial Day and Labor Day)
Generous paid parental leave for every type of parent

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume