Sr Engineer, Cyber Insider Threat - Network Activity Logs - Remote

The Sr Engineer, Insider Threat will implement cyber intelligence (CyInt) collection, compilation, and analysis for the insider threat program. Responsibilities include developing data sets, tools, and supporting investigations. The role involves collaboration with cybersecurity teams, technical and non-technical stakeholders, and the development of advanced insider threat systems.

Key Duties:

• Design and implement insider threat monitoring and detection strategies
• Collaborate with analysts and engineers to develop monitoring capabilities
• Analyze logs from multiple data sources
• Automate investigation workflows
• Support forensic analysis and internal investigations
• Test security mechanisms
• Develop insider risk use cases
• Evaluate and improve detection solutions
• Guide technical architecture of insider threat systems
• Publish threat intelligence and briefings
• Define security controls and metrics
• Stay updated on insider threat trends
• Ensure compliance with policies and regulations

Qualifications:

• Bachelor’s degree in relevant fields or equivalent experience
• Expertise in cybersecurity and insider threat concepts, tools, and protocols
• Experience with UEBA, DLP, SIEM, and data analytics
• Strong leadership and communication skills
• Minimum 6 years in cybersecurity, investigations, or related fields
• Experience with technical investigations and insider threat tools
• Ability to manage confidential matters professionally
• Proficiency in automating workflows and security controls

Preferred Skills:

• Experience with UEBA/SIEMs, EDR tools, and system forensics
• Experience working with sensitive information
• Knowledge of cybersecurity fundamentals and data analysis tools
• Certifications such as CISSP, CISM, CEH, or similar

Pay Range: $80,412 - $188,164 annually. Actual compensation varies based on location, experience, and skills.