Ares Management
Cybersecurity Operations (Insider Threat Investigations Lead)
Ares Management, New York, New York, us, 10261
Cybersecurity Operations (Insider Threat Investigations Lead)
Join to apply for the
Cybersecurity Operations (Insider Threat Investigations Lead)
role at
Ares Management Cybersecurity Operations (Insider Threat Investigations Lead)
Join to apply for the
Cybersecurity Operations (Insider Threat Investigations Lead)
role at
Ares Management Get AI-powered advice on this job and more exclusive features. Over the last 20 years, Ares’ success has been driven by our people and our culture. Today, our team is guided by our core values – Collaborative, Responsible, Entrepreneurial, Self-Aware, Trustworthy – and our purpose to be a catalyst for shared prosperity and a better future. Through our recruitment, career development and employee-focused programming, we are committed to fostering a welcoming and inclusive work environment where high-performance talent of diverse backgrounds, experiences, and perspectives can build careers within this exciting and growing industry.
Job Description
PRIMARY FUNCTIONS AND ESSENTIAL RESPONSIBILITIES:
Use monitoring and detection platforms to investigate anomalous and potentially risky activity Lead investigations, coordinating support from other teams where required Advise and assist in the onboarding and operationalization of a new Insider Threta tool. Evaluate other tooling as needed. Create standard operating procedures for investigations and cross-functional processes Prepare chain-of-evidence and engage with Legal counsel, if/when required Help establish and maintain investigative standards, workflows, and documentation practices Ensure investigative activities comply with legal, regulatory, and ethical requirements related to privacy, labor law, and corporate governance
General Requirements
Candidate should be willing to work flexible hours when needed due to the nature of insider threats Candidate should be able to work in a hybrid capacity from the local Ares office Strong analytical, critical thinking, and problem-solving skills High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity Ability to interact effectively at all levels with sensitivity to cultural diversity Ability to adapt as the external environment and organization evolves Passionate about Insider Threat and has the inclination to learn current technologies / concepts / improvements Experience with User and Entity Behavior Analytics (UEBA) platforms and methodologies. Ability to develop and tune behavioral baselines and anomaly detection models. Knowledge of cyber security frameworks and attack methodologies Understanding of common Attack methods and their SIEM signatures Understanding of network protocols (TCP/IP stack, SSL/TLS, IPSEC, SMTP/IMAP, FTP, HTTP etc.) Understanding of Operating System, Web Server, database, and Security devices (firewall/NIDS/NIPS) logs and log formats Knowledge of physical security especially as it intersects with cybersecurity Understanding of Identity and Access Management, authentication, and authorization Understanding of cloud identity models, privileged access management, and data exfiltration risks in cloud environments Knowledge of intrusion detection methodologies and techniques for detecting host- and network- based intrusions via intrusion detection technologies Excellent verbal and written English communication skills Ability to prioritize tasks based on the risk they pose to the enterprise Experience working with Python, R, or Jupyter Notebooks for data analysis and threat modeling a plus, but not required. Experience with the following tools would be an advantage, but not essential: SIEM (e.g. Microsoft Sentinel, Splunk, Securonix) EDR/XDR (e.g. SentinelOne, Carbon Black, Crowdstrike Falcon) Vulnerability Management (e.g. Tenable Nessus, Rapid7, Qualys) Attack Surface Management (e.g. Shodan, Randori, HackerOne) Network Detection and Response (e.g. Vectra AI, Darktrace DETECT, ExtraHop Reveal) Insider Threat Management (e.g. DTEX, Proofpoint ITM, Microsoft Insider Risk)
Qualifications
Bachelor’s degree in Computer Science, Information Technology, Business or equivalent discipline or demonstrated requisite years of experience for on-the-job training. Recommended: Professional Certifications such as CISSP, CCSK, GIAC, or OSCP Between 10-15 years of experience in Enterprise Cybersecurity in the financial, government, military, law enforcement or technology sector Previous experience supporting or leading incident response or detection engineering functions Deep understanding of insider threat indicators, data exfiltration patterns, analyzing and correlating activities from different tools, and cybercrime tactics Experience with timely deliveries Experience preferred with threat hunting, incident response, SIEM, Data Loss Prevention and Insider Threat platforms. Experience with offensive security practices (e.g. red teaming, penetration testing) is an advantage Deep understanding and practice of operational security Candidate should be willing to work flexible hours when needed due to the nature of insider threats Candidate should be able to work in a hybrid capacity from the local Ares office Strong analytical, critical thinking, and problem-solving skills High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity Ability to interact effectively at all levels with sensitivity to cultural diversity
Reporting Relationships
Head of Cybersecurity Operations
Compensation
The anticipated base salary range for this position is listed below. Total compensation may also include a discretionary performance-based bonus. Note, the range takes into account a broad spectrum of qualifications, including, but not limited to, years of relevant work experience, education, and other relevant qualifications specific to the role.
