Insider Threat Analyst - Entry

As an Insider Threat Analyst, you will have to monitor, detect and respond to potential security threats along the global organization. You will be required to conduct security investigations based on the documented procedures and will be able to learn and get experience with each incident and collaborate with other security teams.

What you’ll do.

• Primary responsibilities will be included but are not limited to pre-defined monitoring tasks, review incoming emails and following established escalation procedures to engage appropriate parties, as required.

• Monitor and investigate alerts and DLP events detected by our security tools, mostly related to suspicious activities from employees and contractors. You will be expected to use your analytics skills, technical knowledge and security expertise to determine if the security events are false positives or true positives, and if remediation is required.

• Candidates must have good analytical and communication skills and be capable of determining appropriate points of escalation.

• Monitor employees and contractors that may be terminated soon or that are considered a high risk to the organization.

• Work with confidential or/and restricted data, which will require you to hold yourself accountable to the highest ethical standards and adhere to internal policies. You will be expected to handle complex situations with discretion, attunement to privacy, and knowledge of international laws

What experience you need.

• 3-6 month of experience in a role involving incident.response/handling procedures.

• 3-6 months of networking experience.

• 3-6 months of Operating Systems experience.

• 3-6 months of relevant operational work experience in a Security Operations Center, IT support environment or as a Fraud or Intel analyst preferred.

• 3-6 months of experience managing DLP fundamentals.

• English communication skills B2+/C1

What could set you apart

• Cyber Security Certifications.

• Familiarity conducting Host and network log analysis.

• Familiarity with SIEM log analysis and obtaining logs through applicable query languages (LINQ, Sentinel, etc.)

• Knowledge of enterprise detection technologies (Email DLP Protection, EDR, IDS/IPS, Firewall, Etc).

• Strong analytical, critical thinking and problem solving skills.

• Ability to work under stress, tight deadlines and effectively in teams.

• Passionate desire for continuous learning of information security and physical security practices.

Primary Location:

CRI-Sabana

Function:

Function - Security Governance and Compliance

Schedule:

Full time