Advanced Insider Threat Sr. Specialist

Responsibilities:

• Assesses systems controlling access to bank resources for compliance to security policies and controls by utilizing external threat frameworks, internal threat intelligence, and systems documentation
• Analyzes, improves, implements, and executes security controls proactively to identify risks of state-sponsored threat actors accessing associates, resources, or intellectual property
• Engage with senior leaders across the enterprise; collaborate with data science, threat research, Cyber Threat Hunt Intelligence and Defense teams to identify opportunities to build and respond to nation-state directed insider tactics and techniques
• Developing and documenting new and innovative insider hunt hypotheses to increase the team’s ability to find existing insider threats
• Leverages risk management practices, and internal escalation processes to document findings for remediation
• Monitors new threats and complex attempts to compromise security controls while developing a deep expertise in the early lifecycle for security techniques to identify vulnerabilities before they present a risk to the bank
• Develops strong internal and external partnerships by demonstrating operational expertise as a subject matter expert in counterintelligence matters
• Navigates and works effectively, including organizing response, communication plans, and executive updates, across a complex, geographically dispersed organization and team

Required qualifications:

• 7+ years of experience working counterintelligence investigations with demonstrated knowledge in identifying, detecting, and mitigating nation-state cyber threats and hostile nation state threat actors
• 5-7 years of relevant work experience leading teams and conducting intelligence analysis involving complex threats from nation state actors.
• Demonstrated ability to identify, analyze and address cyber security issues or threats, including emerging tactics or techniques
• Proficiency with executive-level tracking and reporting, including expertise in Jira and Excel
• Must be comfortable presenting to a wide spectrum of individuals having varying degrees of technical understanding
• Strong program management skills
• Ability to work independently with little oversight managing multiple investigations simultaneously
• Demonstrated vendor management skills
• Strong communication, writing and analytical skills along with problem solving and conceptual thinking skills.
• Extensive knowledge of all domains within Information Security
• Expertise in insider threat and associated risk detection and mitigation practices
• High proficiency with forensic tools (ENCASE), CrowdStrike and other similar investigative and/or monitoring tools
• Direct experience working with very large datasets and log analysis tools including but not limited to: Splunk, Python, SQL
• Correlation analysis of existing case types and escalations
• Excellent organizational skills to manage caseload, projects and ad hoc requests
• Familiarity with participating in and driving incident response events
• Demonstrated ability in applying strong critical‑thinking skills to strategize, innovate, and develop creative solutions to complex problems in fast‑paced environment
• Ability to resolve issues with minimal negative impact and risk to the organization
• Must have extensive knowledge of all steps of the intelligence process and demonstrated ability to transform raw data into actionable cyber risk mitigation outcomes

Desired qualifications:

• At least 10+ years of experience working with classified/sensitive information
• At least 10+ years of experience working national security threats within the law enforcement/intelligence community
• Experience in the remediation of information security risks/vulnerabilities
• Credibility necessary to establish relationships and lead collaborative exchanges with peer financial institutions and US Government Agencies.