Insider Risk Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

PlanIT Group, LLC · 5 months ago

Insider Risk Analyst

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level, Lead/Staff
date8+ years exp

PlanIT Group, LLC is a company focused on cybersecurity solutions, and they are seeking an Insider Risk Analyst. The role involves leading insider risk investigations, utilizing AI/ML to assess potential threats, and collaborating with various teams to address insider risk incidents.

ConsultingInformation TechnologyManagement Consulting
check
Growth Opportunities

Responsibilities

Lead or support insider risk investigations, including evidence preservation and forensic analysis
Leverage AI/ML to quickly assess potential threats and enable proactive, informed decisions, including blocking suspicious activities like unauthorized data transfers or flagging risky user behavior
Ability to utilize AI/ML and identify, assess, and mitigate potential security threats posed by individuals, leverage AI-driven solutions to analyze data, pinpoint risky behaviors, and generate actionable insights and recommendations for program resilience and mitigation strategies
Facilitate and support the coordination and response to active insider threats, collaborating with counterintelligence, threat intelligence, and law enforcement teams
Correlate behavioral, contextual, and technical indicators to identify and assess potential insider threat incidents
Support investigations by collecting and analyzing digital evidence, documenting findings, and escalating matters to the appropriate parties
Monitor user activity data and alerts to identify potential indicators of insider threats. Analyze system logs, network traffic, and endpoint alerts for suspicious activity
Correlate data from multiple sources (including user and entity behavior analytics (UEBA), data loss prevention (DLP), security information and event management (SIEM) tools, and endpoint detection and response (EDR) solutions) to detect anomalies and patterns indicative of insider threats
Develop and implement detection methods and strategies, including risk scoring and threat analysis tools, and refine alerts based on triage results, understanding of insider threats, and current events
Work closely with internal teams such as CISO Operations, Legal, Human Resources, and Counterintelligence, as well as external partners, to address and resolve insider risk incidents

Qualification

Cybersecurity conceptsAI/ML utilizationDigital forensicsIncident response processesSIEM toolsUserEntity Behavior Analytics (UEBA)Data Loss Prevention (DLP)Analytical skillsEthical judgmentCommunication skills

Required

Lead or support insider risk investigations, including evidence preservation and forensic analysis
Leverage AI/ML to quickly assess potential threats and enable proactive, informed decisions, including blocking suspicious activities like unauthorized data transfers or flagging risky user behavior
Ability to utilize AI/ML and identify, assess, and mitigate potential security threats posed by individuals, leverage AI-driven solutions to analyze data, pinpoint risky behaviors, and generate actionable insights and recommendations for program resilience and mitigation strategies
Facilitate and support the coordination and response to active insider threats, collaborating with counterintelligence, threat intelligence, and law enforcement teams
Correlate behavioral, contextual, and technical indicators to identify and assess potential insider threat incidents
Support investigations by collecting and analyzing digital evidence, documenting findings, and escalating matters to the appropriate parties
Monitor user activity data and alerts to identify potential indicators of insider threats. Analyze system logs, network traffic, and endpoint alerts for suspicious activity
Correlate data from multiple sources (including user and entity behavior analytics (UEBA), data loss prevention (DLP), security information and event management (SIEM) tools, and endpoint detection and response (EDR) solutions) to detect anomalies and patterns indicative of insider threats
Develop and implement detection methods and strategies, including risk scoring and threat analysis tools, and refine alerts based on triage results, understanding of insider threats, and current events
Work closely with internal teams such as CISO Operations, Legal, Human Resources, and Counterintelligence, as well as external partners, to address and resolve insider risk incidents
Proficiency in cybersecurity concepts, network protocols, operating systems, encryption, authentication mechanisms, and security tools like SIEM, UEBA, and DLP solutions
Utilize AI-powered platforms like User and Entity Behavior Analytics (UEBA) to identify anomalous activities and patterns indicative of insider threats
Cultivate and heighten AI/ML models to refine detection capabilities by leading the creation and tuning rules, alerts, and risk scoring models to enhance efficiency and accuracy
Familiarity with insider threat regulations, information security reports, and relevant legal and privacy regulations
Experience conducting internal investigations, collecting digital evidence while maintaining chain of custody, and understanding forensic analysis tools
Strong ability to analyze complex data, identify patterns and trends, apply critical thinking and logic to evaluate evidence, and use quantitative and qualitative methods to assess risk
Strong analytical skills to interpret large volumes of data and correlate disparate security signals
Knowledge of incident response processes and digital forensics fundamentals related to insider threat scenarios
Strong communication skills for cross-team coordination, reporting, and documenting of findings
Ethical judgment and discretion, especially when handling sensitive personnel and organizational data

Preferred

A degree from an accredited College/University in the applicable field of services is required. If the individual's degree is not in the applicable field, then four additional years of related experience is required
Graduate certificates, specifically in Insider Risk Management and Mitigation to provide in-depth expertise in understanding, investigating, and managing insider threats
8+ years of experience in analyzing technical and non-technical indicators related to insider activity, including user behavior, network activity, system logs, and data access patterns
Knowledge of AI/ML concepts, algorithms, and applications in insider threat detection, including supervised and unsupervised learning, deep learning, and anomaly detection
Need a blend of technical, analytical capabilities, and soft skills to navigate the complex world of AI-driven insider threat detection and prevention
Hands-on experience in insider threat analysis

Company

PlanIT Group, LLC

twittertwittertwitter
company-logo
PlanIT Group is an IT and engineering professional services company which provides top-tier talent to various commercial and government customers.
dateFounded in 2010
location
Charlotte, North Carolina, USA
people-size51-200 employees
web-link
http://planitgroup.com

Funding

Current Stage
Growth Stage
Total Funding
$3.55M
2020-09-24Series Unknown· $3.55M
Company data provided by crunchbase