Insider Risk Analyst

Contract through March 31st, 2026

General Duties

We are seeking an Insider Risk Analyst to join our cybersecurity team. The successful candidate will be responsible for identifying, investigating, and mitigating risks posed by insiders—whether malicious, negligent, or compromised. This role requires a blend of technical expertise, behavioral analysis, and business awareness to detect patterns of potential insider threats while ensuring a balanced and ethical approach to monitoring employees and partners.

General Skills

Threat Detection & Analysis

-Monitor, investigate, and analyze insider-related alerts and activities across security platforms (e.g., SIEM, DLP, UEBA, EDR).

-Identify patterns, anomalies, and behaviors indicative of insider threat (data exfiltration, fraud, sabotage, misuse of privileges).

-Conduct behavioral risk assessments using both technical data and contextual information.

Investigations & Response

-Develop and support insider threat investigations from triage through closure, ensuring proper documentation and reporting.

-Collaborate with HR, Legal, Compliance, and Business Units to handle sensitive cases and to align investigations with policies and labor laws.

-Recommend and implement risk mitigation strategies (technical controls, policy changes).

Program Development & Improvement

-Contribute to the design and maturity of the Insider Risk Program, including playbooks, escalation workflows, and metrics.

-Support insider threat simulations and red team/blue team exercises to validate detection and response capabilities.

-Stay informed on regulatory requirements, industry best practices, and emerging insider threat tactics.

Stakeholder Engagement

-Deliver clear, actionable reports and presentations to senior leadership and stakeholders.

-Ensure a balance between protecting company assets and respecting employee privacy and organizational culture.

Required Qualifications

-Bachelor’s degree in Cybersecurity, Computer Science, Criminology, Behavioral Science, or related field (or equivalent practical experience).

-3+ years of experience in cybersecurity operations, insider threat programs, SOC, or related investigative/analytical roles.

-Familiarity with insider risk tools and technologies (SIEM, DLP, UEBA, EDR, SOAR).

-Strong knowledge of security principles, data protection, and incident response methodologies.

-Excellent analytical, investigative, and problem-solving skills.

-Ability to communicate findings clearly to both technical and non-technical stakeholders.

Preferred Skills

-Experience with insider risk programs in enterprise or government environments.

-Knowledge of behavioral indicators of insider threat and psychology of malicious/negligent insiders.

-Knowledge of Critical Pathway to Insider Risk concept.

-Certifications such as Insider Threat Program Manager (ITPM) or CISSP, CySA+, GCIH.

-Experience working with cross-functional teams (HR, Legal, Compliance, IT).

-Familiarity with privacy regulations (GDPR, HIPAA, SOX) and their impact on insider monitoring.

Soft Skills

-Must have a high level of integrity, discretion, and trustworthiness when handling sensitive information.

-Ability to work with ambiguity and maintain objectivity in sensitive investigations.

-Strong interpersonal skills to build trust with stakeholders and influence risk-aware decision-making.

-Must be proactive, problem solver and curious.

-Must be adaptive to dynamic environment.