Apply on Employer Site

Ares Management · 5 hours ago

Cybersecurity Operations (Insider Threat Investigations Lead)

New York, NY

Full-time

Hybrid

Senior Level, Lead/Staff

$210K/yr - $230K/yr

10+ years exp

Ares Management is a leading firm driven by its core values and commitment to fostering an inclusive work environment. They are seeking a Cybersecurity Operations (Insider Threat Investigations Lead) to investigate risky activities, lead investigations, and ensure compliance with legal and ethical standards.

Asset ManagementBusiness DevelopmentCreditFinanceFinancial ServicesInsurance

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Use monitoring and detection platforms to investigate anomalous and potentially risky activity

Lead investigations, coordinating support from other teams where required

Advise and assist in the onboarding and operationalization of a new Insider Threat tool. Evaluate other tooling as needed

Create standard operating procedures for investigations and cross-functional processes

Prepare chain-of-evidence and engage with Legal counsel, if/when required

Help establish and maintain investigative standards, workflows, and documentation practices

Ensure investigative activities comply with legal, regulatory, and ethical requirements related to privacy, labor law, and corporate governance

Qualification

Insider Threat ManagementUserEntity Behavior AnalyticsCybersecurity FrameworksIncident ResponseData Loss PreventionPythonSIEM ToolsAnalytical SkillsCultural SensitivityCritical ThinkingProblem-SolvingCommunication Skills

Required

Bachelor's degree in Computer Science, Information Technology, Business or equivalent discipline or demonstrated requisite years of experience for on-the-job training

Between 10-15 years of experience in Enterprise Cybersecurity in the financial, government, military, law enforcement or technology sector

Previous experience supporting or leading incident response or detection engineering functions

Deep understanding of insider threat indicators, data exfiltration patterns, analyzing and correlating activities from different tools, and cybercrime tactics

Experience with timely deliveries

Strong analytical, critical thinking, and problem-solving skills

High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity

Ability to interact effectively at all levels with sensitivity to cultural diversity

Ability to adapt as the external environment and organization evolves

Passionate about Insider Threat and has the inclination to learn current technologies / concepts / improvements

Experience with User and Entity Behavior Analytics (UEBA) platforms and methodologies

Ability to develop and tune behavioral baselines and anomaly detection models

Knowledge of cyber security frameworks and attack methodologies

Understanding of common Attack methods and their SIEM signatures

Understanding of network protocols (TCP/IP stack, SSL/TLS, IPSEC, SMTP/IMAP, FTP, HTTP etc.)

Understanding of Operating System, Web Server, database, and Security devices (firewall/NIDS/NIPS) logs and log formats

Knowledge of physical security especially as it intersects with cybersecurity

Understanding of Identity and Access Management, authentication, and authorization

Understanding of cloud identity models, privileged access management, and data exfiltration risks in cloud environments

Knowledge of intrusion detection methodologies and techniques for detecting host- and network- based intrusions via intrusion detection technologies

Excellent verbal and written English communication skills

Ability to prioritize tasks based on the risk they pose to the enterprise

Candidate should be willing to work flexible hours when needed due to the nature of insider threats

Candidate should be able to work in a hybrid capacity from the local Ares office

Preferred

Professional Certifications such as CISSP, CCSK, GIAC, or OSCP

Experience working with Python, R, or Jupyter Notebooks for data analysis and threat modeling a plus, but not required

Experience with the following tools would be an advantage, but not essential: SIEM (e.g. Microsoft Sentinel, Splunk, Securonix), EDR/XDR (e.g. SentinelOne, Carbon Black, Crowdstrike Falcon), Vulnerability Management (e.g. Tenable Nessus, Rapid7, Qualys), Attack Surface Management (e.g. Shodan, Randori, HackerOne), Network Detection and Response (e.g. Vectra AI, Darktrace DETECT, ExtraHop Reveal), Insider Threat Management (e.g. DTEX, Proofpoint ITM, Microsoft Insider Risk)

Experience preferred with threat hunting, incident response, SIEM, Data Loss Prevention and Insider Threat platforms

Experience with offensive security practices (e.g. red teaming, penetration testing) is an advantage

Benefits

Comprehensive Medical/Rx

Dental and Vision plans

401(k) program with company match

Flexible Savings Accounts (FSA)

Healthcare Savings Accounts (HSA) with company contribution

Basic and Voluntary Life Insurance

Long-Term Disability (LTD) and Short-Term Disability (STD) insurance

Employee Assistance Program (EAP)

Commuter Benefits plan for parking and transit

Access to a world-class medical advisory team

A mental health app that includes coaching, therapy and psychiatry

A mindfulness and wellbeing app

Financial wellness benefit that includes access to a financial advisor

New parent leave

Reproductive and adoption assistance

Emergency backup care

Matching gift program

Education sponsorship program

Company

Ares Management

Glassdoor4.1

Ares Management is an alternative asset manager focusing on credit, private equity, and real estate.

Founded in 1997

Los Angeles, California, USA

1001-5000 employees

http://www.aresmgmt.com

H1B Sponsorship

Ares Management has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (5)

2023 (1)