Insider Risk Analyst
Starr · New York, NY · 5 days ago
Information TechnologyFull-time
About the role
Join Starr, a global leader in commercial insurance with over a century of expertise. We empower our employees to innovate, make impactful decisions, and build lasting client relationships worldwide. At Starr, you'll work in an entrepreneurial culture alongside accessible leaders, leveraging our financial strength and vast industry experience to deliver solutions for our clients, no matter how complex.
Responsibilities
- Conduct thorough analysis of data to identify potential insider risks and vulnerabilities.
- Monitor user and entity behavior analytics (UEBA) and related telemetry to detect anomalous behavior and suspicious activity.
- Utilize security information and event management (SIEM) tools to analyze logs and alerts.
- Support DLP policy tuning, alert review, and compliance monitoring to reduce unauthorized data exfiltration.
- Collaborate with cross-functional teams to triage, investigate and respond to insider risk incidents.
- Provide detailed assessments and reports on identified threats, vulnerabilities, and policy violations.
- Recommend risk-based mitigation strategies and control improvements to strengthen the organization's security posture.
- Stay updated on the latest trends, tactics, and developments in insider risk detection and prevention.
- Conduct training and awareness programs for employees to promote a culture of integrity, security and compliance.
Requirements
- Bachelor's degree in Cybersecurity, Information Technology, or a related field. Advanced degree preferred.
- Minimum of 1-2 years of experience in cybersecurity preferred.
- Proficiency with cybersecurity tools and technologies, including SIEM, UEBA, EDR, UAM, and Microsoft Purview and Microsoft Defender are preferred.
- Strong analytical and problem-solving skills with the ability to triage alerts, correlate multiple data sources, and identify trends and patterns.
- Excellent verbal and written communication skills, with the ability to document investigations clearly and convey technical information to non-technical stakeholders.
- Able to work both independently and collaboratively in a fast-paced environment.
- Relevant certifications such as CISSP, CISM, CIPP, or CERT Insider Threat Program Manager are highly desirable.
- Experience in conducting confidential investigations and handling digital evidence.
- Experience with operating system, cloud access, and web proxy event logs is preferred.
- Experience and skills in other areas of compliance will be considered.
- Knowledge of cybersecurity and privacy laws and regulations.
Qualifications
- Passion for cybersecurity and a commitment to maintaining high standards of ethical conduct.
- Ability to work effectively in a team-oriented environment.
- Strong attention to detail and organizational skills.
- Ability to manage multiple tasks and priorities simultaneously.
- Self-motivated and proactive in seeking out new challenges and opportunities.
Skills
- Advanced knowledge of cybersecurity principles and practices.
- Experience with SIEM, UEBA, EDR, UAM, and Microsoft Purview and Microsoft Defender.
- Strong analytical and problem-solving skills.
- Effective communication and presentation skills.
- Ability to work independently and collaboratively.
Benefits
- Comprehensive health and wellness benefits.
- Flexible work arrangements.
- Professional development opportunities.
- Competitive compensation package.
- Employee recognition and rewards program.
Pay
- Competitive salary commensurate with experience and qualifications.
Schedule
- Full-time position.