Job Title: Insider Threat Analyst
Location: Phoenix, AZ (Hybrid 3 days onsite per week)
Duration: 12 months
Your opportunity: We are seeking a highly experienced Senior Insider Threat Analyst to lead the implementation of a new insider threat detection tool and build a robust insider threat operations program from the ground up. This role is critical to enhancing our organization's ability to identify, assess, and mitigate insider risks, including data loss, intellectual property theft, and malicious activities. As the Senior Insider Threat Analyst, you will be responsible for driving tool deployment and configuration, program development, cross-functional collaboration, and the operationalization of insider threat detection and response capabilities. This position is a unique opportunity to shape and enhance the maturity of our insider threat program by leveraging advanced analytics and incident response best practices. The role offers a hybrid/flexible schedule, which means there's an in-office expectation of 3 or more days per week and the flexibility to work outside the office location for the other days. What you have: You are discreet, thoughtful, and seek to coordinate systemic, cross functional solutions to mitigate risk. You are familiar with Insider Threat technologies (such as User Entity Behavioral Analytics - UEBA, Security Information Event Management - SIEM, Data Loss Prevention - DLP) and understand investigations and/or the intelligence cycle.
Key Responsibilities:
Program Development:
• Design and establish a comprehensive insider threat program aligned with organizational goals and regulatory requirements.
• Develop policies, processes, and workflows for detecting, investigating, and mitigating insider threats.
• Define metrics and reporting frameworks to measure the effectiveness of the program.
Tool Deployment:
• Lead the configuration of a new insider threat detection tool.
• Ensure seamless integration with existing security systems, such as SIEM and SOAR solutions.
• Collaborate with vendors and IT teams to customize the tool for organization-specific use cases. Threat Detection and Analysis:
•Monitor user and entity behavior analytics to identify suspicious activities and policy violations.
• Conduct in-depth investigations into insider threat incidents, working closely with cybersecurity, HR, and legal teams.
• Refine detection capabilities by creating and optimizing rules, alerts, and risk scoring models.
Collaboration and Training:
• Act as a subject matter expert on insider threat risks and tools.
• Train and mentor junior analysts and cross-functional stakeholders on insider threat detection techniques and tool usage. Incident Response:
• Support the investigation and resolution of insider threat incidents, ensuring thorough documentation and root-cause analysis.
• Develop and execute response playbooks for various insider threat scenarios.
Required qualifications:
• Bachelor's degree in cybersecurity, information technology, or a related field; advanced degree preferred.
• 7+ years of experience in cybersecurity, with a focus on insider threat analysis and program development.
• Strong understanding of UEBA tools and technology, digital forensics, and data loss prevention (DLP) strategies.
• Proven expertise in deploying and managing insider threat tools specifically with DTex InTERCEPT
• Experience developing policies, procedures, and workflows for insider threat management.
• Familiarity with SIEM platforms, data analytics tools, and insider threat indicators and detection methods.
• Experience with scripting and automation (e.g., BigQuery, Python, PowerShell) is a plus.
Preferred qualifications:
• Bachelor's degree in computer science or related field
• Relevant certifications such as CISSP, CISM, CISA, GIAC, or insider threat-specific credentials (e.g., Certified Insider Threat Program Manager).
• Knowledge of legal and regulatory requirements surrounding insider threat and data protection (e.g., GDPR, CCPA, etc.). Key Competencies:
• Strong analytical and critical thinking skills.
• Strategic mindset with the ability to design and operationalize new programs.
• Detail-oriented, self-driven, and capable of working independently in a fast-paced environment.
• Competent in collecting, analyzing, and interpreting qualitative and quantitative data from multiple sources, documenting results, and analyzing findings to provide viable threat intelligence.
About Us: Established in 2004, SPECTRAFORCE is one of the largest and fastest-growing diversity-owned staffing firms in the US. The growth of our company is a direct result of our global client service delivery model that is powered by our state-of-the-art A.I. proprietary talent acquisition platform, robust ISO 9001:2015/ISO 27001 certified processes, and strong and passionate client engaged teams. We have built our business by providing talent and project-based solutions, including Contingent, Permanent, and Statement of Work (SOW) services to over 140 clients in the US, Canada, Puerto Rico, Costa Rica, and India. Key industries that we service include Technology, Financial Services, Life Sciences, Healthcare, Telecom, Retail, Utilities and Transportation. SPECTRAFORCE is built on a concept of "human connection," defined by our branding attitude of NEWJOBPHORIA , which is the excitement of bringing joy and freedom to the work lifestyle so our people and clients can reach their highest potential. Learn more at:
Benefits: SPECTRAFORCE offers ACA compliant health benefits as well as dental, vision, accident, critical illness, voluntary life, and hospital indemnity insurances to eligible employees. Additional benefits offered to eligible employees include commuter benefits, 401K plan with matching, and a referral bonus program. SPECTRAFORCE provides unpaid leave as well as paid sick leave when required by law.
Equal Opportunity Employer: SPECTRAFORCE is an equal opportunity employer and does not discriminate against any employee or applicant for employment because of race, religion, color, sex, national origin, age, sexual orientation, gender identity, genetic information, disability or veteran status, or any other category protected by applicable federal, state, or local laws. Please contact Human Resources at if you require reasonable accommodation.
California Applicant Notice: SPECTRAFORCE is committed to complying with the California Privacy Rights Act ("CPRA") effective January 1, 2023; and all data privacy laws in the jurisdictions in which it recruits and hires employees. A Notice to California Job Applicants Regarding the Collection of Personal Information can be located on our website. Applicants with disabilities may access this notice in an alternative format by contacting .
LA County, CA Applicant Notice: If you are selected for this position with SPECTRAFORCE, your offer is contingent upon the satisfactory completion of several requirements, including but not limited to, a criminal background check. We consider qualified applicants with arrest or conviction records for employment in accordance with all local ordinances and state laws, including the Los Angeles County Fair Chance Ordinance for Employers (FCO) and the California Fair Chance Act (FCA). The background check assessment will consider whether a criminal history could reasonably have a direct, adverse impact on the job-related safety, security, trust, regulatory compliance, or suitability for this role. Such findings may result in withdrawal of a conditional job offer.