Senior Insider Threat Analyst

Control Risks is seeking a Senior Insider Threat Analyst to work directly with a major client in a highly dynamic and fast-paced environment. This role will be responsible for detecting, investigating, and mitigating insider threats by leveraging cybersecurity expertise, behavioral analytics, and investigative methodologies. The ideal candidate will bring a strong technical background, analytical mindset, and the ability to collaborate with cross-functional teams to enhance the organization's insider threat program.

• Conduct in-depth analysis and investigations into potential insider threats, including data exfiltration, unauthorized access, and policy violations.
• Develop and execute processes for the Insider Threat Management Program, including triaging anomalous events, evaluating reports, responding to and analyzing threats, and leveraging response playbooks with key stakeholders.
• Analyze user activity, security alerts, and behavioral trends from various business function's resources to identify potential risks.
• Utilize and optimize insider threat tools, including User and Entity Behavior Analytics (UEBA), Security Information and Event Management (SIEM), and Data Loss Prevention (DLP) platforms.
• Collaborate with cybersecurity, security, HR, legal, compliance, and threat management teams to develop and implement mitigation strategies.
• Support response for workplace violence incidents, including triaging incidents, interviewing involved properties, and investigating the incident.
• Provide expert recommendations to strengthen insider threat prevention, detection and response capabilities.
• Develop reports and briefings for senior leadership and key stakeholders.
  
  
  

Requirements

• Bachelor's degree in a related field.
• 5 years of experience in insider threat, counterintelligence, cyber threat intelligence, incident response, threat hunting, security engineering, or detection roles.
• Strong understanding of cybersecurity principles, network security, and digital forensics.
• Hands-on experience with insider threat detection technologies such as UEBA, SIEM, and DLP.
• Strong understanding of security and risk principles as they pertain to insider threat.
• Proven track record of conducting investigations, including evidence collection, forensic analysis, interviewing, and reporting findings.
• Ability to work independently and in a team environment within a client-embedded setting.
• Understanding of network and endpoint security principles, current threat trends, and security standards.
• Excellent analytical, problem-solving, and written and oral communication skills.
• Ability to travel up to 50%.
  
  
  

The base salary range for this position is $130000-$140000 per year. Exact compensation offered may vary depending on job-related knowledge, skills, and experience.

Control Risks is committed to a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age or veteran status. If you require any reasonable adjustments to be made in order to participate fully in the interview process, please let us know and we will be happy to accommodate your needs.

Control Risks participates in the E-Verify program to confirm employment authorization of all newly hired employees. The E-Verify process is completed during new hire onboarding and completion of the Form I-9, Employment Eligibility Verification, at the start of employment. E-Verify is not used as a tool to pre-screen candidates. For more information on E-Verify, please visit www.uscis.gov.

Benefits

• Control Risks offers a competitively positioned compensation and benefits package that is transparent and summarized in the full job offer.
• We operate a discretionary bonus scheme that incentivizes, and rewards individuals based on company and individual performance.
• Control Risks supports hybrid working arrangements, wherever possible, that emphasize the value of in-person time together - in the office and with our clients - while continuing to support flexible and remote working.