Information Security - Insider Threat Analyst at Motorola Solutions

| Chicago
Sorry, this job was removed at 12:39 p.m. (CST) on Tuesday, March 3, 2020
Find out who's hiring in Chicago.
See all Operations jobs in Chicago

Company Overview

At Motorola Solutions, we create technologies our customers refer to as their lifeline. Our technology platforms in communications, software, video and services help our customers work safely and more efficiently. Whether it’s helping firefighters see through smoke, enabling police officers to see around street corners, or reliably keeping the lights on in homes and businesses around the world, our work supports those who put their lives on the line to keep us safe. Bring your passion, potential and talents to Motorola Solutions, and help us usher in a new era in public safety and security.


Department Overview
Our IT organization isn’t just here to support our business. We’re here to reinvent it – by changing the way our customers, partners and employees interact with our company. To do that, we’re looking for people who bring great ideas and who make our partners’ ideas better. Intellectually curious advisors (not order takers) who focus on outcomes to creatively solve business problems. People who not only embrace change, but who accelerate it.
Job Description

MSI has a global and dynamic environment; threats to its information systems can come from many sources, both external and internal to the organization. MSI’s Insider Threat program focuses on using out of the box thinking and machine learning to detect abnormal data security issues caused by inadvertent or intentional actions of personnel (employees, contractors, and partners). This role offers someone with an inquisitive mind the opportunity to sort out patterns from the noise and then rigorously investigate the findings.  Ultimately, the insider threat analyst will contribute to a world class program to help keep MSI’s data secure so MSI can facilitate critical communications and help customers around the world be their best in the moments that matter.

MSI values collaboration, transparency, diversity, and continual innovation. Professional development is encouraged and supported. We are creating a team with a wide variety of skills, from technical expertise to investigative tenacity and interpersonal insight. Our team is made up of individuals who want to grow, try new ideas, and most of all, stop adversaries from harming our organization.

Roles and responsibilities:

Summary: Identify, investigate, and mitigate insider threats within MSI and produce Insider Threat Reports (investigative leads) that document issues on computer misuse and various violations of policies; access and integrate information from MSI’s network monitoring tools and other data analytics tools/sources; and apply advanced technical, behavioral, and investigative solutions to ensure that MSI data remains secure.

  • Perform forensic analysis of digital information, gather and handle evidence using industry best practices.

  • Prepare case evidence and incident reports.

  • Work on special projects, as assigned.

  • May provide guidance and work leadership to less-experienced technical staff members.

  • Define behavioral analytic use cases to identify abnormal activity for investigation by Incident Response teams.

  • Document and adhere to a consistent detection mythology to ensure a defensible and consistent approach to identifying abnormal activity.

  •  Coordinate with legal, privacy, and human resource partners on the intention and scope of the Insider Threat Program

  • Collaborate with Information Security teams on the development and operational use of Behavior Analytics platform (UBA).

  • Support automation efforts to streamline detection and response actions for incidents.

  • Help define operational metrics to define and measure the operational state of the Insider Threat program

  • Develop reports and metrics for leadership across Legal, Human Resources, and Office of Ethics and Compliance

  • Ability to analyze and understand technical information; author clear and concise reports and presentations

Skills and attributes for success:

  • Self-driven, creative, and can operate independently and improve the team as a whole

  • Security and investigative mindset

  • Continuously learning and identifying ways to advance MSI’s Insider Threat Program

  • Strong written and verbal communications, attention to detail, interpersonal and networking skills

  • Strong collaborative skills and proven ability to work with a diverse team of security professionals

  • Knowledge of Insider Threat Behavioral Models 

  • Big-data platform implementation

Desired Requirements:

  • Experience conveying complex information in simple, succinct explanations

  • Exceptional attention to detail

  • Comfort with ambiguity, and a self-starter capable of working cross-functionally with engineering, policy, legal, and other teams 

  • Ability to work in a fast-paced, operational environment, including non-standard work hours in response to Information Security incidents

  • Excellent written communication skills and the proven ability to understand and present nuanced, complex technical information and metrics to both technical and nontechnical audiences 

  • Experience analyzing internal abuse, internal fraud, data loss prevention, or counterintelligence matters

  • Knowledge and experience using SIEM, User Behavioral Analytics, or Data Loss Prevention (DLP) products to execute complex search queries and generate reports 

  • Experience conveying complex information in simple, succinct explanations

  • Forensics investigations and methodologies

  • Proficiency scripting in Python

  • One or more years working in Incident Response

  • Familiarity with GDPR and data privacy policies

  • Big-data platform implementation 

  • Incident response/Security Operations Center background 


Basic Requirements
  • Bachelor’s Degree in Information Security or related degree

  • 2+ years of experience in insider threat detection, audit, analysis, or investigative systems and procedures. 

