Talent.com
Insider Risk Engineer - Cyber

Insider Risk Engineer - Cyber

Software ResourcesPhoenix, AZ, United States
12 hours ago
Job type
  • Permanent
Job description

Software Resources has an immediate, direct hire job opportunity for an Insider Risk Engineer - Cyber with a major corporation in Phoenix, AZ.

4 days per week on-site, Friday Remote.

Must Haves :

  • Insider risk experience
  • User Entity Behavior Analytics (UEBA)
  • Must be able to integrate API with the tool and build the API
  • Cyber Security experience and development expertise.
  • C# .net, Python, API Development
  • CISSP CISM Desired but not required
  • No front End
  • More API Backend candidate.
  • UEBA Tools :

Gurucul

  • Securonix
  • Exabeam
  • Teramind
  • Splunk UBA
  • Microsoft Sentinel
  • Rapid7
  • LogRhythm
  • OpenUBA
  • Graylog
  • Wazuh
  • Apache Metron
  • HELK
  • Apache Spot
  • CrowdStrike Falcon
  • Palo Alto Cortex
  • ActivTrak
  • XSOAR
  • SIEM
  • SEIM
  • XSIAM

    • As a Insider Risk Engineer - Cyber you'll work both independently and as part of a cohesive team to manage and provide ownership of innovative threat detection, security audit, and logging solutions. You'll take the lead to communicate, collaborate and justify cyber recommendations to a broad base of stakeholders throughout the IT, Cyber and Audit department. Our Insider Risk Program is a strategic initiative within the Security Risk & Compliance function, supporting the bank's growth into a Large Financial Institution. It focuses on identifying, preventing, and mitigating risks to the bank and its customers that may arise from inadvertent or intentional actions by employees, contractors, or third parties.

    As the Insider Risk Engineer, you'll be a key member of a multidisciplinary team that partners closely with Data Security, the Security Monitoring Center, Privacy, Legal, and HR, among others. You'll manage the full stack (front end and back end) of applications utilized to help prevent, detect and respond to insider risk events of interest. You'll own the review and development of new processes and technologies to enhance the program's ongoing maturity. Additionally, you'll lead the continuous review and improvement of the defense, auditing, access standards, tactics, and techniques to meet regulatory guidelines as well as owning the resiliency of insider risk applications and platforms via routine disaster recovery exercises. You'll partner with vendors routinely to optimize insider risk products, as well as ensure costs / licenses do not exceed expectations, while maintaining capacity planning to ensure quality and value delivery of insider risk program objectives.

  • Proactively identify and fix issues to improve backend service scalability, resiliency, and fault tolerance. Respond to insider risk events of interest in a timely manner alongside team members and key stakeholders. Respond to audit inquiries and ensure processes and procedures are within regulatory guidelines.
  • Foster the highest level of engineering practices and follow relevant company procedures, in addition to being held accountable for relevant documentation.
  • Design and implement advanced detection logic to surface subtle behavioral anomalies indicative of insider risk across diverse data sources.
  • Continuously refine and tune Insider Risk policies to reduce false positives and improve signal-to-noise ratio in alerting workflows.
  • Engineer scalable data pipelines to ingest, normalize, and correlate identity, access, and activity data for risk modeling.
  • Collaborate with security monitoring, threat intelligence and modeling teams to incorporate contextual enrichment and behavioral baselines into Insider Risk analytics.
  • Prototype and evaluate emerging technologies (e.g., ML models, graph analytics) to enhance Insider Risk detection capabilities.
  • Revisit Insider Risk tooling architecture design routinely with vendor and peers to either or all : minimize cost, optimize performance, scale, and meet new requirements.

