Insider Threat Senior Associate – Acquisition Cybersecurity Team
On-site · New York City, New York, United States
Job Summary
Insider Threat Senior Associate on the Acquisition Cybersecurity Team responsible for detecting, investigating, and responding to insider threat activity affecting acquisitions. Duties include monitoring user activity and security infrastructure, conducting in-depth investigations with log and network trace analysis, triaging alerts, creating and maintaining detection playbooks, developing insider threat detection strategies aligned with best practices and regulatory requirements, educating employees on security best practices, producing intelligence reports for acquisitions, and collaborating with cross-functional teams to implement policies and improvements. The role requires ownership of investigations, escalation support for analysts, and weekend/on-site attendance per in-office policies.
Required Qualifications
- Experience in cybersecurity operations with a focus on insider threat detection, incident response, or vulnerability management
- Proficiency in user activity monitoring, network trace analysis, log analysis, and security investigations
- Ability to script for task automation, implement controls, and manipulate data
- Strong understanding of security protocols, authentication, authorization, and security architecture principles
- Hands-on experience with security tools such as SIEM, UEBA, IDS, EDR, and email security solutions
- Knowledge of adversary tactics, insider threat indicators, and detection methods
- Familiarity with enterprise security technologies and both Windows and Linux operating systems
- Ability to identify signs of compromise and anomalous behavior across platforms
- Excellent communication skills for presenting risks and findings to technical and non-technical audiences
- Experience with a range of cybersecurity tools, including XDR and UEBA platforms
- Experience reviewing vulnerabilities and the effectiveness of mitigation measures
- Basic understanding of cloud architecture and attacker techniques in cloud environments
- Ability to manage fluctuating workloads and conflicting priorities
- Project management experience with a track record of driving projects and documenting progress
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.