Insider Threat Analyst
Share
Job Location:
Monthly Salary:
Posted on:
30+ days ago
Vacancies:
1 Vacancy
Job Summary
Job Title: Insider Threat Analyst
Contract Type: Permanent
Location: Edinburgh OR Glasgow OR Alderley Edge
Working style: Hybrid 50% home/office based
Closing date: 10th April 2025
OurSecurity Operations teamis growing and have opportunities forInsider ThreatAnalystsinEdinburgh / Glasgow /Alderley manage potentialthreatand realdata loss eventsin keybusinessareas. These are exciting opportunities to join a growing organisation and work on a variety ofnew security toolingand technologies
The successful candidates willbe responsible formanaging and improvingdetection engineeringData handlingData Loss Prevention systems investigate alerts and work with teams across Cyber Security IT Legal and Compliance to reduce data security risks and ensure regulatory the posture of the detections and collaborating with key stakeholders.
About the role
- Assist with Designing and implement insider threat detections based on behavioural indicators and real-world risk scenarios.
- Identifygaps in current monitoring capabilities and propose new detections to address those gaps.
- Translate insider risk scenarios into practical alerting logic and monitoring rules across security platforms.
- Assist with investigations involving insider risk data/ accessmisusefraudand employee misconduct.
- Conduct investigative interviews and behavioural assessments.
- Analyse behaviouralfinancialand technical indicators todetermineintent and impact.
- Build and mature workflows across Insider Risk fraud prevention misconducthandlingand case management.
- Develop and refine triage models escalationstandardsand investigation lifecycle processes.
- Partnerwith technical teams to improve alerting detectionlogicand data visibility across monitoring platforms.
- Identifycontrol gaps and implement practical improvements to reduce risk exposure.
- Develop andmaintainplaybooksand operational standards.
- Contribute to executive-level reporting and risk insight.
- Ensure monitoring and investigative activities align with privacy and regulatory requirements.
About you
- Experience in Data Loss Prevention Security Operations or Cyber Security monitoring.
- Detection engineering skills and use case development lifecycle management.
- Exposure to fraud or whistleblowing investigations.
- Experience refining detectionusecases or improving alert quality.
- Strong communicationskills.
- Hands-on experience with Microsoft Purview or similar tooling.
- Experience with Microsoft 365 security tools or cloud security.
- Knowledge of insider risk digital forensics or behavioural analytics.
- Relevant certifications (e.g. Security CCSP CISSP Microsoft SC-400.
- Experience working in a SOC or operational security environment.
About Royal London
Were the UKs largest mutual life pensions and investment company offering protection long-term savings and asset management products and services.
OurPeople Promiseto our colleaguesis that we will all work somewhere inclusive responsible enjoyable and fulfilling. This is underpinned by our Spirit of Royal London values; Empowered Trustworthy Collaborate Achieve.
Weve always been proud to reward employees by offering great workplace benefits such as 28 days annual leave in addition to bank holidays an up to 14% employer matching pension scheme and private medical insurance. You can see all our benefits here -Our Benefits
Inclusion diversity and belonging
Were anInclusive employer. We celebrate and value different backgrounds and cultures across Royal London. Our diverse people and perspectives give us a range of skills which are recognised and respected whatever their background.
Required Experience:
IC
Key Skills
About Company
From Pensions to Retirement, Savings, Investments and Life Insurance, Royal London has been helping people plan for life’s financial milestones since 1861.
