Cyber Insider Threat Manager

Deloitte T.T.L.
Los Angeles, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Intermediate
Compensation
$ 265K

Job location

Los Angeles, United States of America

Tech stack

Business Process Management
Computer Security
Information Systems
Information Leak Prevention
Information Systems Security Architecture Professional
Performance Tuning
Security Information and Event Management
Mitre Att&ck
Cyber Warfare
Splunk

Job description

As an Insider Risk Manager on the Cyber team, you will be responsible for:

  • Developing comprehensive strategies for insider risk programs, including program assessments and roadmaps, using Deloitte's Insider Risk capability framework and industry practices
  • Assisting in the operation of client insider risk programs, overseeing a dedicated team of investigators in the triage, analysis, investigation, and remediation of insider risk-related inquiries
  • Leading client workshops, interviews, and process walkthroughs with cross-functional stakeholders, including Human Resources, Legal, Privacy, and Security, to document business processes, goals, and program requirements
  • Aligning insider risk indicator and policy development with business needs and industry-leading standards, frameworks, and practices, including the CERT Insider Threat Framework, National Insider Threat Task Force guidelines, and MITRE ATT&CK for Enterprise
  • Designing and implementing insider risk detection use cases, monitoring processes, and escalation workflows using Security Information and Event Management, User and Entity Behavior Analytics, and Data Loss Prevention capabilities
  • Evaluating insider risk scenarios, high-risk user groups, and crown jewel assets to help clients prioritize and deploy monitoring, detection, response, and program management capabilities

Requirements

  • Ability to work independently and collaborate as part of a team
  • Effective written and verbal communication skills
  • Meticulous attention to detail and quality of work product
  • Ability to build and sustain professional relationships
  • Ability to lead projects or workstreams
  • Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
  • Strong interpersonal skills and professional demeanor
  • Ability to meet deadlines
  • Ability to mentor and provide clear guidance to others, * 6+ years of experience in insider risk, security operations, investigations, compliance, data protection, or enterprise risk management
  • 2+ years of experience managing an insider risk program or conducting insider risk investigations and monitoring insider risk behaviors
  • Experience using Security Information and Event Management, User and Entity Behavior Analytics, and Data Loss Prevention tools to support insider risk operations
  • Experience developing insider risk procedures, playbooks, workflows, metrics, or governance models
  • Experience working with cross-functional stakeholders such as Human Resources, Legal, Privacy, Ethics, or Security
  • Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
  • Limited immigration sponsorship may be available., * Bachelor's degree or equivalent experience
  • Experience in consulting or professional services
  • Experience responding to and recovering from cybersecurity incidents
  • Hands-on experience configuring, tuning, and operationalizing UEBA and/or User Activity Monitoring (UAM) platforms to support insider risk detection (e.g., Splunk UEBA, Proofpoint ITM, Microsoft Purview IRM, etc.)
  • Hands-on experience with at least one Data Loss Prevention solution such as Microsoft Purview, Proofpoint DLP, or Zscaler DLP
  • One or more of the following certifications: CERT Insider Threat Program Manager Certificate, CERT Insider Threat Analyst, CERT Insider Risk Measure Management Measures of Effectiveness, Certified Information Systems Security Professional, Certified Information Privacy Professional, Certified Information Security Manager, or Certified Information Systems Auditor

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $134,500 to $265,100.

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.

Apply for this position