Insider Threat Program Lead (Cybersecurity)

TL;DR

Insider Threat Program Lead (Cybersecurity): Designing and overseeing insider threat detection and investigative capabilities for a federal enterprise environment with an accent on behavioral analytics and user activity monitoring. Focus on mitigating malicious or negligent insider activity through the integration of UEBA, SIEM, and DLP telemetry.

Location: Federal enterprise environment (USA)

Company

hirify.global Incorporated provides specialized cybersecurity and software solutions for federal and highly regulated environments.

What you will do

• Lead insider threat operations, behavioral analytics, and investigative support activities.
• Develop detection methodologies and use cases leveraging UEBA, SIEM, EDR, and DLP platforms.
• Coordinate with SOC, CTI, HR, legal, and counterintelligence stakeholders to mitigate risks.
• Conduct investigations into data exfiltration, privilege misuse, credential abuse, and policy violations.
• Establish reporting, escalation, and case management procedures.
• Develop threat assessments, risk-based prioritization, and executive dashboards.

Requirements

• 10+ years of experience in cybersecurity, counterintelligence, or investigations.
• 5+ years of experience supporting insider threat or behavioral analytics programs.
• Experience supporting federal agencies or classified environments.
• Proficiency with UEBA, SIEM analytics, DLP, and identity telemetry.
• Strong knowledge of NIST insider threat guidance and digital forensics methodologies.
• Excellent briefing and stakeholder coordination skills.

Nice to have

• Certifications: CISSP, CISM, GCFE, GCFA, or CIPP.
• Specialized certifications in Insider Threat Program Management or fraud investigation.