Randstad USA
IT - Cyber Security Analyst - Senior
Randstad USA, San Francisco, California, United States, 94199
Overview
Insider Threat Analyst - Contingent Worker Backfill - 6 months. A Senior Insider Threat Analyst to lead the implementation of a new insider threat detection tool and build a robust insider threat operations program from the ground up. The role focuses on identifying, assessing, and mitigating insider risks, including data loss, intellectual property theft, and malicious activities. The position offers a hybrid/flexible schedule with in-office expectation of 3 or more days per week and flexibility to work outside the office location for other days. Location: San Francisco, CA 94105, California Job type: Contract Salary: $53.31 - 58.31 per hour Work hours: Education: Bachelors Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status. At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com. Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. Randstad Digital offers a comprehensive benefits package, including medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility). This posting is open for thirty (30) days. Qualified applicants in San Francisco with criminal histories will be considered for employment in accordance with the San Francisco Fair Chance Ordinance. Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance. Required qualifications: Bachelor\'s degree in cybersecurity, information technology, or a related field; advanced degree preferred. 7+ years of experience in cybersecurity, with a focus on insider threat analysis and program development. Strong understanding of UEBA tools and technology, digital forensics, and data loss prevention (DLP) strategies. Proven expertise in deploying and managing insider threat tools specifically with DTEx InTERCEPT. Experience developing policies, procedures, and workflows for insider threat management. Familiarity with SIEM platforms, data analytics tools, and insider threat indicators and detection methods. Experience with scripting and automation (e.g., BigQuery, Python, PowerShell) is a plus. Preferred qualifications: Bachelor\'s degree in computer science or related field. Relevant certifications such as CISSP, CISM, CISA, GIAC, or insider threat-specific credentials (e.g., Certified Insider Threat Program Manager). Knowledge of legal and regulatory requirements surrounding insider threat and data protection (e.g., GDPR, CCPA, etc.). Key Competencies: Strong analytical and critical thinking skills. Strategic mindset with the ability to design and operationalize new programs. Detail-oriented, self-driven, and capable of working independently in a fast-paced environment. Responsibilities
Program Development:
Design and mature a comprehensive insider threat program aligned with organizational goals and regulatory requirements. Develop policies, processes, and workflows for detecting, investigating, and mitigating insider threats. Define metrics and reporting frameworks to measure the effectiveness of the program. Tool Configuration and Tuning:
Lead the configuration and tuning of a new insider threat detection tool. Ensure seamless integration with existing security systems, such as SIEM and SOAR solutions. Collaborate with vendors and IT teams to customize the tool for organization-specific use cases. Threat Detection and Analysis:
Monitor user and entity behavior analytics to identify suspicious activities and policy violations. Conduct in-depth investigations into insider threat incidents, working closely with cybersecurity, HR, and legal teams. Refine detection capabilities by creating and optimizing rules, alerts, and risk scoring models. Collaboration and Training:
Act as a subject matter expert on insider threat risks and tools. Train and mentor junior analysts and cross-functional stakeholders on insider threat detection techniques and tool usage. Incident Response:
Support the investigation and resolution of insider threat incidents, ensuring thorough documentation and root-cause analysis. Develop and execute response playbooks for various insider threat scenarios. Qualifications
Required qualifications:
Bachelor\'s degree in cybersecurity, information technology, or a related field; advanced degree preferred. 7+ years of experience in cybersecurity, with a focus on insider threat analysis and program development. Strong understanding of UEBA tools and technology, digital forensics, and data loss prevention (DLP) strategies. Proven expertise in deploying and managing insider threat tools specifically with DTEx InTERCEPT. Experience developing policies, procedures, and workflows for insider threat management. Familiarity with SIEM platforms, data analytics tools, and insider threat indicators and detection methods. Experience with scripting and automation (e.g., BigQuery, Python, PowerShell) is a plus. Preferred qualifications:
Bachelor\'s degree in computer science or related field. Relevant certifications such as CISSP, CISM, CISA, GIAC, or insider threat-specific credentials (e.g., Certified Insider Threat Program Manager). Knowledge of legal and regulatory requirements surrounding insider threat and data protection (e.g., GDPR, CCPA, etc.). Notes:
We will consider for employment all qualified Applicants, including those with criminal histories, in a manner consistent with applicable state and local laws.
