Insider Risk Specialist, Insider Threat Program

Responsibilities Apply insider risk mitigation strategies. Lead complex, sensitive insider threat investigations from signal to evidence, timeline, interviews, documentation, and team handoff. Design and execute proactive threat hunts and convert findings into actionable investigations and detections. Maintain and improve the insider threat program by identifying gaps, metrics, and investment opportunities. Assist with risk assessments for crown jewel analysis, sensitive roles, and high-risk activity. Foster cross-functional alignment by building relationships throughout GEICO. Required Qualifications 4+ years' experience in cybersecurity, incident response, intelligence, insider threat, or counterintelligence. Familiarity with procedures and signs of malicious insider activity (fraud, theft, sabotage, espionage). Ability to develop new processes or capabilities as scaling needs grow. Proven success implementing strategies at scale. Excellent verbal and written communication skills for executive audiences. Strong relationship-building skills with internal, external, and industry peers. Use advanced OSINT techniques to find information from public sources, social media, online activity, commercial data, and specialized tools. Create organized, timely reports such as investigative findings, analytical reviews, incident summaries, and threat analyses that are suitable for both technical and general readers. Skilled in using Threat Hunting tools, with hands-on experience analyzing machine and user activity logs. Familiar with querying data sets or working with SIEM platforms. Capable of interpreting activity logs generated by machines and users. Preferred Qualifications Demonstrated experience in establishing and advancing a formal Insider Threat Program (InTP), encompassing the development of playbooks, detection frameworks, and cross-functional governance models within a corporate or government context. Ability to leverage automation toolsets to enhance intelligence gathering and manual tasks, utilizing scripting languages such as Python. Proven track record in identifying and investigating insider threats in a cloud-based software or platform organization, with comprehensive knowledge of data access patterns, privileged user risks, and intellectual property theft vectors unique to SaaS and PaaS environments. Annual Salary $75,000.00 - $160,000.00 The above annual salary range is a general guideline. Multiple factors are taken into consideration to arrive at the final hourly rate/annual salary to be offered to the selected candidate. Factors include, but are not limited to, the scope and responsibilities of the role, the selected candidate’s work experience, education and training, the work location as well as market and business considerations. GEICO will consider sponsoring a new qualified applicant for employment authorization for this position. The equal employment opportunity policy of the GEICO Companies provides for a fair and equal employment opportunity for all associates and job applicants regardless of race, color, religious creed, national origin, ancestry, age, gender, pregnancy, sexual orientation, gender identity, marital status, familial status, disability or genetic information, in compliance with applicable federal, state and local law. GEICO hires and promotes individuals solely on the basis of their qualifications for the job to be filled. GEICO reasonably accommodates qualified individuals with disabilities to enable them to receive equal employment opportunity and/or perform the essential functions of the job, unless the accommodation would impose an undue hardship to the Company. This applies to all applicants and associates. GEICO also provides a work environment in which each associate is able to be productive and work to the best of their ability. We do not condone or tolerate an atmosphere of intimidation or harassment. We expect and require the cooperation of all associates in maintaining an atmosphere free from discrimination and harassment with mutual respect by and for all associates and applicants. #J-18808-Ljbffr GEICO