Insider Threat & Cyber Investigations Specialist jobs at Airbnb in Spain, Barcelona

• Cybersecurity Principles:A strong foundational understanding of cybersecurity principles is essential . While you don’t need to be a security engineer, you should be comfortable working with key platforms such as Windows, Mac OS, and Google OS . You must also be proficient in reviewing and analysing security-related data, including event logs, authentication logs, and other relevant information. This role requires the ability to assess and interpret security data effectively to identify potential threats and vulnerabilities.
• Leading Investigations :Managing investigations from initiation to completion .
• Interviewing :Conducting interviews with victims, witnesses, and suspects.
• Stakeholder Engagement :Facilitating meetings with key stakeholders, including InfoSec, HR, Employee Relations, Legal, and Engineering.
• Case Management :Owning & Handling cases end-to-end, ensuring thorough documentation and effective follow-through.

• Assess and investigate complex insider risk incidents and digital behaviours of concern, providing a thorough and mature investigative process from start to end.
• Demonstrate an expert level of business acumen and employment legal considerations throughout your investigations due to complex 3rd party incidents
• Develop and coordinate investigative plans using open source intelligence and technical tools to gather and analyse evidence.
• Lead incident management coordination as an incident commander.
• Conduct sensitive interviews of victims, witnesses and persons of interest during investigations, both virtually and in person.
• Document investigative results in an articulate manner utilising case management software to ensure accurate reporting, tracking and documentation of workplace violence incidents and behaviors of concern through the entire lifecycle of the incident.
• Participant and partner with stakeholders to identify new opportunities and solutions that will aid in the mitigation of insider risks.
• Conduct comprehensive after action reviews to identify and implement best practices and lessons learned.
• Develop and maintain relationships with multi-disciplinary teams comprised of Talent, Employee Relations, Legal, Cybersecurity and Technology, business leaders and external partners.
• Develop and refine associated policies, procedures and other documentation that are in accordance with data privacy and legal requirements and expectations.
• Provide program analytics and case management to enable the detection, identification, and assessment of concerning behaviours and develop strategies to mitigate risks identified.
• Communicate complex insider risk threat issues in a way that is understandable to cross functional partners who may have limited experience in the field.

• 8+ years of hands-on insider threat investigations experience in law enforcement, counterintelligence, or private sector industry equivalent.
• 4+ years in the domain of cybersecurity with specific experience in Insider risk remediation; coordinating projects and initiatives to close identified vulnerabilities with organisational leads and owners.
• Experience interviewing insider risk actors, witnesses and impacted individuals.
• High competency with industry standards of workplace investigations, employment legal considerations, and practices related to the confidentiality and integrity of information.
• Experience in insider threat incident triage, coordinating cross-functional response, and performing investigations across both digital and human domains.

Offices: Barcelona, Spain, Dublin, Ireland, London, United Kingdom