UAM Analyst with Security Clearance

UAM Analyst - PKH Enterprises is looking for a User Activity Monitoring (UAM) Analyst to support a federal client. This analyst will play a crucial role in detecting, analyzing, and mitigating potential security risks. This work will be onsite in Washington, DC.
Responsibilities:

• Monitor & Analyze user activity data to detect anomalous behavior and potential insider threats.

• Triage & Investigate alerts, documenting findings and reporting them through case management systems.

• Develop & Implement countermeasures against known adversarial tactics, techniques, and procedures (TTPs).

• Collaborate with cybersecurity, counterintelligence, and law enforcement teams to refine detection strategies.

• Conduct Forensic Analysis on network traffic, intrusion attempts, and data loss prevention technologies.

• Support Insider Threat Programs by integrating multiple security data sources and refining detection triggers.

• Provide Briefings & Reports to leadership on trends, risks, and mitigation strategies.
Required Experience:

• Education: Bachelor's degree in cybersecurity, information assurance, or related field (or equivalent experience).

• Experience:
o 3 years relevant experience in UAM or insider threat detection, including bility to develop dashboards, filters, and audit policy triggers.
o Familiarity with network traffic analysis, intrusion detection, and forensic investigations.

• Certifications: CISSP, CEH, Security+, or DoD-8570 IAT Level II.

• Clearance: Candidates must hold an active TS/SCI clearance.
Preferred Experience:

• Technical Skills:
o Knowledge of Windows, Linux, Unix operating systems.
o Experience with Microsoft Purview.
o Experience with UAM tools. o Ability to develop dashboards, filters, and audit policy triggers.
o 1 year of experience with Microsoft Purview.