Jobs · empllo

C

Insider Threat Engineer

Vantage Compute · Austin · Posted 1d ago

hybridlead
Apply on empllo

Available in 2 locations

Austin · hybrid Apply → Hybrid · hybrid Apply →

About the role

📋 Description Lead Insider Threat Digital Investigations across IR teams. Hunt for insider threats using SIEM, EDR, UEBA data sources. Develop detections, rules, and playbooks for insider threats. Collaborate with Legal, HR, Privacy; present findings to leadership. Ensure regulatory and privacy requirements are met in investigations. 🎯 Requirements 5+ years in technical security; 2+ years insider threat or investigations. Experience leading complex investigations with forensic tools (EnCase, FTK, X-Ways). Deep knowledge of SIEM (Splunk, Elastic), EDR (CrowdStrike, SentinelOne), UEBA. Strong scripting/programming skills (Python, PowerShell). Excellent written and verbal communication; explain tech to non-tech. Experience with legal and HR on sensitive matters. 🎁 Benefits Equal opportunity employer; commitment to diversity and inclusion. Reasonable accommodations for applicants with disabilities. Opportunity to work on large-scale internet infrastructure projects (Cloudflare initiatives). Collaborative, AI-enabled culture with rapid iteration.

Read the full posting on empllo

FAQ

Is the Insider Threat Engineer role at Vantage Compute remote?+

This Insider Threat Engineer position is listed as hybrid (Austin).

What seniority level is this Insider Threat Engineer role?+

This is a lead level position.

How do I apply for the Insider Threat Engineer role at Vantage Compute?+

Use the "Apply on empllo" button to open the original posting on empllo, where you can submit your application directly to Vantage Compute.