INSIDER THREAT ANALYST WITH SECURITY CLEARANCE
Adapt Forward
North Charleston SC 29406 US
Insider Threat Analyst
Charleston, SC
Top Secret Required to start with upgrade to TS-SCI As an Insider Threat Analyst you will conduct technical analyses of user activity data and alerts to identify indicators of insider threats. In addition to producing investigative leads, you will review data pursuant to directed requests in support of civil, workplace, counterintelligence, or law enforcement inquiries/investigations. You will compile results of analyses into reports or analytical products that are concise, accurate, and timely and will present the results to team members and management as required. Position Requirements and Duties Conduct technical analyses of user activity data and alerts to identify indicators of insider threats.
Triage insider threat alerts by correlating insider threat data and other data sources to determine potential indications of malicious or risky insider activity.
Create a hypotheses and perform analyses using tools to understand user dynamics and behavior.
Review data pursuant to directed requests in support of civil, workplace, counterintelligence, or law enforcement inquiries/investigations
When supporting a customer inquiry, ask appropriate questions to understand the full scope of the request and conduct analysis with full diligence and discretion.
Incorporate complex flows of information into analyses adjusting scope, as necessary, to add additional context to alert triage and inquiries.
Produce reports of analysis results for distribution to appropriate insider threat stakeholders, management, and team members that are concise, accurate, and timely.
Present analysis results to management and team member to convey appropriate details in an easy to understand format
Work with team members to refine alerts based on triage results, understanding of insider threats, and current events.
Contribute to the development of processes and procedures within the CSSP to support improvement of the insider threat program.
Use knowledge of business tools, process, and prior incidents to make recommendations on future potential insider threat activities and areas of focus.
Interact with Operations Watch Officers and Analysts to aid in investigations/campaigns/events. Qualifications At least three years of experience in support of DoD or IC Insider Threat Programs
Desired Skills Bachelor’s Degree from an accredited University
Minimum of one (1) year scripting or programming experience in PowerShell, Ruby, Python, Shell/BASH scripting, Java, C/C++, C#, Perl, PL/SQL, or other related languages in the last three (3) years.
Knowledge of Data Science techniques such as anomaly detection and machine learning.
Expert level understanding of insider threat analysis, user activity data, and analysis of host-based data.
Experience with the modus operandi of foreign intelligence entities, international threat organizations, and associated Cyber capabilities and operations.
Experience working in a multi-tenant/service provider environment
Certifications 8570 Classification IAT –II & CSSP Analyst
Charleston, SC
Top Secret Required to start with upgrade to TS-SCI As an Insider Threat Analyst you will conduct technical analyses of user activity data and alerts to identify indicators of insider threats. In addition to producing investigative leads, you will review data pursuant to directed requests in support of civil, workplace, counterintelligence, or law enforcement inquiries/investigations. You will compile results of analyses into reports or analytical products that are concise, accurate, and timely and will present the results to team members and management as required. Position Requirements and Duties Conduct technical analyses of user activity data and alerts to identify indicators of insider threats.
Triage insider threat alerts by correlating insider threat data and other data sources to determine potential indications of malicious or risky insider activity.
Create a hypotheses and perform analyses using tools to understand user dynamics and behavior.
Review data pursuant to directed requests in support of civil, workplace, counterintelligence, or law enforcement inquiries/investigations
When supporting a customer inquiry, ask appropriate questions to understand the full scope of the request and conduct analysis with full diligence and discretion.
Incorporate complex flows of information into analyses adjusting scope, as necessary, to add additional context to alert triage and inquiries.
Produce reports of analysis results for distribution to appropriate insider threat stakeholders, management, and team members that are concise, accurate, and timely.
Present analysis results to management and team member to convey appropriate details in an easy to understand format
Work with team members to refine alerts based on triage results, understanding of insider threats, and current events.
Contribute to the development of processes and procedures within the CSSP to support improvement of the insider threat program.
Use knowledge of business tools, process, and prior incidents to make recommendations on future potential insider threat activities and areas of focus.
Interact with Operations Watch Officers and Analysts to aid in investigations/campaigns/events. Qualifications At least three years of experience in support of DoD or IC Insider Threat Programs
Desired Skills Bachelor’s Degree from an accredited University
Minimum of one (1) year scripting or programming experience in PowerShell, Ruby, Python, Shell/BASH scripting, Java, C/C++, C#, Perl, PL/SQL, or other related languages in the last three (3) years.
Knowledge of Data Science techniques such as anomaly detection and machine learning.
Expert level understanding of insider threat analysis, user activity data, and analysis of host-based data.
Experience with the modus operandi of foreign intelligence entities, international threat organizations, and associated Cyber capabilities and operations.
Experience working in a multi-tenant/service provider environment
Certifications 8570 Classification IAT –II & CSSP Analyst