Enable job alerts via email!

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

Dallas (TX)

Remote

USD 80,000 - 189,000

Full time

2 days ago
Be an early applicant

Boost your interview chances

Create a job specific, tailored resume for higher success rate.

Job summary

A leading company is seeking a Senior Engineer for Cyber Insider Threat to implement and analyze cyber intelligence for insider threats. This role involves collaborating with cybersecurity teams, developing detection strategies, and managing insider risk. Candidates should have a strong background in cybersecurity, data analytics, and experience with insider threat tools. This position is remote, offering a competitive salary range.

Qualifications

  • At least 6 years of experience in cybersecurity or investigative analysis.
  • Expert understanding of cybersecurity and insider threat concepts.

Responsibilities

  • Lead the design and implementation of insider threat monitoring strategies.
  • Collaborate with cybersecurity teams to develop detection capabilities.

Skills

Leadership
Communication
Data Analytics
Cybersecurity
Scripting

Education

Bachelor’s degree in computer science
Cybersecurity
Information Systems

Tools

PowerShell
Python
Java
SQL

Job description

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote
Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

1 day ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Lensa is the leading career site for job seekers at every stage of their career. Our client, Molina Healthcare, is seeking professionals. Apply via Lensa today!

Job Description

Job Summary

The Sr Engineer, Insider Threat will implement cyber intelligence (CyInt) collection, compilation, and analysis for the insider threat program. Implements data sets, tools, and provides program support to insider threat analysts and investigations. Works closely with our cybersecurity team, other technical teams, and business stakeholders to develop advanced insider threat systems and processes.

Job Duties

  • Lead the design, development, and implementation of a comprehensive insider threat monitoring and detection strategy integrating technical and non-technical components
  • Collaborate with cybersecurity analysts, engineers, and other program stakeholders to develop and refine insider threat monitoring and detection capabilities
  • Correlate information from multiple technical user activity monitoring (UAM), user entity behavior analytics (UEBA), data loss prevention (DLP), security information and even management (SIEM) and non-technical data sources to enable proactive insider risk/threat detection
  • Utilize cyber security expertise, knowledge of insider threat detection, and data analytics to create innovative strategies for detecting and preventing malicious activities.
  • Conduct in-depth analysis of logs received from various data sources
  • Architect and implement automation of investigation and escalation workflows
  • Contribute to internal investigations where needed, providing support for forensic analysis, log review, and alert analysis
  • Execute rigorous testing on internal security mechanisms to validate their effectiveness
  • Develop and maintain insider risk techniques and procedures, to include use cases surrounding data exfiltration, internal fraud, privilege escalations, and sabotage
  • Evaluate, recommend, and improve upon existing technical and non-technical solutions to detect and respond to potential insider threats.
  • Guide the technical architecture of insider threat systems, ensuring alignment with the organization's security and business goals
  • Publish internal CyInt threat intelligence products, and briefings to provide actionable information to stakeholders
  • Define security controls and metrics to measure the effectiveness of the insider threat program
  • Stay abreast of emerging insider threat trends and update strategies accordingly
  • Coordinate with stakeholders on CyInt activities to ensure compliance to policies and regulations

Job Qualifications

REQUIRED QUALIFICATIONS:

  • Bachelor’s degree in computer science, Cybersecurity, Information Systems, or equivalent education or work experience
  • Expert understanding of cybersecurity and insider threat concepts, protocols, and tools,
  • Experience with UEBA deployment, administration, data source integrations, and configurations
  • Strong knowledge of data protection and privacy regulations
  • Proficient in at least one programming or scripting language such as Java, Python, .NET, JavaScript, or C+
  • Experience in scripting languages such as PowerShell, Perl, or Bash
  • Exceptional leadership, communication, and presentation skills
  • At least 6 years of experience in cybersecurity, DLP, Security Operations, investigative analysis, or the intelligence field.
  • Experience leading or conducting technical investigations utilizing insider threat tools
  • Ability to professionally manage confidential matters with appropriate judgement around escalation.
  • Experience with data analytics tools used for insider threat information collection and knowledge of other insider threat risk scoring data analytics tools.
  • Action-oriented engineer with the ability to work autonomously and take ownership of complex projects
  • Experience developing and implementing defensive controls around Windows, MacOS, Linux, and SaaS applications
  • Proficiency with automating workflows and integrating security tools within IT environments

