Go Enterprise, contact us anytime: email, phone, or chat

  • Apply now

    Insider Threat Analyst

    TransUnion

    The Global Insider Threat Program (GITP) User & Entity Behavior Analytics (UEBA) Analyst is a cybersecurity professional with experience identifying threats, vulnerabilities and exploitations, processing, analyzing and operationalizing cybersecurity intelligence as well as other threat indicators in order to enhance detection and prevention of insider threats within TransUnion’s environment. In addition to these technical proficiencies, the GITP UEBA Analyst demonstrates excellent communication skills to include the ability to explain technical data relevance succinctly to the GITP Director and other TransUnion senior leadership.

    • 2020-11-11
    • svelasco
    • Chicago, IL, USA

Description

This role will play a key part in developing and utilizing GITP’s risk-based scoring capability

Collaborate with UEBA technical support and cybersecurity engineers to best configure UEBA tools in order to map the company based on access and behavior

Support all GITP analytic and interpretive cybersecurity intelligence efforts in order to identify, monitor or remediate Tactics, Techniques, and Procedures used by potential or actual insider threat

Utilize tools and processes for sharing intelligence information and supporting GITP investigations

Provide actionable insights, guidance and subject matter expertise to the GITP UEBA Lead and GITP Director

Utilize cybersecurity intelligence to improve hunt and lead generation efforts through threat modeling

Participate in proactive hunting exercises, retrospective searching for known indicators of malicious activity

Coordinate with Data Loss Prevention, security operations and incident response staff to tune and improve detection capabilities or to aid in investigations or respond to incidents

Responsibilities

  • BS or BA degree preferably in computer or security related field or any combination of equivalent education and experience
  • Previous experience in a SOC environment
  • Excellent technical capabilities including an understanding of enterprise security network architecture, user and entity behavior analytics and other risk-based security operations
  • An analytical mindset coupled with a proven ability to examine and utilize raw data and create refined timely intelligence relevant to Insider Threat operations
  • Willingness to acquire in-depth knowledge of network and host security technologies and products
  • Strong written and verbal communication skills
  • Passionate about innovation and enjoys the challenges of creating something new
  • Stays current with evolving technologies via formal training and self-directed education
  • Any Security related certification(s)
  • An Understanding of the intelligence cycle
  • SANS SEC460: Threat and Vulnerability Assessment
  • SANS SEC487: Open-Source Intelligence Gathering and Analysis
  • SANS FOR578: Cyber Threat Intelligence
  • Any other Insider Threat related certification, procedure knowledge, experience

Details

  • Travel No travel
  • Incentives Not provided
  • Clearance & Citizenship U.S. Citizenship
  • Remote Work Full remote okay
  • Education Bachelors Degree
  • Salary Range 110-130K

Join NinjaJobs!

Registered users get the benefit of full listing views, searches, posting options and more!

Company Ratings powered by

  • 3.9

    Overall Rating - Satisfied

  • Culture and Values 4.2
  • Work/Life Balance 4.1
  • Senior Management 3.9
  • Comp and Benefits 4.1
  • Career Opportunities 3.8