Staff Insider Threat Engineer
About the role
The Staff Insider Threat Engineer plays a crucial role in protecting the U.S. financial system by detecting, identifying, mitigating, and responding to critical or urgent insider threat situations. They collaborate with various teams including CSIRT, HR, Legal, Privacy, and others to address these threats effectively.
Responsibilities
- Lead the deployment, configuration, and tuning of insider threat detection tools to ensure optimal performance and integration with existing security systems.
- Mature and improve the comprehensive insider threat program aligned with organizational goals and regulatory standards.
- Monitor user and entity behavior analytics to identify suspicious activities and policy violations.
- Perform detection and investigative analysis activities for a variety of digital devices, computers, storage media, servers, networks, and cloud-based services.
- Perform advanced host and network forensics and malware analysis; investigate and respond to incidents; provide recommendations to improve company’s security posture.
- Escalate complex issues as needed.
- Track investigations and incidents through resolution.
- Analyze vulnerabilities from insider threat perspectives and escalate & remediate as needed.
- Represent the Insider threat team at internal and external threat intelligence and cybersecurity forums.
- Perform on-call activities when required.
- Ensure the company's commitment to protect the integrity and confidentiality of systems and data.
Requirements
Minimum Qualifications:
- Education and/or experience typically obtained through completion of a Bachelor’s degree or 2 year degree in Computer Science, Engineering, Math or Physical Science or equivalent experience.
- Minimum 10 years of progressive information security technology experience.
- Proven advanced analytical skills across various technologies.
- Advanced understanding of Networking and security concepts.
- Advanced understanding of Insider Threat Techniques and detection.
- Experience in identifying, triaging, and escalating tickets based on severity and malicious activity.
- Experience in responding to malicious threats coming from various sources.
- Experience with the incident response process.
- Effective communication skills to speak and write for all technology experience levels.
- Effective interpersonal skills, able to comfortably present to peers, coworkers, and customers.
- A propensity for continued development of skills though research and training.
Qualifications
Preferred Qualifications:
- Subject matter expert within Insider threat domains, threat actors, and data engineering.
- Subject matter expert in one or more security tools such as EDR platforms, SIEMs or UBA tools.
- Working experience in cloud technology.
- Experience utilizing Data Loss Prevention Tools.
Benefits
Base Pay Scale:
- Phoenix, AZ/Chicago, IL: $132,000 - $165,000.
- San Francisco, CA: $158,000 - $198,000.
Candidates are eligible for a discretionary incentive plan and benefits, including healthcare coverage, a 100% company safe harbor match on your first 6% deferral, flexible time off, 11 paid company holidays, and a paid volunteer day. Additionally, there is 12 weeks of Paid Parental Leave, Maven Family Planning, and more. The company also prohibits discrimination on other bases such as medical condition, marital status, or any other factor that is irrelevant to the performance of our employees.