Job Title: Insider Threat Investigator
At our organization, we drive Responsible Growth and deliver for our clients, teammates, communities, and stakeholders by fostering a Great Place to Work. This includes being a diverse and inclusive workplace, attracting and developing exceptional talent, supporting physical, emotional, and financial wellness, recognizing performance, and making an impact in the communities we serve.
We offer opportunities to learn, grow, and make an impact in a secure environment, enabled by our Cyber Security Operations function within Global Information Security. Insider Threat Investigators investigate risks and protect against insider threats, collaborating with peer teams to ensure comprehensive controls and monitoring are in place.
The Insider Threat Investigator conducts data analysis using auditing and monitoring software to detect and identify insider risk activities. They complete investigations by analyzing information through various techniques, internal resources, and conversations with persons of interest, requiring regular collaboration with experts in and out of the team.
Key Responsibilities:
* Conduct thorough investigations by analyzing and verifying information.
* Complete written reports in compliance with current procedures and policies.
* Manage high-risk regional information security incidents effectively.
* Utilize next-generation tools to conduct deep behavioral analytics assessments.
* Collect and analyze data from various applications.
* Document each stage of the investigation with clear notes.
* Communicate effectively with various audiences.
* Maintain awareness of industry challenges and advancements.
Requirements:
* 5+ years' experience in insider threat focus or technical background.
* Curiosity, critical thinking, willingness to learn, and persistence.
* Familiarity with Splunk, ENCASE, CrowdStrike, and other investigative tools.
* Exceptional written and verbal communication skills.
* Excellent organizational skills to manage caseload, projects, and requests.
Desired Skills:
* Understanding of human behavior or investigative background.
* Technical experience with information security/data loss prevention tools.
* Extensive experience in Splunk, ENCASE, CrowdStrike, and similar tools.
* Certifications in cyber security related fields.
* Familiarity with working in cloud environments and scripting languages.
* Bachelor's degree in computer science or related field.