#J-18808-Ljbffr
Insider Threat Analyst - Contingent Worker Backfill - 6 months. A Senior Insider Threat Analyst to lead the implementation of a new insider threat detection tool and build a robust insider threat operations program from the ground up. The role focuses on identifying, assessing, and mitigating insider risks, including data loss, intellectual property theft, and malicious activities. The position offers a hybrid/flexible schedule with in-office expectation of 3 or more days per week and flexibility to work outside the office location for other days. Location: San Francisco, CA 94105, California Job type: Contract Salary: $53.31 - 58.31 per hour Work hours: Education: Bachelors Equal Opportunity Employer: Race, Color, Religion, Sex, Sexual Orientation, Gender Identity, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status. At Randstad Digital, we welcome people of all abilities and want to ensure that our hiring and interview process meets the needs of all applicants. If you require a reasonable accommodation to make your application or interview experience a great one, please contact HRsupport@randstadusa.com. Pay offered to a successful candidate will be based on several factors including the candidate's education, work experience, work location, specific job duties, certifications, etc. Randstad Digital offers a comprehensive benefits package, including medical, prescription, dental, vision, AD&D, and life insurance offerings, short-term disability, and a 401K plan (all benefits are based on eligibility). This posting is open for thirty (30) days. Qualified applicants in San Francisco with criminal histories will be considered for employment in accordance with the San Francisco Fair Chance Ordinance. Qualified applicants with arrest or conviction records will be considered for employment in accordance with the Los Angeles County Fair Chance Ordinance for Employers and the California Fair Chance Act. We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles' Fair Chance Initiative for Hiring Ordinance. Required qualifications: Bachelor\'s degree in cybersecurity, information technology, or a related field; advanced degree preferred. 7+ years of experience in cybersecurity, with a focus on insider threat analysis and program development. Strong understanding of UEBA tools and technology, digital forensics, and data loss prevention (DLP) strategies. Proven expertise in deploying and managing insider threat tools specifically with DTEx InTERCEPT. Experience developing policies, procedures, and workflows for insider threat management. Familiarity with SIEM platforms, data analytics tools, and insider threat indicators and detection methods. Experience with scripting and automation (e.g., BigQuery, Python, PowerShell) is a plus. Preferred qualifications: Bachelor\'s degree in computer science or related field. Relevant certifications such as CISSP, CISM, CISA, GIAC, or insider threat-specific credentials (e.g., Certified Insider Threat Program Manager). Knowledge of legal and regulatory requirements surrounding insider threat and data protection (e.g., GDPR, CCPA, etc.). Key Competencies: Strong analytical and critical thinking skills. Strategic mindset with the ability to design and operationalize new programs. Detail-oriented, self-driven, and capable of working independently in a fast-paced environment. Responsibilities
Program Development:
Design and mature a comprehensive insider threat program aligned with organizational goals and regulatory requirements. Develop policies, processes, and workflows for detecting, investigating, and mitigating insider threats. Define metrics and reporting frameworks to measure the effectiveness of the program. Tool Configuration and Tuning:
Lead the configuration and tuning of a new insider threat detection tool. Ensure seamless integration with existing security systems, such as SIEM and SOAR solutions. Collaborate with vendors and IT teams to customize the tool for organization-specific use cases. Threat Detection and Analysis:
Monitor user and entity behavior analytics to identify suspicious activities and policy violations. Conduct in-depth investigations into insider threat incidents, working closely with cybersecurity, HR, and legal teams. Refine detection capabilities by creating and optimizing rules, alerts, and risk scoring models. Collaboration and Training:
Act as a subject matter expert on insider threat risks and tools. Train and mentor junior analysts and cross-functional stakeholders on insider threat detection techniques and tool usage. Incident Response:
Support the investigation and resolution of insider threat incidents, ensuring thorough documentation and root-cause analysis. Develop and execute response playbooks for various insider threat scenarios. Qualifications
Required qualifications:
Bachelor\'s degree in cybersecurity, information technology, or a related field; advanced degree preferred. 7+ years of experience in cybersecurity, with a focus on insider threat analysis and program development. Strong understanding of UEBA tools and technology, digital forensics, and data loss prevention (DLP) strategies. Proven expertise in deploying and managing insider threat tools specifically with DTEx InTERCEPT. Experience developing policies, procedures, and workflows for insider threat management. Familiarity with SIEM platforms, data analytics tools, and insider threat indicators and detection methods. Experience with scripting and automation (e.g., BigQuery, Python, PowerShell) is a plus. Preferred qualifications:
Bachelor\'s degree in computer science or related field. Relevant certifications such as CISSP, CISM, CISA, GIAC, or insider threat-specific credentials (e.g., Certified Insider Threat Program Manager). Knowledge of legal and regulatory requirements surrounding insider threat and data protection (e.g., GDPR, CCPA, etc.). Notes:
We will consider for employment all qualified Applicants, including those with criminal histories, in a manner consistent with applicable state and local laws.
#J-18808-Ljbffr