  • Able to obtain a Secret security clearance

  • Must be a U.S. citizen


Travel Requirements
None
Relocation Provided
None
Position Type
Experienced
Referral Payment Plan
Yes


EEO Statement

Motorola Solutions is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran's status, or, any other protected characteristic.


If you are a current Motorola Solutions employee, please click this link to apply through your Workday account.

Read Full Job Description

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • .NETLanguages
    • C#Languages
    • C++Languages
    • GolangLanguages
    • JavaLanguages
    • JavascriptLanguages
    • PerlLanguages
    • PythonLanguages
    • RLanguages
    • RubyLanguages
    • AngularJSFrameworks
    • ASP.NETFrameworks
    • DjangoFrameworks
    • Node.jsFrameworks
    • Ruby on RailsFrameworks
    • ITILFrameworks
    • MySQLDatabases
    • OracleDatabases
    • Google AnalyticsAnalytics
    • TableauAnalytics
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • JIRAManagement
    • Microsoft ProjectManagement
    • SmartsheetManagement
    • SalesforceCRM
    • GoogleEmail
    • MarketoLead Gen
    • Oracle EloquaLead Gen

Location

Located in the West Loop, one block from Ogilvie Train Station and Union Train Station. The office is also close to multiple CTA stops.

What are Motorola Solutions Perks + Benefits

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Unconscious bias training
Someone's primary function is managing the company’s diversity and inclusion initiatives
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Pet Insurance
Onsite Gym
Retirement & Stock Options Benefits
401(K)
401(K) Matching
Employee Stock Purchase Plan
Performance Bonus
Match charitable contributions
Child Care & Parental Leave Benefits
Child Care Benefits
Generous Parental Leave
We provide up to 6 weeks of parental leave for the primary caretaker. Acme Co. also provides 6 weeks of leave for the secondary caretaker.
Remote Work Program
Our remote work program includes telecommuting at Manager discretion.
Family Medical Leave
Employees who have been with the company for 12 months are eligible for 12 weeks of family medical leave.
Adoption Assistance
Vacation & Time Off Benefits
Generous PTO
Paid Holidays
Perks & Discounts
Casual Dress
Commuter Benefits
Game Room
Our game room includes Video Games.
Stocked Kitchen
Happy Hours
Happy hours are hosted At team's discretion.
Parking
We offer employees Paid on-site garage parking.
Relocation Assistance
Professional Development Benefits
Job Training & Conferences
Tuition Reimbursement
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
Mentorship program
Time allotted for learning
Online course subscriptions available
Paid industry certifications
More Jobs at Motorola Solutions121 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
HR
Internships
Marketing
Operations
Product
Project Mgmt
Sales
Content
Developer
new
Remote
Operations
new
Remote
Operations
new
Remote
Developer
new
Remote
Operations
new
Remote
Sales
new
Remote
Operations
new
Remote
Operations
new
Remote
Operations
new
Remote
Operations
new
Remote
Project Mgmt
new
Remote
Operations
new
Remote
Operations
new
Remote
Sales
new
Remote
Operations
new
Remote
Content
new
Remote
Operations
new
Remote
Operations
new
Remote
Content
new
Remote
Operations
new
Remote
Project Mgmt
new
Remote
Operations
new
Remote
Sales
new
Remote
Operations
new
Remote
Operations
new
Remote
Marketing
new
Chicago
Sales
new
Remote
Sales
new
Remote
Operations
new
Remote
Operations
new
Remote
Sales
new
Remote
Developer
new
Remote
Sales
new
Remote
Sales
new
Remote
Developer
new
Remote
Project Mgmt
new
Remote
Operations
new
Remote
Developer
new
Remote
Operations
new
Remote
Operations
new
Remote
Operations
new
Remote
Project Mgmt
new
Remote
Project Mgmt
new
Remote
Project Mgmt
new
Remote
Developer
new
Chicago
Data + Analytics
new
Chicago
Developer
new
Chicago
Operations
new
Chicago
Operations
new
Chicago
Operations
new
Chicago
Operations
new
Chicago
Internships
new
Chicago
Developer
new
Chicago
Project Mgmt
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Design + UX
new
Chicago
Operations
new
Chicago
Marketing
new
Chicago
Marketing
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Finance
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Developer
new
Chicago
Internships
new
Chicago
Finance
new
Chicago
Internships
new
Chicago
Product
new
Chicago
Operations
new
Chicago
Developer
new
Chicago
Operations
new
Chicago
Sales
new
Chicago
Data + Analytics
new
Chicago
Operations
new
Chicago