Resumen del rol

Security Engineer, Insider Threat

Requisitos y responsabilidades

Contenido del rol extraído en secciones para revisar más rápido.

You’re excited about this opportunity because you will…

  • Use monitoring and detection platforms to investigate anomalous activity for potential insider risk, and develop detections to proactively identify similar behaviors at scale
  • Support the onboarding, implementation, and improvement of custom tooling designed to alert on anomalous behaviors
  • Create and maintain a use case library to inform detections, and develop corresponding playbooks, leveraging version-controlled workflows (e.g., Git) to ensure consistency and scalability
  • Create standard operating procedures and cross-functional processes to govern investigation and response collaboration between teams
  • Leverage and help develop agentic and AII-assisted workflows to automate and scale insider threat investigations and detection capabilities
  • Prepare investigative reports and briefings for leadership
  • Maintain chain-of-evidence and engage with External Law Enforcement, when required
  • Lead training or other education and awareness opportunities for the enterprise as required

We’re excited about you because…

  • 2-5+ years of experience in insider threat investigations, incident response, or federal law enforcement
  • Strong verbal and written communication skills with experience presenting findings to stakeholders
  • Experience conducting ethical, complex investigations in partnership with Legal, HR, and cross-functional stakeholders
  • Hands-on experience with insider risk and security tooling including SIEM/SOAR platforms, UEBA, UAM, and DLP tools
  • Proficiency querying large-scale datasets to support investigations (e.g. SQL) and familiarity with log sources, data pipelines, and parsing
  • Familiarity with scripting and automation, and experience working in cloud and distributed environments using version control

See below for paid time off details:

  • For salaried roles: flexible paid time off/vacation, plus 80 hours of paid sick time per year.
  • For hourly roles: vacation accrued at about 1 hour for every 25.97 hours worked (e.g. about 6.7 hours/month if working 40 hours/week; about 3.4 hours/month if working 20 hours/week), and paid sick time accrued at 1 hour for every 30 hours worked (e.g. about 5.8 hours/month if working 40 hours/week; about 2.9 hours/month if working 20 hours/week).
Roles similares

Mantén una lista de respaldo.

Ver stack
FocoSecurity EngineeringÁrea del rol
Señal de senioritySeniorNivel del candidato
StackSQLSkills principales
Ubicación1 país aceptadoElegibilidad

Stack

Usa estas tags para comparar roles remotos similares.

Elegibilidad de ubicación

Candidatos deberían aplicar solo cuando el país del perfil aparece aquí.

Tu perfilPaís no definidoInicia sesión para comparar tu país con este rol.

Flujo de contratación

WithMira muestra el rol y luego envía candidatos a la aplicación de la empresa.

1Revisa fit del rol, stack y elegibilidad de ubicación en WithMira.
2Abre la página de aplicación de la empresa desde el link rastreado.
3Guarda el rol o suscríbete a oportunidades similares antes de salir.