Preferred Qualifications

  • Experience with UEBA/SIEMs.
  • Experience with Endpoint Detection and Response (EDR) tools, device management tooling and other telemetry sources
  • Experience working on insider threat teams or working insider threat investigations
  • Experience with broad system forensics
  • Experience communicating technical security concerns and issues to a non-technical audience.
  • Experience with insider threat tools (ex. Red Vector, Code42, Exabeam, DTEX)
  • Prior experience working with confidential / sensitive information
  • Familiarity with cybersecurity, networking, internet fundamentals (e.g., TCP/IP, BGP, Internet peering, DNS), digital forensics, and various technical methods of data exfiltration
  • Experience with using Excel or SQL for analysis of complex datasets
  • Experience with developing PowerPoint presentations
  • Information security, digital forensics, insider threat, or other related certifications
  • Security+, Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), CERT Insider Threat, Certified Ethical Hacker (CEH)

Pay Range: $80,412 - $188,164 / ANNUAL

  • Actual compensation may vary from posting based on geographic location, work experience, education and/or skill level.

Seniority level
  • Seniority level
    Mid-Senior level
Employment type
  • Employment type
    Full-time
Job function
  • Job function
    Engineering and Information Technology
  • Industries
    IT Services and IT Consulting

Referrals increase your chances of interviewing at Lensa by 2x

Get notified about new Senior Software Engineer jobs in Dallas, TX.

Senior Software Engineer (Identity Decisioning)
Manager, Software Engineering (Pricing Engineering)

Dallas, TX $140,000.00-$154,000.00 1 day ago

Manager, Software Engineering (Merchant Risk Intelligence & Platform)
Senior Engineering Information Developer / Senior Application Engineering Technical Writer

Dallas, TX $160,000.00-$200,000.00 7 months ago

Dallas, TX $150,000.00-$190,000.00 7 months ago

Senior Software Engineer - North American Sports

Dallas-Fort Worth Metroplex $107,000.00-$179,000.00 3 days ago

Senior Staff Engineer – Cloud and Developer Experience
Senior Software Engineer -.NET/React - US Remote
Senior Frontend Software Engineer, myLexia

Dallas-Fort Worth Metroplex $130,000.00-$200,000.00 3 days ago

Senior Backend Software Developer (Remote)
Sr. Full Stack Developer (Generative AI): 25-04611
Senior Full Stack Cloud Software Development Engineer
Senior Software Engineer, Backend (ML Platform)
Senior Software Engineer - SRE, Backend (Reliability Engineering)
Senior Staff Software Engineer, Backend (Identity Engineering)
Principal Software Engineer, Infrastructure Platform Engineering
Senior Staff Software Engineer, Fullstack (Consumer App Experience)

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.

Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Similar jobs

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

Dallas

Remote

USD 80.000 - 189.000

Today
Be an early applicant

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

Ann Arbor

Remote

USD 80.000 - 189.000

Today
Be an early applicant

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

City of Rochester

Remote

USD 80.000 - 189.000

Today
Be an early applicant

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

San Antonio

Remote

USD 80.000 - 189.000

Today
Be an early applicant

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

Tampa

Remote

USD 80.000 - 189.000

Today
Be an early applicant

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

Augusta

Remote

USD 80.000 - 189.000

Today
Be an early applicant

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

West Valley City

Remote

USD 80.000 - 189.000

Today
Be an early applicant

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

City of Syracuse

Remote

USD 80.000 - 189.000

Today
Be an early applicant

Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

Lensa

City of Albany

Remote

USD 80.000 - 189.000

Today
Be an early applicant