Insider Threat UEBA Analyst
What We'll BringAt TransUnion, we have a welcoming and energetic environment that encourages collaboration and innovation we’re – consistently exploring new technologies and tools to be agile. This environment gives our people the opportunity to hone current skills and build new capabilities, while discovering their genius.
Come be a part of our team – you’ll work with great people, pioneering products and cutting-edge technology.
What You'll BringBS or BA degree preferably in computer or security related field or any combination of equivalent education, experience, and formal training that allows you to meet the requirements of this job
Previous experience in an information security operations role coupled with a strong understanding of the threat landscape
Excellent technical capabilities including an understanding of enterprise security network architecture, user and entity behavior analytics and other risk-based security operations
An analytical mindset coupled with a proven ability to examine and utilize raw data and create refined timely intelligence relevant to Insider Threat operations
Willingness to acquire in-depth knowledge of network and host security technologies and products
Passionate about innovation and enjoys the challenges of creating something new
We’d Love to See:
An Understanding of the intelligence cycle
SANS SEC460: Threat and Vulnerability Assessment
SANS SEC487: Open-Source Intelligence Gathering and Analysis
SANS FOR578: Cyber Threat Intelligence
Any other Insider Threat related certification, procedure knowledge, experience
Impact You'll MakeThe GITP UEBA Analyst will play a key role in developing and utilizing GITP’s risk-based scoring capability
Collaborate with UEBA technical support and cybersecurity engineers to best configure UEBA tools in order to map the company based on access and behavior
Support all GITP analytic and interpretive cybersecurity intelligence efforts in order to identify, monitor or remediate Tactics, Techniques, and Procedures used by potential or actual insider threat
Utilize tools and processes for sharing intelligence information and supporting GITP investigations
Provide actionable insights, guidance and subject matter expertise to the GITP UEBA Lead and GITP Director
Utilize cybersecurity intelligence to improve hunt and lead generation efforts through threat modeling
Participate in proactive hunting exercises, retrospective searching for known indicators of malicious activity
Coordinate with Data Loss Prevention, security operations and incident response staff to tune and improve detection capabilities or to aid in investigations or respond to incidents
The Global Insider Threat Program (GITP) User & Entity Behavior Analytics (UEBA) Analyst is a cybersecurity professional with experience identifying threats, vulnerabilities and exploitations, processing, analyzing and operationalizing cybersecurity intelligence as well as other threat indicators in order to enhance detection and prevention of insider threats within TransUnion’s environment. In addition to these technical proficiency, the GITP UEBA Analyst demonstrates excellent communication skills to include the ability to explain technical data relevance succinctly to the GITP Director and other TransUnion senior leadership.