Senior Security Engineer responsible for deploying and maintaining endpoint security solutions. Collaborating across teams to enhance security posture and supporting incident response activities.
EB
Hybrid Lead, Cybersecurity Insider Risk Management
Posted 3 months ago
About the role
- Lead Cybersecurity Insider Risk Management role protecting sensitive data at Equitable Bank. Joining a top FinTech in advancing insider risk strategy and cybersecurity capabilities.
Responsibilities
- Own and lead the insider risk program strategy, governance framework, and roadmap.
- Define policies, standards, and procedures for insider risk management aligned with regulatory and organizational requirements.
- Develop and report on KPIs and metrics to measure program effectiveness and maturity.
- Lead the selection, assessment, and proof-of-concept (POC) for insider risk management tools (e.g., DLP, UEBA, SIM, CASB).
- Architect and implement advanced insider risk detection and response capabilities leveraging behavioral analytics, machine learning, and automation.
- Leverage AI-driven tools and automation to enhance efficiency, accuracy, and scalability of the insider risk management program.
- Integrate insider risk monitoring with broader cybersecurity platforms and threat intelligence feeds.
- Oversee day-to-day insider risk operations, ensuring timely detection, triage, and resolution of alerts.
- Define and maintain high-risk user groups, implementing automation for dynamic updates.
- Direct investigations into suspicious activities, ensuring proper documentation, evidence handling, and escalation.
- Monitor insider risk users through IRM alerts, DLP alerts, UEBA alerts, and database activity monitoring (DAM) alerts.
- Detect anomalous queries, unauthorized schema changes, or mass data exports, correlating database activity with user behavior analytics (UEBA).
- Deploy DAM tools to track queries, changes, and access patterns; set alerts for suspicious activities like bulk data extraction or unusual query patterns.
- Integrate DAM logs with SIEM for centralized monitoring.
Requirements
- Bachelor in Computer Science or related field.
- At least seven (7) years of information security and information risk experience.
- Expertise in insider risk platforms and technologies: DLP, IRM, UEBA, SIEM, CASB, EDR
- Strong knowledge of database security principles, encryption, and DAM tools
- Proficiency in scripting and automation (Python, PowerShell) for alert enrichment and remediation workflows.
- CISSP or similar certification is preferred.
- Ability to work in a fast-paced environment with minimal guidance and supervision.
- Ability to adapt to constantly changing technical, regulatory, and compliance environments.
- Good verbal and written skills are important.
- Experience working in a banking or financial services environment is an asset.
- Ability to think out of the box for solutions to technical problems.
Benefits
- Competitive discretionary bonus
- Market leading RRSP match program
- Medical, dental, vision, life, and disability benefits
- Employee Share Purchase Plan
- Maternity/Parental top-up while you care for your little one
- Generous vacation policy and personal days
- Virtual events to connect with your fellow colleagues
- Annual professional development allowance and a comprehensive Career Development program
- A fulfilling opportunity to join one of the top FinTechs and help create a new kind of banking experience
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Administrative support role within MAHLE's Thermal and Fluid Systems unit, assisting the team with various operational tasks and employee interactions.
Senior Security Engineer at PagBank focusing on application security and secure development practices. Responsibilities include testing, vulnerability management, and collaboration with development teams.
Security Software Engineer at a tool - building company automating coding. Focused on shipping secure products covering enterprise security, cloud, and embedded protections.
Senior Product Cyber Security Systems Engineer at Sonova focusing on product security and cyber threats. Collaborating with teams to maintain robust security practices and compliance.
Threat Exposure Oversight Specialist enhancing security risk management in Cyber Defence team. Collaborating across functions to validate and document security controls and risks.
Lead Security Engineer at Octopus Energy, ensuring security in digital energy solutions and managing a team. Join us in revolutionizing the renewable energy transition.
Lead Information Security Analyst driving security improvements and team management at Octopus Energy. Join us in ensuring secure service delivery across our global operations.
Program Manager overseeing global safety, intelligence, and security at Anthropic. Developing policies and coordinating cross - functional initiatives.
CyberSecurity Sales Specialist engaging Fortune 250 clients to drive cybersecurity solutions at HPE. Focusing on enterprise sales, strategic expansion, and leading competitive pursuits in the Northeast - Mid Atlantic region.