Insider Threat Monitoring and Analysis Program Manager

Global Security (GS) protects the firms employees and assets throughout the world. This responsibility includes the development of security and safety policies and procedures regulatory and legislative compliance corporate aviation guard management alarm response crisis management ATM branch and corporate building security and customer safety physical crime investigations workplace violence fire and life safety pre-employment screening fraud and employee investigations.

Within GS the Threat Detection and Analysis team is responsible for identifying potential threats against the firm and its workforce from internal and external actors and developing strategies to mitigate those threats to protect the firms reputation workforce clients and assets.

As an Insider Threat Monitoring and Analysis Program Manager within our Global Security team you will be responsible for managing the day-to-day operations of the Insider Threat Analysis team. You will develop and deliver cutting-edge enterprise-wide technology solutions to detect and analyze insider risks and oversee the triage of insider events and insider risk analysis by a team of analysts. You should be highly motivated with strong interpersonal skills leveraging your technical insider risk cybersecurity threat analysis and/or counterintelligence experience to work on multiple assignments in a fast-paced environment. You will work closely with various partners within the firm including HR Legal Cybersecurity and Technology as well as external partners. Your ability to work effectively with a diverse set of stakeholders is essential and the role requires creativity critical thinking strong communication skills and the ability to work effectively across a large global organization.

Job Responsibilities

• Execute critical strategic deliverables deliverables for the Insider Threat Program executed in accordance with data privacy and legal requirements and expectations.
• Supervise and lead a team of analysts conducting triage of events generated by monitoring use cases producing contextual data-driven analysis of insider incidents risk analysis and threat assessment.
• Manage day-to-day operations of the team including oversight of event triage and analytical products utilized to help prevent detect monitor and react to potential insider activity.
• Facilitate referral of anomalous activity for investigation escalation to other SMEs and cross-functional coordination of mitigation strategies.
• Monitor internal and external Intel for notable insiderevents & coordinate insider incident topologyanalysis for risk and response action assessment.
• Provide SME-level support insider risk matters leveraging deep knowledge of insider risk cyber security and counterintelligence.
• Communicate complex problem sets in succinct and clear manner that is understandable to a variety audience across the firm.
• Align and socialize the Firms Insider Threat program across multiple stakeholders senior managers and executives; synthesize findings and present updates and recommendations.
• Manage program governance documentation including definition of roles and responsibilities and support compliance with the control environment.
• Work and collaborate with critical stakeholders within the firm financial sector across other industries and the U.S. Government to stay abreast of industry trends and best practices.

Required qualifications capabilities and skills

• 8 years of work experience supporting insider threats and/or counterintelligence programs investigations or risk analysis.
• Direct experience serving as an insider threat/risk program manager or senior analyst in industry or government assessing complex threats; scoping and developing mitigation strategies in coordination with cross-disciplinary teams.
• Undergraduate degree or a masters degree related to Intelligence Studies Forensic Science Security Studies Computer Science Cybersecurity Data Analysis or a related field.
• Experience conducting risk assessments and in-depth multi-source research on threat actors tactics techniques and emerging trends to inform risk scenarios evaluate control environment and develop mitigation strategies.
• Experience conducting or providing analytical support to insider threat/risk counterintelligence criminal cybersecurity and/or other types of investigations.
• Experience supervising direct reports while defining and managing business objectives and outcomes.
• Proven ability to strategize and demonstrate out of the box thinking and creativity to solve complex problems and deliver practical and effective results.
• Experience in analysis design implementation and management of enterprise-wide security initiatives related to insider risk.
• Experience building successful sustainable relationships across lines of business and with technical partners to develop solutions.
• Strong negotiation and influence skills with all levels of the organization to achieve business results.

Preferred qualifications capabilities and skills

• Experience in or knowledge of the private sector including but not limited to the financial industry.
• Insider Threat (e.g. CERT courses CCITP GCITP etc.) counterintelligence analytical and/or security tradecraft training and certifications.
• Behavioral Science/ Behavioral Analysis/Behavioral Threat Assessment experience or training.
• Experience with User Activity Monitoring (UAM) User Behavior Analytics (UBA) principles and tools rules and policy engines other insider threat technical solutions and data analytics platforms.