Main Content


Senior Insider Threat Engineer

Position: Senior Insider Threat Engineer
Reports To: VP, Information Security
Location: New York, NY, Winston-Salem, NC, or Dallas TX

Position Summary:

The Clearing House (TCH) Information Security (IS) group is responsible for information security and risk identification throughout the Company’s overall business strategy. TCH is looking for a Senior Insider Threat Security Engineer who has a strong cloud skillset.

Senior Insider Threat Security Monitoring Engineer is responsible for all aspects of the Security Operations Process, and directly support Insider Program activity.  This engineer will be an expert in both on-prem and cloud security operations, with experience in Data Loss Prevention, Endpoint Detection and Response, Security Monitoring, Threat and Vulnerability Management, Security Awareness, Security Training and other IS core processes.

Qualifications Required:

  • Cloud security tools and processes including Cloud Security technologies (e.g. Analyzing, scanning and testing for network and system security vulnerabilities and configuration issues, including relevant industry standards (e.g. CVE, CVSS, SCAP)
  • Engineering and administration of enterprise network vulnerability scanners (e.g. Tenable Nessus)
  • Engineering and administration of endpoint detection to detect and prevent potential malicious activity across multiple platforms (e.g. Crowdstrike, Carbon Black; Unix, Windows)
  • Scanning and testing for application security vulnerabilities and weaknesses, including impact assessment, and relevant industry standards (e.g. CWE, OWASP)
  • Security Forensics experience on-prem, in-cloud or both, (e.g.Encase, AWS, etc.)
  • Windows and Linux system administration, IIS and Tomcat web server administration
  • Network architectures including subnetting, routing, firewalls, load balancers, etc.
  •  Knowledge of network and cloud-based services and client/server applications
  • Expert understanding of enterprise systems and infrastructure, network architecture and security infrastructure placement
  •  Knowledge of Anti-Virus, Anti-Spam/Email security systems and Data Loss Prevention Tools

Qualifications Desired:

  • Bachelor's degree in engineering, computer science, or a related field with minimum of 8 years of experience.
  • Prior information Security and Risk Management experience, preferably with experience in Tenable Nessus, Guidance EnCase, AWS Guard Dog, Intune, Microsoft Advanced Threat Protection/AIP and related incident response and forensics with working knowledge of chain of custody
  • Knowledge of MITRE ATT&CK, Lockheed Kill Chain and related models
  • Experience with Vulnerability scanner, Intrusion Detection/Protection Systems (IDS) / (IPS), firewalls, and signature development is desired.
  • Additionally, significant experience with Linux and Windows operating systems, knowledge of virtual environments, malware analysis and APT Methodologies.
  • Candidate should have broad technical knowledge on a number of security technologies and a solid understanding of information and networking security.
  • Strong analytical and problem-solving skills.
  • Desired Certifications that could include Global Certified Incident Handler (GCIH), and/or Certified Information Systems Security Professional (CISSP), or other GIAC, SANS, ISC2, Carnegie Mellon Insider Threat or ISACA certifications.

Essential Functions and Responsibilities:

  • Action Insider Threat Activity including forensics, privacy, investigation, and communication
  • Support and integrate the TCH’s suite of security monitoring and detection tools and applications.
  • Keep critical employee designations up to date.
  • Contribute to the technical understanding, adoption, and management of Cloud Security tools.
  • Operate cloud security tools, conduct cloud security vulnerability management, investigations, forensics, and Endpoint Detection.
  • Contribute to monthly, quarterly, and annual metrics, audits, and compliance activity.

Performance Standards:

Candidate should be mature, collegial, self-motivated, extremely well-organized and detail-oriented, able to function under pressure and handle numerous tasks simultaneously. The position would be well-suited to a candidate who thrives in a fast-paced environment and is meticulous. S/he must be able to take initiative, prioritize with minimal supervision and work independently, as well as part of a team.

Physical Demands and Work Environment:

Work is generally sedentary in nature but may require standing and walking. The working environment is generally favorable. Lighting and temperature are adequate, and there are no hazardous or unpleasant conditions caused by noise, dust, etc. Work is generally performed within an office environment, with standard office equipment available

TCH places paramount importance on the health and safety of its employees, and, as such, we are taking all necessary steps to protect our workforce. Because this position may require working in close contact with colleagues and other third parties, TCH is requiring that the employee hired into this role present proof that they are fully vaccinated against COVID-19 during their first week of employment.

Apply Below*:

  • A letter of interest describing your experience and interest in the position
  • Your resume
  • Names and contact information of three references, or three letters of reference

* Please submit a single application per position.

Submit Your Resume