Cyber Insider Threat Analyst III (Cybersecurity)

TL;DR

Cyber Insider Threat Analyst III (Cybersecurity): Conducting cyber insider threat monitoring to identify unauthorized activities and data exfiltration with an accent on User Activity Monitoring (UAM) and User Behavior Analytics (UBA). Focus on coordinating complex investigations with legal and HR teams and producing detailed incident reports.

Location: Hybrid, Springfield, VA. Must possess active Top Secret / SCI clearance to start

Company

A defense contractor providing adaptive innovation and advanced technologies to support national security and critical civilian missions.

What you will do

• Perform ongoing monitoring to identify insider threats, including data exfiltration, unauthorized access, and malicious behaviors.
• Serve as a Subject Matter Expert (SME) in User Activity Monitoring (UAM) and User Behavior Analytics (UBA).
• Coordinate and report investigations in collaboration with legal, HR, and law enforcement teams.
• Consult with Cyber Threat Intelligence, Hunt Forensics, and Malware Reverse Engineering teams to mature insider threat investigations.
• Create comprehensive incident reports detailing identification methods, analysis, and conclusions.

Requirements

• Minimum 5 years of professional experience leading the cyber component of an insider threat program.
• In-depth understanding of UAM and UBA principles, methodologies, and best practices.
• Active Top Secret / SCI clearance is mandatory to start.
• Bachelor's degree in Computer Science, Engineering, STEM, Information Technology, or equivalent Cybersecurity certificates.

Nice to have

• Counter-intelligence experience.
• Digital Forensics and related certifications.
• DCSA Insider Threat Hub certifications.

Culture & Benefits

• Values-driven culture based on the "6Hs": Happy, Helpful, Honest, Humble, Hungry, and Hustle.
• Supportive team environment emphasizing collaboration and mutual respect.
• Mission-critical work focusing on protecting national security interests.