Staff Security Analyst, Insider Threat

About The Position

Requirements

• Action-oriented analyst with the ability to work autonomously and take ownership of complex projects.
• Experience conducting data analysis in large-scale data lake environments.
• Knowledge of modern adversary tradecraft and mitigating controls.
• Proven experience in insider threat investigations, digital forensics, and incident response.
• Experience with Endpoint Detection and Response (EDR) tools, Data Loss Prevention (DLP), and other telemetry sources.
• Excellent analytical skills, capable of interpreting complex data and deriving actionable insights.
• Serves as a technical mentor and force multiplier for the team, building analyst proficiency in investigation ownership, incident commanding, and insider threat tradecraft.
• Eligible to obtain and maintain an active U.S. Top Secret security clearance.

Nice To Haves

• Experience in one or more general purpose languages (Python, Go, etc) and familiarity with one or more infrastructure as code languages (e.g., Terraform, AWS CDK) in a production capacity.
• Experience building controls around export controlled information, CUI, and other sensitive data.
• Understanding of counterintelligence concepts and their application in security operations, particularly for identifying and addressing insider threats.
• Bachelor’s degree in Information Systems, Information Security, Cyber Security, Computer Science, Computer Engineering and 10+ years of security analyst experience; or 12+ years of security analyst experience without a degree.

Responsibilities

• Serve Anduril as our incident commander by identifying, triaging, investigating, and remediating Insider Threat related security detections and anomalies.
• Own Insider Threat investigations from end to end.
• Lead evaluating and implementing controls to reduce Anduril's attack surface from an insider threat.
• Produce metrics to support and streamline incident response and investigations.
• Provide strategic vision for hunting and identifying insider threats.
• Partner closely with cross-functional stakeholders, including HR and Legal, providing technical expertise and evidence to support investigations.
• Translate complex technical security issues into clear, actionable insights for non-technical stakeholders.
• Work along side other members of the team to build custom tooling to automate manual processes.

Benefits

• Healthcare Benefits
• US Roles: Comprehensive medical, dental, and vision plans at little to no cost to you.
• UK & AUS Roles: We cover full cost of medical insurance premiums for you and your dependents.
• IE Roles: We offer an annual contribution toward your private health insurance for you and your dependents.
• Additional Benefits
• Income Protection: Anduril covers life and disability insurance for all employees.
• Generous time off: Highly competitive PTO plans with a holiday hiatus in December. Caregiver & Wellness Leave is available to care for family members, bond with a new baby, or address your own medical needs.
• Family Planning & Parenting Support: Coverage for fertility treatments (e.g., IVF, preservation), adoption, and gestational carriers, along with resources to support you and your partner from planning to parenting.
• Mental Health Resources: Access free mental health resources 24/7, including therapy and life coaching. Additional work-life services, such as legal and financial support, are also available.
• Professional Development: Annual reimbursement for professional development
• Commuter Benefits: Company-funded commuter benefits based on your region.
• Relocation Assistance: Available depending on role eligibility.
• Retirement Savings Plan
• US Roles: Traditional 401(k), Roth, and after-tax (mega backdoor Roth) options.
• UK & IE Roles: Pension plan with employer match.
• AUS Roles: Superannuation plan.