    • What You'll Need :

  • 6+ years of related experience in IT Security, IT App Support, IT Development or similar field.
  • Bachelor's degree in related field required.
  • Previous leadership experience preferred.
  • Advanced knowledge of general Financial Services or Banking is preferred.
  • Advanced to expert experience with and knowledge of Linux, Python, PowerShell, SIEM and Bash. Solid understanding of authentication protocols SAML, SSO, and LDAP. Solid understanding of concepts regarding SIEM, SOAR, Firewall, Proxies, SSL / TLS, Secure Mail Gateways, Application Firewalls, NAC, Vulnerability Scanners, and EDR.
  • Advanced experience with logging infrastructure concepts : syslog; log parsing; log de-duping; methods for log pulling; RFC 5424; CEF Format; JSON; key value pair format; log enrichment; log maintenance; log troubleshooting.
  • Solid understanding of load balancers, DNS, SMTP, etc. for troubleshooting application functionality.
  • Advanced experience of NIST, MITRE and Administration of either or all of an IT Automation platform, SOAR, Firewall, IAM platform, SIEM, cloud cyber defense platform etc.
  • Hands-on experience deploying and operating a User & Entity Behavioral Analytics (UEBA) platform in a mid-large sized corporation, preferably in Financial Services.
  • Expertise building Application Program Interfaces (APIs) from source systems of record to bring technical and non-technical indicators into the UEBA.
  • Intermediate - Advanced ability to query and extract data from security monitoring systems (e.g., SIEM, EDR, NDR, etc.) for performing Insider Risk analysis.
  • Experience correlating UEBA signals with identity, access, and data movement logs to detect anomalous behavior.
  • Familiarity with government and industry best practice frameworks for managing Insider Risk (e.g., Carnegie Mellon, SIFMA, MITRE, NIST, etc.).
  • Ability to translate behavioral indicators into risk scoring models and escalation thresholds.
  • Experience working cross-functionally with Legal, HR, and Compliance teams to investigate and respond to Insider Risk cases.
  • Advanced speaking and writing communication skills.

    • Benefits you'll love :

    We offer all the important things you'd want - like competitive salaries, an ownership stake in the company, medical and dental insurance, time off, a great 401k matching program, tuition assistance program, an employee volunteer program, and a wellness program. In addition, you'll have the opportunity to bolster your business knowledge, learning the ins and outs of how successful companies operate and manage their finances, giving you invaluable hands-on experience to help grow your career!

    If this position fits interests you, we encourage you to apply. You can view all our job openings at Software Resources Careers.

    Create a job alert for this search

    Insider • Phoenix, AZ, United States

    Related jobs
    • Promoted
    Offensive Cybersecurity Engineer (Hardware)

    Offensive Cybersecurity Engineer (Hardware)

    ViasatTempe, AZ, United States
    Full-time
    At Viasat, we're on a mission to deliver connections with the capacity to change the world.For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries arou...Show moreLast updated: 12 days ago
    • Promoted
    Offensive Cybersecurity Engineer (Web and Cloud)

    Offensive Cybersecurity Engineer (Web and Cloud)

    ViasatTempe, AZ, United States
    Full-time
    At Viasat, we're on a mission to deliver connections with the capacity to change the world.For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries arou...Show moreLast updated: 12 days ago
    • Promoted
    Cyber - Digital Identity SME - Senior - Consulting - Location OPEN

    Cyber - Digital Identity SME - Senior - Consulting - Location OPEN

    EYPhoenix, AZ, United States
    Full-time
    At EY, we're all in to shape your future with confidence.We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.Join EY and help ...Show moreLast updated: 1 day ago
    • Promoted
    Lead Adversarial Security Engineer

    Lead Adversarial Security Engineer

    TrellixPhoenix, AZ, United States
    Full-time
    Lead Adversarial Security Engineer.Trellix, the trusted CISO ally, is redefining the future of cybersecurity and soulful work. Our comprehensive, GenAI-powered platform helps organizations confronte...Show moreLast updated: 1 day ago
    • Promoted
    Remote Corporate Development Associate - AI Trainer ($50-$60 / hour)

