Insider Threat Program Hunt Team Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

Leidos · 1 day ago

Insider Threat Program Hunt Team Analyst

positionWashington, DC
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$105K/yr - $190K/yr
date10+ years exp

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. The Hunt Analyst will support the Department of Homeland Security's Insider Threat Program by analyzing data to identify insider threats and providing proactive hunting across the enterprise network.

ComputerGovernmentInformation ServicesInformation TechnologyNational SecuritySoftware
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Examine, analyze, and search insider threat data to identify trends, patterns, and insights of potential insider threat indicators
Provide analytical, program support services related to the operation of UAM/ UEBA tool
Monitor UAM platform to identify emerging requirements related to insider threat events and coordinate across the enterprise to ensure timely response
Conduct further research on the UAM platform to identify patterns of concerning behavior related to a potential insider threat risk to the DHS enterprise
Provide proactive insider threat-based hunting across the DHS enterprise network, leveraging methodologies and behavioral analytics to detect, investigate, and mitigate anomalous activity and policy violations indicative of malicious insider behavior
Conduct continuous hunt operations across data and log sources, DHS platforms, EDR tools, and network traffic to identify patterns of insider threat behavior
Identify mitigation strategies to assist the investigative team in effectively reducing insider threat risk
Utilize UEBA (User and Entity Behavior Analytics) platforms and techniques to baseline user activity and detect deviations
Provide timely response to critical/high UAM alerts (within 4 hours during normal business hours)

Qualification

Insider Threat ExperienceUser Activity Monitoring (UAM)Threat Assessment StrategiesUserEntity Behavior Analytics (UEBA)Intelligence AnalysisCybersecurity ToolsetsOpen-Source ToolsetsInsider Threat FrameworksNetworking SkillsCommunication SkillsSelf-StarterWritten Skills

Required

Bachelors degree and (12)+ years of prior relevant insider threat experience or Masters with (10)+ years of prior relevant experience. Additional years of experience with requisite certifications will be considered in leu of degree
Minimum of 4 years demonstrated knowledge of the intelligence cycle, analytic techniques, systems, processes, and organizations
Minimum of 4 years demonstrated knowledge of Threat Assessment & Mitigation Strategies
Have excellent written and verbal skills with ability to deliver briefings to a diverse group of audiences
Possess knowledge of current domestic and international threats to U.S. national security interests
Be adept at establishing networks with relevant security, personnel, and prevention stakeholders to foster program utilization
Be a self-starter capable of working independently to promote program goals
Working knowledge of User Activity Monitoring Software (UAM) and solutions
Working knowledge of Cybersecurity toolsets designed to support ITP mission activities
Working Knowledge of Open-Source toolsets
Working Knowledge of Insider Threat Frameworks; Pathway to Violence & Critical Pathway
Current TS/SCI and Must be a US Citizen
Ability to obtain DHS EOD SCI and willingness to undergo CI Polygraph

Preferred

Master's degree from an accredited college or university in Criminal Justice, Homeland security, Cyber Security, or related field
Proven experience (10+ years) in Intelligence Analysis
Experience with User Activity Monitoring products and platforms
Proven experience (4+ years) in Threat Assessment & Mitigation
Certified Counter-Insider Threat Professional - Fundamentals (CCITP-F)
Certified Counter-Insider Threat Professional - Analysis (CCITP-A)
Completion of Center for Development of Security Excellence (CDSE) Insider Threat Detection Analysis Course (ITDAC)
Completion of Workplace Assessment of Violence Risk (WAVR-21) Workshop
Completion of Center for Development of Security Excellence (CDSE) Curriculums; INT311.CU/INT312.CU/CI201.CU

Benefits

Health and Wellness programs
Income Protection
Paid Leave
Retirement

Company

Leidos

twittertwittertwitter
Glassdoor3.9
company-logo
Leidos is a Fortune 500® innovation company rapidly addressing the world’s most vexing challenges in national security and health.
dateFounded in 1969
location
Reston, Virginia, USA
people-size10001+ employees
web-link
https://www.leidos.com/

Funding

Current Stage
Public Company
Total Funding
unknown
2025-02-20Post Ipo Debt
2013-09-17IPO

Leadership Team

leader-logo
James Carlini
Chief Technology Officer
linkedin
leader-logo
Amy Smith
Senior Vice President, Government Affairs
linkedin

Recent News

Fortune
Fortune 500 Power Moves: Which executives gained and lost power this week
2025-12-20
MarketScreener
Leidos Names Theodore Tanner Chief Technology Officer
2025-12-16
Benzinga.com
Citigroup, Leidos Holdings And More On CNBC's 'Final Trades'
2025-12-16
Company data provided by crunchbase