Staff Engineer, Insider Risk Program

Posted 18 days agoViewed

💎 Seniority level: Staff, 6+ years

📍 Location: Canada

💸 Salary: 118200.0 - 147700.0 CAD per year

🔍 Industry: Software Development

🏢 Company: Twilio👥 5001-10000💰 $378,215,525 Post-IPO Equity almost 4 years ago🫂 Last layoff over 1 year agoMessaging SMS Mobile Apps Enterprise Software Software

🗣️ Languages: English

⏳ Experience: 6+ years

🪄 Skills: SQLCybersecurityScripting

6+ years of hands-on cyber security investigations experience in law enforcement, counterintelligence, or private sector industry equivalent.
Experience with emerging cloud technology services and their effect on digital investigations.
Experience interviewing cyber risk actors in particular Insider risk actors and impacted individuals.
Knowledge of Insider risk/Data Loss Prevention programs, incident management and investigative programs.
Experience with cyber security tools, UEBA/DLP/SIEM/SOAR is a plus.
Basic scripting and coding skills (Powershell, VBscript, Bash, Python, SQL, etc..)
Excellent written and verbal communication skills.
Ability to influence and build effective working relationships with all levels of the organization.
Flexible to work additional hours during incidents and provide team support as needed

Collaborating and acting as a liaison between Insider risk analysts and End users, Legal, HR, other stakeholders to address findings.
Assess and investigate complex insider risk incidents and digital behaviours of concern, providing a thorough and mature investigative process from start to end.
Demonstrate an expert level of business acumen and employment legal considerations throughout the investigations.
Conduct sensitive interviews of persons of interest during insider risk investigations.
Examine the case summary provided by the Insider risk analysts and evaluate the appropriate course of action to mitigate the identified security concern within daily operations and incident reviews.
Document investigative results in an articulate manner to ensure accurate reporting, tracking and documentation of incidents and behaviors of concern through the entire lifecycle of the incident.
Produce high quality investigative reports, assessments and briefings for senior management and stakeholders.
Convey complex security issues to both technical and non-technical audiences with clarity and impact.
Collaborate closely with the Insider Risk Program Manager and cross-functional partners, including Employee Relations, Employment Legal, and HR, to develop and formalize comprehensive runbooks and standard operating procedures that proactively address and mitigate insider risk.
Capable of undertaking analytical and project tasks to support the team as needed.