    Remote Corporate Development Associate - AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 10 days ago
    • Promoted
    Cyber Security Risk Management Engineer

    Cyber Security Risk Management Engineer

    ViasatTempe, AZ, United States
    Full-time
    At Viasat, we're on a mission to deliver connections with the capacity to change the world.For more than 35 years, Viasat has helped shape how consumers, businesses, governments and militaries arou...Show moreLast updated: 30+ days ago
    • Promoted
    Cyber - Digital Identity SME - Senior - Consulting - Location OPEN 1

    Cyber - Digital Identity SME - Senior - Consulting - Location OPEN 1

    EYPhoenix, AZ, United States
    Full-time
    At EY, we're all in to shape your future with confidence.We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go.Join EY and help ...Show moreLast updated: 1 day ago
    • Promoted
    Remote Senior FP&A Analyst - AI Trainer ($50-$60 / hour)

    Remote Senior FP&A Analyst - AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 10 days ago
    • Promoted
    • New!
    Lead Cybersecurity Engineer

    Lead Cybersecurity Engineer

    Dutch Bros.Tempe, AZ, United States
    Full-time
    It's fun to work in a company where people truly believe in what they are doing.At Dutch Bros Coffee, we are more than just a coffee company. We are a fun-loving, mind-blowing company that makes a d...Show moreLast updated: 16 hours ago
    • Promoted
    Sr. Cybersecurity & Compliance Engineer

    Sr. Cybersecurity & Compliance Engineer

    Motorola SolutionsPhoenix, AZ, United States
    Full-time
    Motorola Solutions is a global company focused on people and safety.Our critical communications, video security and command center technologies support public safety agencies and enterprises, enabl...Show moreLast updated: 11 days ago
    • Promoted
    Remote Sales & Trading Associate - AI Trainer ($50-$60 / hour)

    Remote Sales & Trading Associate - AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 10 days ago
    • Promoted
    Lead Information Security Engineer - Palo Alto Firewalls

    Lead Information Security Engineer - Palo Alto Firewalls

    Wells FargoChandler, AZ, United States
    Full-time
    Wells Fargo is seeking a Lead Information Security Engineer - Palo Alto Firewalls to join our Chief Technology Office (CTO). Learn more about the career areas and business divisions at wellsfargojob...Show moreLast updated: 1 day ago
    • Promoted
    Remote Investment Analyst – AI Trainer ($50-$60 / hour)

    Remote Investment Analyst – AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 30+ days ago
    • Promoted
    Remote Finance Director - AI Trainer ($50-$60 / hour)

    Remote Finance Director - AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 30+ days ago
    • Promoted
    Indirect Tax Analyst

    Indirect Tax Analyst

    Vaco by HighspringLitchfield Park, Arizona, United States
    Full-time
    Vaco has partnered with a well-established online retail company that is seeking an Indirect Tax Analyst to manage multi-state tax compliance and support strategic tax initiatives.The role is ideal...Show moreLast updated: 19 days ago
    • Promoted
    Remote FP&A Manager – AI Trainer ($50-$60 / hour)

    Remote FP&A Manager – AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 30+ days ago
    • Promoted
    Remote FinTech Product Analyst - AI Trainer ($50-$60 / hour)

    Remote FinTech Product Analyst - AI Trainer ($50-$60 / hour)

    Data AnnotationMaricopa, Arizona
    Remote
    Full-time +1
    We are looking for a finance professional to join our team to train AI models.You will measure the progress of these AI chatbots, evaluate their logic, and solve problems to improve the quality of ...Show moreLast updated: 30+ days ago
    • Promoted
    Cloud Cyber Security Solutions & Advisory - VP

    Cloud Cyber Security Solutions & Advisory - VP

    MUFGTempe, AZ, United States
    Full-time
    Do you want your voice heard and your actions to count?.Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150...Show moreLast updated: 12 days ago