Senior Principal Engineer, Insider Threat

View full description

Requirements:

• 10+ years of experience in information security, 8+ years' experience leading projects
• Experience with improving and accelerating detection of potential insider risk
• Experience coordinating with local, state, or federal law enforcement agencies to investigate incidents
• Proven experience in developing and implementing incident response plans compliant with FedRAMP and DoD IL5 standards, including familiarity with NIST 800-53, 800-61, and other relevant frameworks
• Prior law enforcement or military experience, with experience proactively sharing intelligence with Intelligence Agencies, and must have an Active U.S. Top Secret clearance

Responsibilities:

• Establish and maintain a comprehensive insider threat program aligned with organizational goals and regulatory requirements, while conducting risk assessments to identify and mitigate vulnerabilities and data exfiltration risks
• Implement and optimize detection procedures using technologies like DLP and UEBA to identify insider threats, while collaborating with Zscaler product teams to enhance offerings and strengthen corporate security posture
• Lead incident response for high-severity insider threats, ensuring effective containment and conducting thorough post-incident analysis to identify lessons learned and drive continuous improvement
• Establish metrics to measure program effectiveness, such as detection rates and response times, while designing and delivering training programs to educate employees on identifying and reporting insider threats
• Communicate complex cybersecurity topics to non-technical stakeholders, including executive leadership, to ensure alignment and understanding of key security initiatives