$210,000 - $230,000
The firm also offers robust Benefits offerings. Ares U.S. Core Benefits include Comprehensive Medical/Rx, Dental and Vision plans; 401(k) program with company match; Flexible Savings Accounts (FSA); Healthcare Savings Accounts (HSA) with company contribution; Basic and Voluntary Life Insurance; Long-Term Disability (LTD) and Short-Term Disability (STD) insurance; Employee Assistance Program (EAP), and Commuter Benefits plan for parking and transit.
Ares offers a number of additional benefits including access to a world-class medical advisory team, a mental health app that includes coaching, therapy and psychiatry, a mindfulness and wellbeing app, financial wellness benefit that includes access to a financial advisor, new parent leave, reproductive and adoption assistance, emergency backup care, matching gift program, education sponsorship program, and much more.
There is no set deadline to apply for this job opportunity. Applications will be accepted on an ongoing basis until the search is no longer active. Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Engineering and Information Technology Referrals increase your chances of interviewing at Ares Management by 2x Sign in to set job alerts for “Cyber Security Specialist” roles.
New York, NY $83,000.00-$140,000.00 5 days ago New York, NY $90,000.00-$110,000.00 1 month ago New York, NY $104,000.00-$150,000.00 3 days ago Information Security Analyst (Application Security)
New York, NY $100,000.00-$110,000.00 1 hour ago Montvale, NJ $90,000.00-$110,000.00 1 week ago Junior Cybersecurity & Access Control Specialist
New York, NY $50,000.00-$70,000.00 1 week ago Cyber Security Detection Engineer - (Fulltime)100% Remote
New York City Metropolitan Area $80,000.00-$100,000.00 2 weeks ago New York City Metropolitan Area $150,000.00-$170,000.00 7 months ago New York, NY $7,313.00-$11,293.00 2 weeks ago New York, NY $70,000.00-$85,000.00 2 weeks ago New York City Metropolitan Area $99,461.00-$128,329.00 3 days ago Cyber Security Governance Lead - Fulltime - (100 % Remote)
New York City Metropolitan Area $145,000.00-$185,000.00 1 month ago New York, NY $215,000.00-$215,000.00 5 days ago New York City Metropolitan Area $150,000.00-$190,000.00 18 hours ago Cyber Security Engineer Co-op - Spring 2026
New York, NY $135,000.00-$200,000.00 3 days ago Englewood Cliffs, NJ $60,000.00-$90,000.00 2 weeks ago New York County, NY $75.00-$79.44 1 week ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr
Join to apply for the
Cybersecurity Operations (Insider Threat Investigations Lead)
role at
Ares Management Cybersecurity Operations (Insider Threat Investigations Lead)
Join to apply for the
Cybersecurity Operations (Insider Threat Investigations Lead)
role at
Ares Management Get AI-powered advice on this job and more exclusive features. Over the last 20 years, Ares’ success has been driven by our people and our culture. Today, our team is guided by our core values – Collaborative, Responsible, Entrepreneurial, Self-Aware, Trustworthy – and our purpose to be a catalyst for shared prosperity and a better future. Through our recruitment, career development and employee-focused programming, we are committed to fostering a welcoming and inclusive work environment where high-performance talent of diverse backgrounds, experiences, and perspectives can build careers within this exciting and growing industry.
Job Description
PRIMARY FUNCTIONS AND ESSENTIAL RESPONSIBILITIES:
Use monitoring and detection platforms to investigate anomalous and potentially risky activity Lead investigations, coordinating support from other teams where required Advise and assist in the onboarding and operationalization of a new Insider Threta tool. Evaluate other tooling as needed. Create standard operating procedures for investigations and cross-functional processes Prepare chain-of-evidence and engage with Legal counsel, if/when required Help establish and maintain investigative standards, workflows, and documentation practices Ensure investigative activities comply with legal, regulatory, and ethical requirements related to privacy, labor law, and corporate governance
General Requirements
Candidate should be willing to work flexible hours when needed due to the nature of insider threats Candidate should be able to work in a hybrid capacity from the local Ares office Strong analytical, critical thinking, and problem-solving skills High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity Ability to interact effectively at all levels with sensitivity to cultural diversity Ability to adapt as the external environment and organization evolves Passionate about Insider Threat and has the inclination to learn current technologies / concepts / improvements Experience with User and Entity Behavior Analytics (UEBA) platforms and methodologies. Ability to develop and tune behavioral baselines and anomaly detection models. Knowledge of cyber security frameworks and attack methodologies Understanding of common Attack methods and their SIEM signatures Understanding of network protocols (TCP/IP stack, SSL/TLS, IPSEC, SMTP/IMAP, FTP, HTTP etc.) Understanding of Operating System, Web Server, database, and Security devices (firewall/NIDS/NIPS) logs and log formats Knowledge of physical security especially as it intersects with cybersecurity Understanding of Identity and Access Management, authentication, and authorization