The point where experts and best companies meet
Share
Responsibilities:
Triage activity data of an identified exiting population against insider threat alerts and referrals from partner Insider Threat (IT) and Data Loss Prevention (DLP) SecOps teams, other Cyber teams, and partners and stakeholders in HR, the Office of Corporate Investigations (OCI), Legal, and others
Track and document investigations from initial detection or referral through escalation or resolution
Utilize insider threat tools and cyber logging across several platforms to investigate insider threats and escalate to appropriate stakeholders including the Insider Threat Investigations team, OCI, and Legal as appropriate
Follow investigative processes and procedures, exercising attention to detail and sound technical, interpersonal, and organizational judgment
Effectively communicate with stakeholders and partner teams to ensure timely scoping, evidence collection, case coordination, and escalation
Present case artifacts and findings in informal meetings with other Insider Threat analysts and investigators
Exercise discretion and professionalism when conducting associate-based investigations and inquiries
Develop, follow, and maintain process ‘playbooks’ of various operational investigative workflows
Identify trends, gaps, and opportunities for process and alert improvement, raising these issues to team leads for resolution
Basic Qualifications:
High School Diploma, GED, or equivalent certification
At least 1.5 years of experience in the cyber security
At least 1.5 years of experience in threat analysis
At least 1.5 years of experience in analyzing information and data
At least 1.5 years of experience in Data Loss Prevention (DLP), incident management, or investigative programs
At least 1.5 years of experience in technical troubleshooting and anomaly detection
Preferred Qualifications:
Bachelor's Degree
3+ years of experience in the cyber or threat analysis field
3+ years of experience in understanding and communicating Data Loss Prevention (DLP) concepts, trends, people risk, or conduct risk program management
2+ years of experience in writing automated processes in Python, Bash, or Powershell to query various data sources
Familiarity with task management tools such as JIRA and Kanban
CFCE, CCE, GCIA, GCIH, Security+, CFCE, EnCE, or CISSP
. Eligibility varies based on full or part-time status, exempt or non-exempt status, and management level.
If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation, please contact Capital One Recruiting at 1-800-304-9102 or via email at . All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.
These jobs might be a good fit