Insider Threat Investigations Lead – VP

Sorry, applications for this particular Job have now closed.

Managed Service provider seeks a SOC Lead to join the Cyber Security function. This role will pla...

View job & apply

• Location: Surrey
• Salary: £55,000 + excellent bonus and pension
• Job type: Permanent

Financial Service firm is seeking a Data Loss Prevention Analyst to join its Cyber Security team....

View job & apply

• Location: Frankfurt
• Salary: 125,000 + Benefits
• Job type: Permanent

Join our second-line Information Security function as a Senior Manager for SIEM & Security Mo...

View job & apply

• Location: Frankfurt
• Salary: 80,000 + Benefits
• Job type: Permanent
• Sector: Banking

Join a critical function managing access governance and identity lifecycle processes in a highly ...

View job & apply

• Location: London
• Job type: Permanent

Financial Services firm seeks an Operational CTI Analyst to join its Threat Intelligence team. Th...

View job & apply

• Location: Frankfurt
• Salary: 125,000 + Benefits
• Job type: Permanent
• Sector: Banking

We are seeking a Senior Manager for Business Continuity Management (BCM) to strengthen IT resilie...

View job & apply

• Location: London
• Job type: Permanent
• Sector: Government/Public Sector, Commerce and Industry, Professional Services

I’m currently working with a business that is looking to hire a Group Cyber GRC Manager. This is ...

View job & apply

• Location: London
• Job type: Permanent
• Sector: Commerce and Industry

Growing International Commercial company seeks a Head of Security Operations to lead a team of 5....

View job & apply

• Location: Frankfurt
• Salary: 110,000 + Benefits
• Job type: Permanent
• Sector: Banking

We’re looking for a Manager-level Information Security Assessor to join the Second Line of ...

View job & apply

• Location: Manchester area - hybrid
• Job type: Permanent

Leading banking group seeks a Cryptography Analyst to join their security team. As an Analyst in ...

We are seeking a highly motivated and skilled Insider Threat Investigations Lead to join a newly formed Insider Threat Team. This role focuses on identifying, preventing, and responding to risks posed by individuals with authorized access to organisational assets, including employees, contractors, and third-party vendors.

The position requires collaboration with cross-functional teams to mitigate risks of malicious, negligent, or unintentional insider actions that could cause security breaches, data loss, or reputational damage. It will also involve building strong relationships with internal stakeholders and driving continuous programme improvements.

This role suits someone with strong investigative skills, an analytical mindset, the ability to interpret and act on data, and the capability to execute initiatives that strengthen the insider threat programme.

Key Responsibilities

• Support the delivery of the insider threat programme, including developing tools, standards, and procedures to detect, prevent, and respond to insider threats.
• Utilise advanced detection tools, behavioural analytics, and security monitoring systems.
• Drive continuous improvement by applying lessons learned, industry best practices, and emerging threat intelligence.
• Partner with stakeholders to identify and mitigate potential insider risks across systems, networks, and processes.
• Lead investigations into suspected insider threat incidents, ensuring they are thorough, timely, and compliant with legal and regulatory standards.
• Produce reports on risks, incidents, and mitigation efforts for executive decision-making.
• Collaborate with intelligence teams to develop threat modelling deliverables.

Experience & Skills Required

• 8+ years of experience in information security, preferably in Investigations, Analysis, Security Operations, Incident Response, or Threat Intelligence.
• 3+ years’ experience specifically in Insider Threat or equivalent roles.
• Proficiency with insider threat detection tools (UEBA, DLP, SIEM) and knowledge of advanced threat intelligence techniques.
• Understanding of threat actor tactics, techniques, and procedures (TTPs) and the MITRE ATT&CK Framework.
• Familiarity with security frameworks, incident response, and risk management practices.
• Knowledge of legal and regulatory considerations, including privacy and data protection laws.
• Excellent interpersonal, relationship management, and communication skills.

Qualifications & Certifications

• Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, Business Analytics, Intelligence Studies, Criminology, or a related discipline.
• Hands-on experience with security monitoring and analytical tools (eg, UEBA, DLP, SIEM).
• Demonstrated ability to manage complex investigations and coordinate across departments.
• Relevant security certifications (eg, SANS, CERT ITPM, CISA) preferred.
• Experience with threat intelligence and SOC/CIRT operations.
• Ability to handle sensitive information with discretion.
• Strong written and verbal communication skills.
• Ability to work on-site in London at least twice a week and engage with local intelligence-sharing networks.

We seek individuals from a diverse talent pool and encourage applicants from underrepresented groups to apply to our vacancies. Our commitment to fair recruitment processes means that we welcome applicants from all backgrounds, regardless of their lived experience or personal characteristics. We also invite applicants who meet most of the listed requirements, even if not all, to apply. If you require any adjustments to the application process, please let us know.

Barclay Simpson acts as an Employment Agency for permanent positions and an Employment Business for temporary/contract engagements.