Understanding of cloud identity models, privileged access management, and data exfiltration risks in cloud environments Knowledge of intrusion detection methodologies and techniques for detecting host- and network- based intrusions via intrusion detection technologies Excellent verbal and written English communication skills Ability to prioritize tasks based on the risk they pose to the enterprise Experience working with Python, R, or Jupyter Notebooks for data analysis and threat modeling a plus, but not required. Experience with the following tools would be an advantage, but not essential: SIEM (e.g. Microsoft Sentinel, Splunk, Securonix) EDR/XDR (e.g. SentinelOne, Carbon Black, Crowdstrike Falcon) Vulnerability Management (e.g. Tenable Nessus, Rapid7, Qualys) Attack Surface Management (e.g. Shodan, Randori, HackerOne) Network Detection and Response (e.g. Vectra AI, Darktrace DETECT, ExtraHop Reveal) Insider Threat Management (e.g. DTEX, Proofpoint ITM, Microsoft Insider Risk)
Qualifications
Bachelor’s degree in Computer Science, Information Technology, Business or equivalent discipline or demonstrated requisite years of experience for on-the-job training. Recommended: Professional Certifications such as CISSP, CCSK, GIAC, or OSCP Between 10-15 years of experience in Enterprise Cybersecurity in the financial, government, military, law enforcement or technology sector Previous experience supporting or leading incident response or detection engineering functions Deep understanding of insider threat indicators, data exfiltration patterns, analyzing and correlating activities from different tools, and cybercrime tactics Experience with timely deliveries Experience preferred with threat hunting, incident response, SIEM, Data Loss Prevention and Insider Threat platforms. Experience with offensive security practices (e.g. red teaming, penetration testing) is an advantage Deep understanding and practice of operational security Candidate should be willing to work flexible hours when needed due to the nature of insider threats Candidate should be able to work in a hybrid capacity from the local Ares office Strong analytical, critical thinking, and problem-solving skills High level of personal integrity, and the ability to professionally handle confidential matters and show an appropriate level of judgment and maturity Ability to interact effectively at all levels with sensitivity to cultural diversity
Reporting Relationships
Head of Cybersecurity Operations
Compensation
The anticipated base salary range for this position is listed below. Total compensation may also include a discretionary performance-based bonus. Note, the range takes into account a broad spectrum of qualifications, including, but not limited to, years of relevant work experience, education, and other relevant qualifications specific to the role.
$210,000 - $230,000
The firm also offers robust Benefits offerings. Ares U.S. Core Benefits include Comprehensive Medical/Rx, Dental and Vision plans; 401(k) program with company match; Flexible Savings Accounts (FSA); Healthcare Savings Accounts (HSA) with company contribution; Basic and Voluntary Life Insurance; Long-Term Disability (LTD) and Short-Term Disability (STD) insurance; Employee Assistance Program (EAP), and Commuter Benefits plan for parking and transit.
Ares offers a number of additional benefits including access to a world-class medical advisory team, a mental health app that includes coaching, therapy and psychiatry, a mindfulness and wellbeing app, financial wellness benefit that includes access to a financial advisor, new parent leave, reproductive and adoption assistance, emergency backup care, matching gift program, education sponsorship program, and much more.
There is no set deadline to apply for this job opportunity. Applications will be accepted on an ongoing basis until the search is no longer active. Seniority level
Seniority level Mid-Senior level Employment type
Employment type Full-time Job function
Job function Engineering and Information Technology Referrals increase your chances of interviewing at Ares Management by 2x Sign in to set job alerts for “Cyber Security Specialist” roles.
New York, NY $83,000.00-$140,000.00 5 days ago New York, NY $90,000.00-$110,000.00 1 month ago New York, NY $104,000.00-$150,000.00 3 days ago Information Security Analyst (Application Security)
New York, NY $100,000.00-$110,000.00 1 hour ago Montvale, NJ $90,000.00-$110,000.00 1 week ago Junior Cybersecurity & Access Control Specialist
New York, NY $50,000.00-$70,000.00 1 week ago Cyber Security Detection Engineer - (Fulltime)100% Remote
New York City Metropolitan Area $80,000.00-$100,000.00 2 weeks ago New York City Metropolitan Area $150,000.00-$170,000.00 7 months ago New York, NY $7,313.00-$11,293.00 2 weeks ago New York, NY $70,000.00-$85,000.00 2 weeks ago New York City Metropolitan Area $99,461.00-$128,329.00 3 days ago Cyber Security Governance Lead - Fulltime - (100 % Remote)
New York City Metropolitan Area $145,000.00-$185,000.00 1 month ago New York, NY $215,000.00-$215,000.00 5 days ago New York City Metropolitan Area $150,000.00-$190,000.00 18 hours ago Cyber Security Engineer Co-op - Spring 2026
New York, NY $135,000.00-$200,000.00 3 days ago Englewood Cliffs, NJ $60,000.00-$90,000.00 2 weeks ago New York County, NY $75.00-$79.44 1 week ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.
#J-18808-Ljbffr