Insider Threat UEBA Analyst
What We'll Bring
The Global Insider Threat Program (GITP) User & Entity Behavior Analytics (UEBA) Analyst is a cybersecurity professional with experience identifying threats, vulnerabilities and exploitations, processing, analyzing and operationalizing cybersecurity intelligence as well as other threat indicators in order to enhance detection and prevention of insider threats within TransUnion’s environment. In addition to these technical proficiencies, the GITP UEBA Analyst demonstrates excellent communication skills to include the ability to explain technical data relevance succinctly to the GITP Director and other TransUnion senior leadership.
What You'll Bring
BS or BA degree preferably in computer or security related field or any combination of equivalent education and experience
Previous experience in a SOC environment
Excellent technical capabilities including an understanding of enterprise security network architecture, user and entity behavior analytics and other risk-based security operations
An analytical mindset coupled with a proven ability to examine and utilize raw data and create refined timely intelligence relevant to Insider Threat operations
Willingness to acquire in-depth knowledge of network and host security technologies and products
Strong written and verbal communication skills
Passionate about innovation and enjoys the challenges of creating something new
Stays current with evolving technologies via formal training and self-directed education
Any Security related certification(s)
We’d Love to See
An Understanding of the intelligence cycle
SANS SEC460: Threat and Vulnerability Assessment
SANS SEC487: Open-Source Intelligence Gathering and Analysis
SANS FOR578: Cyber Threat Intelligence
Any other Insider Threat related certification, procedure knowledge, experience
Impact You'll Make
TransUnion’s energetic and welcoming environment encourages innovation and collaboration. In addressing dynamic cybersecurity challenges, we empower our people with opportunities to hone current skills while inspiring and supporting creation and attainment of new capabilities.
This role will play a key part in developing and utilizing GITP’s risk-based scoring capability
Collaborate with UEBA technical support and cybersecurity engineers to best configure UEBA tools in order to map the company based on access and behavior
Support all GITP analytic and interpretive cybersecurity intelligence efforts in order to identify, monitor or remediate Tactics, Techniques, and Procedures used by potential or actual insider threat
Utilize tools and processes for sharing intelligence information and supporting GITP investigations
Provide actionable insights, guidance and subject matter expertise to the GITP UEBA Lead and GITP Director
Utilize cybersecurity intelligence to improve hunt and lead generation efforts through threat modeling
Participate in proactive hunting exercises, retrospective searching for known indicators of malicious activity
Coordinate with Data Loss Prevention, security operations and incident response staff to tune and improve detection capabilities or to aid in investigations or respond to incidents
***This role can be based remotely anywhere in the USA***