Staff Insider Threat Analyst

About The Position

Requirements

• Bachelors Degree in Computer Science or a related technical field or equivalent professional experience.
• 4 years of experience in information Security with at least 3+ years of direct, hands-on experience in insider threat analysis

Nice To Haves

• 6+ years of experience in information security, with at least 3+ years of direct, hands-on experience in insider threat analysis.
• Demonstrated mastery of analyzing and correlating security events from: UBA/Insider Threat platforms EDR solutions SIEM / Data Lakes
• Expert-level experience in host-based analysis and deep review of endpoint, application, and network log artifacts.
• Proven ability to work autonomously, manage complex, sensitive cases with minimal supervision, and present technical findings clearly to both technical and non-technical partners.
• An investigative mindset: You are naturally curious, detail-oriented, skeptical, and objective, with a strong drive to find the root cause.
• Scripting skills (Python, PowerShell, Bash) for automating analytical tasks and data analysis.
• Experience in building or significantly maturing an insider threat program from the ground up.
• Relevant industry certifications (GCIH, CISSP).
• Proficiency in Korean language.
• Familiarity with digital forensic toolsets and a high-level understanding of forensic principles.

Responsibilities

• Proactive Behavioral Analysis: Proactively hunt for and analyze anomalous user behavior by correlating data from DLP logs, EDR logs, SIEM/SOR logs, and other data sources to identify risks before they escalate.
• Manage the Insider Threat Analysis Lifecycle: Triage incoming alerts, manage the queue, and conduct deep-dive technical reviews of user activity, system artifacts, and application logs to build a comprehensive timeline of events.
• Support Formal Investigations: Partner with and provide detailed, technical findings to the Investigations, Legal, and HR teams. Translate complex technical data into clear, objective reports that serve as the foundation for formal inquiries.
• Act as a Subject Matter Expert: Serve as the team's technical SME for insider threat data sources, providing guidance and insights to other analysts.
• Improve Detections: Continuously develop, tune, and refine insider threat detection logic, creating new playbooks and alerting criteria to mature the program.
• Provide Strategic Insight: Go beyond just the "what" and "who" to report on the "why" and "how," providing actionable recommendations to leadership for strengthening security posture and controls.

Benefits

• Medical/Dental/Vision/Life, AD&D insurance
• Flexible Spending Accounts (FSA) & Health Savings Account (HSA)
• Long-term/Short-term Disability
• Employee Assistance Program (EAP) program
• 401K Plan with Company Match
• 18-21 days of the Paid Time Off (PTO) a year based on the tenure
• 12 Paid Holidays
• Paid Parental leave
• Pre-tax commuter benefits
• MTV - [Free] Electric Car Charging Station