Main Content

Director, Information Security-Insider Threat

Position: Director, Information Security-Insider Threat
Reports To: SVP, Chief Information Security Officer
Location: New York, NY

Position Summary:

Director, Information Security is responsible for managing Emerging Threat throughout the enterprise.  A key program within the Cyber Threat management will be the enhancement of the Insider Threat Management Program (ITMP).

The Director, Information Security will be responsible for developing, and executing the program strategy across the enterprise. This includes both long term strategy and objectives of a more tactical day-to-day nature. The ideal candidate will possess strong industry expertise in insider threat management, strong interpersonal skills and executive presence as well as the ability to develop program plans.

Qualifications Required:

  • Bachelor's degree in engineering, computer science, or a related field with minimum of 10 years of experience
  • Experience building and executing a robust insider threat program
  • Prior Information Security and Risk Management experience, preferably with experience in Security Monitoring or Incident Management and Forensics
  • Related experience in project management, business analysis, systems and financial services
  • Broad knowledge in risk analysis, threat mitigation, and security domains
  • Strong communication & negotiation skills
  • Strong analytical and problem solving skills
  • Ability to work with all levels within the organization
  • Ability to analyze and demonstrate the psychology of the insider threat

Qualifications Desired:

  • Certified Information System Security Professional (CISSP) or Certified Information Security Manager (CISM) certification
  • Certified in CERT Insider Threat Program Manager or equivalent training and experience creating or running an Insider Threat Management Program
  • Membership with FS-ISAC, US-CERT and other relevant technological knowledge sharing forums
  • Knowledge of ISO27001/ISO31000, NIST 800-53, NIST CSF

Essential Functions and Responsibilities:

  • Develop and manage the Insider Threat Management Program (ITMP), including assessment of existing capabilities, identification of gaps, development of technical and non-technical indicators, and coordination of the program with stakeholders
  • Oversee the implementation of User and Entity Behavior Analytics (UEBA) and coordination across key stakeholders to follow-up on potential insider threat events, including HR, legal, and the business
  • Proactively work with others and develop relationships across the company and provide specialized support by gathering, handling, examining, preparing, entering, searching, retrieving, identifying and/or comparing digital and/or physical evidence
  • Lead highly sensitive, complex, and confidential insider threat investigations into incidents of data loss and intellectual property theft, technology misuse, conflict of interest, and other types of matters
  • Creation of detection methods for the discovery behavior patterns that may indicate malicious intent by insiders
  • Creation of all documentation relating to insider threat, this includes playbooks, procedures and policies
  • Proposing and executing program initiatives, and collaboration with key stakeholders to create business value
  • Track, develop metrics, and report on effectiveness and results of the Insider Threat Management Program (ITMP)
  • Identification and incorporation of lessons-learned to optimize current processes and procedures
  • Day-to-day analysis of potential insider threat events and apply procedure to determine next steps
  • Monitoring of existing policies and applicable regulatory requirements to ensure compliance
  • Developing and delivering stakeholder presentations which further the awareness and understanding of the insider threat program and capabilities
  • Conduct risk-based analysis of users and groups across entire organization; develop investigative action plans based on findings
  • Manage vendor relationships, as needed, to support Insider Threat Management Program (ITMP) tools
  • Soft skills such as the ability to build relationships, build consensus, negotiate solutions, and guide customers through their decision process are highly desirable
  • As directed, undertakes such additional duties and responsibilities that may arise from time to time

Physical Demands and Work Environment:

Work is generally sedentary in nature, but may require standing and walking. The working environment is generally favorable. Lighting and temperature are adequate, and there are no hazardous or unpleasant conditions caused by noise, dust, etc. Work is generally performed within an office environment, with standard office equipment available.

Apply Below*:

  • A letter of interest describing your experience and interest in the position
  • Your resume
  • Names and contact information of three references, or three letters of reference

* Please submit a single application per position.

Submit Your Resume