Insider Threat Program Manager

Learn what makes QTS a unique place to grow your career!

The Insider Threat Program Manager will assist the QTS Insider Threat HUB in maturing the program, by developing the necessary framework, governance, and workflows. The primary responsibility of this role will be the development of relationships with stakeholders to gain access to data needed to enrich the company’s threat education, awareness, and communication.  The focus of the program will be to deter, detect, and mitigate all insider threats.  This role will also be responsible for performing case management, investigations, and analysis with the goal of predicting, detecting, and responding to insider threats and incidents.
This role is responsible for identifying potential threats against the company and its workforce from internal and external actors and developing strategies to mitigate those threats to protect the company’s reputation, workforce, clients, and assets.
The Insider Threat Program Manager will be positioned to develop and deliver cutting-edge enterprise-wide solutions to detect, analyze and mitigate insider risks. This role will oversee the triage of insider events and risk analysis by a team of analysts. This role will need to work closely with various partners within our firm including HR, Legal, Cybersecurity, and Technology, as well as external parties. 
RESPONSIBILITIES, other duties may be assigned.
•    Work closely with IT, HR, legal, and compliance teams to create a multidisciplinary approach to insider threat management
•    Gather, review, assess, and respond to information derived from HR, Legal, Cyber, and Security databases to identify insider threat concerns
•    Lead or assist in investigations and provide in-depth assessments of identified insider risks and threats, coordinating with relevant stakeholders to ensure appropriate actions are taken
•    Partner with internal technical engineers to apply innovative techniques to detect suspicious behavior and potential insider threats 
•    Coordinate response activities with various stakeholders for confirmed incidents and recommend mitigation strategies
•    Develop and deliver training and awareness programs to educate employees on recognizing and reporting suspicious activities
•    Facilitate referral of anomalous activity for investigation, escalation to other SMEs, and cross-functional coordination of mitigation strategies
•    Provide SME-level support for insider threat matters leveraging deep knowledge of insider risk and counterintelligence
•    Lead the organization's efforts in identifying, mitigating, and managing insider threats.
•    Develop and implement comprehensive strategies to safeguard sensitive information and maintain a secure work environment
•    Communicate complex problem sets in succinct and clear manner that is understandable to a variety of audiences across the company, including to Senior Leadership
•    Manage program governance documentation, including definition of roles and responsibilities and ensure compliance with the control environment
•    Work and collaborate with critical stakeholders within the company, financial sector, across other industries and the U.S. Government, to stay abreast of industry trends and best practices 
•    Design, implement, and manage a robust insider threat program that aligns with organizational goals and industry best practices
•    Conduct risk assessments to identify potential insider threats and vulnerabilities within the organization
•    Provide regular updates and reports to senior management on the status of the Insider Threat Program, including metrics and incident trends.
•    Stay informed about emerging threats, industry trends, and best practices to continuously improve the program.
•    Travel when needed domestically or overseas in support of specific incidents or investigations
•    Performs other duties as assigned
 

BASIC QUALIFICATIONS

• 10 years of relevant work experience with a Bachelor’s Degree or 8 or more years of experience with an Advanced Degree (e.g. Masters, MBA, JD, MD)
• 8 years or more relevant counterintelligence, insider threat, or investigative experience
• Deep knowledge of insider threat indicators, such as those associated with espionage, theft of intellectual property, sabotage, workplace violence, and fraud
• Familiarity with the Intelligence cycle along with adversarial and insider threat tactics, techniques, and procedures
• Demonstrated success in working closely with a range of company partners, to include Security, Legal, HR, and Business Continuity, as well as external partners such as industry peers and Law Enforcement
• Experience conducting end-to-end investigations, including collecting and analyzing qualitative and quantitative data, and handling sensitive materials
• Direct experience serving as an insider threat/risk program manager or senior analyst in industry or government assessing complex threats; scoping and developing mitigation strategies in coordination with cross-disciplinary teams
• Experience conducting or providing analytical support to insider threat/risk, counterintelligence, criminal, cybersecurity, and/or other types of investigations
• Proven ability to strategize and demonstrate ‘out of the box’ thinking and creativity to solve complex problems and deliver practical and effective results
• Experience building successful sustainable relationships across lines of business and with technical partners to develop solutions
• Very strong oral and written communication skills, with focus on attention to detail; experience communicating with senior leadership levels U.S.
• Citizenship for this position is required by law due to federal customer contracts
• Ability to obtain a U.S. Top Secret Security Clearance

PREFERRED QUALIFICATIONS

• Insider Threat specific certifications such as Certified Counter-Insider Threat Professional-Fundamentals (CCITP-F), Certified Counter-Insider Threat Professional-Analysis (CCITP-A), the NITTF Hub Operations Course, or CERT Insider Threat Program Manager (ITPM)
• Knowledge of incident response, crisis management, data management best practices, and cyber security trends
• Behavioral Science/Behavioral Analysis/Behavioral Threat Assessment experience or training
• Experience with User Activity Monitoring (UAM), User Behavior Analytics (UBA) principles and tools, rules and policy engines, other insider threat technical solutions and data analytics platforms

KNOWLEDGE, SKILLS, AND ABILITIES

• Proficient with computer skills including Microsoft Office suite
• Ability to communicate effectively, both verbally and in writing; for the purpose of public interaction and report writing
• Ability to handle typical emergency and crisis situations efficiently and effectively
• Strong analytical and problem-solving skills.
• Excellent communication and interpersonal skills, with the ability to engage and influence stakeholders at all levels.
• Familiarity with regulatory requirements and compliance frameworks (e.g., NIST, GDPR, HIPAA).
• May require 24x7x365 on call responsibilities.

TOTAL REWARDS

• This role is also eligible for a competitive benefits package that includes: medical, dental, vision, life, and disability insurance; 401(k) retirement plan; flexible spending and HSA accounts; paid holidays; paid time off; paid volunteer days; employee assistance program; tuition assistance; parental leave; military leave assistance; QTS scholarship for dependents; wellness program, and other company benefits.
• This position is Bonus eligible.

SKILLS (FROM SKILLS LIBRARY)

• Computer Skills
• Verbal & Written Communication Skills
• Security Management
• Proficient with Microsoft Office tools

We conform to all the laws, statutes, and regulations concerning equal employment opportunities and affirmative action.  We strongly encourage women, minorities, individuals with disabilities and veterans to apply to all of our job openings.  We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, or national origin, age, disability status, Genetic Information & Testing, Family & Medical Leave, protected veteran status, or any other characteristic protected by law.  We prohibit retaliation against individuals who bring forth any complaint, orally or in writing, to the employer or the government, or against any individuals who assist or participate in the investigation of any complaint or discrimination claim.

The "Know Your Rights" Poster is included here:

Know Your Rights (English)

Know Your Rights (Spanish)

The pay transparency policy is available here:

Pay Transparency Nondiscrimination Poster-Formatted

QTS is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation because of a disability for any part of the employment process, please send an e-mail to [email protected] and let us know the nature of your request and your contact information.