CrawlJobs Logo
Capital One Logo Capital One · IT - Administration

Risk Manager, Insider Threat

United States, McLean 179400.00 - 245600.00 USD / Year · Job Posted March 22, 2026
Apply Position
Job Link Share

Job Description

The Risk Manager, Insider Threat represents a unique opportunity for those with hands-on cybersecurity technical and operational experience who have a desire to leverage and enhance that expertise in a risk management organization. This individual will have the ability to use technical skills and cyber subject matter expertise to provide effective oversight, credible challenge, and expert advice to help manage and control risk associated with cyber operations. This position will play a key and influential role in assessing and challenging cybersecurity capabilities and operational effectiveness to drive action against areas of risk and concern. This role will play a key role in the review, risk identification, risk assessment, reporting, and effective challenge of cybersecurity controls, operational capabilities, and associated processes. This individual will provide subject matter expertise and oversight and effective challenge of key cybersecurity domains of Insider Threat, Threat Detection, and Incident Response. This role will contribute to the imposter and candidate integrity working groups and create materials for the conduct risk council.

Job Responsibility

  • Provide advisory, oversight, and effective challenge to the 1st Line of defense
  • Provide technical assessments of cybersecurity controls design and effectiveness
  • Draft assessments for senior management and other stakeholders, to include regulatory agencies and the Board of Directors, as needed
  • Stay current on emerging cyber threats and potential implications to the firm
  • Collaborate effectively with colleagues, stakeholders, and leaders across multiple organizations to achieve objectives
  • Coordinate program-related activities and deliverables to ensure effective collaboration within the team and across stakeholder groups
  • Proven track record of leading, mentoring, and influencing others
  • Ability to communicate clearly in written and verbal form
  • Ability to manage multiple projects while maintaining superior results
  • Ability to work individually and cross-functionally
  • Execution oriented and a self-motivator

Requirements

  • Bachelor’s degree or military experience
  • At least 3+ years of experience in the financial services industry or highly regulated industry (healthcare, energy, telecommunications)
  • At least 3+ years of experience in Insider Threat, including identifying imposters and fraudsters
  • At least 2+ years of experience in Incident Response within a Security Operations Center
  • At least 2+ years of experience with User and Entity Behavior Analytics (UEBA) or Security Incident and Event Management (SIEM) platforms
  • At least 2+ years of experience defining or tuning rules in UEBA and SIEM platforms
  • At least 2+ years of consulting, audit, or risk management experience

Nice to have

  • 2+ years of Threat Intelligence experience, including the curation and operationalization of threat intelligence feeds
  • Familiarity with NIST Cybersecurity Framework controls, NIST 800-53, ISO 27000-1
  • Cybersecurity certifications such as: Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • or Certified in Risk and Information Systems Control (CRISC)
  • Cloud certifications for Amazon Web Services (AWS) or Google Cloud Platform (GCP)

What we offer

  • comprehensive, competitive, and inclusive set of health, financial and other benefits that support your total well-being
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
Capital One - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Risk Manager, Insider Threat

8 matching positions

Insider Risk Manager

Location
Location
United States , Palm Beach Gardens
Salary
Salary:
96000.00 - 192000.00 USD / Year
berettaclima.it Logo
Beretta Clima Italia
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree
  • 5+ years of program management, cybersecurity operations, fraud investigations, or risk management
  • Must have unrestricted authorization to work in the USA. No visa sponsoring available.
Job Responsibility
Job Responsibility
  • Perform and oversee continuous monitoring of user activity across networks, systems, and applications to detect potential insider risks
  • Assist in investigating alerts and anomalies related to data loss prevention (DLP), access control, and privileged account usage
  • Support the development and enforcement of insider risk policies, procedures, and awareness programs
  • Collaborate with cybersecurity, HR, and legal teams to ensure proper handling of insider risk cases
  • Document findings, prepare reports, and maintain accurate case records for audits and compliance reviews
  • Perform periodic reviews of access rights and assist with identity and access management (IAM) processes
  • Maintain daily awareness of emerging insider threat tactics and develop improvements to monitoring tools and workflows
What we offer
What we offer
  • Health Care Benefits: Medical, Dental, Vision
  • Wellness incentives
  • Retirement Benefits
  • Time off and Leave: Paid vacation days, up to 15 days
  • paid sick days, up to 5 days
  • paid personal leave, up to 5 days
  • paid holidays, up to 13 days
  • birth and adoption leave
  • parental leave
  • family and medical leave
  • Fulltime
Read More
Arrow Right

Insider Risk Security Manager

The Insider Risk team is primarily focused on the security of our people and dat...
Location
Location
United Kingdom , Kingston
Salary
Salary:
Not provided
unilever.com Logo
Unilever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Excellent written and verbal communication skills and able to be understood by both technical and non-technical personnel
  • Proven ability to lead, develop, and motivate a team
  • The ability to lead through accountability with delegated responsibilities
  • Ability to manage conflicting priorities and multiple tasks
  • Stakeholder management and interpersonal skills at both a technical and non-technical level
  • Able to work in a collaborative environment with international team members
  • Outstanding critical reasoning and problem-solving skills
  • Customer-orientated, whether responding to queries or delivering new services
  • Skills in Programme and Project Management
  • Good experience in using Purview E Discovery
Job Responsibility
Job Responsibility
  • Ensuring the deployment and running of security tooling, in conjunction with the Tech & Ops team
  • Playing an active role in the definition and iteration of the Unilever Cyber Security transformation
  • Continuously explore and implement cost effective measures to optimize security investment
  • Influencing a broad range of stakeholders in various teams across the business, including IT architects, developers and engineers, programme managers, and business data owners
  • Managing and utilizing cyber security tooling and capabilities, including detection and monitoring activities
  • Investigating and managing investigations into any suspicious activities on our systems and taking any necessary steps to remedy them in a timely manner
  • Providing sensitive investigative services to other key UL functions
  • Reducing any risk or impact caused by a cyber incident
  • Advising the broader organization on security best practices where applicable
  • Fulltime
Read More
Arrow Right

Lead Insider Threat Investigator

The Insider Threat Lead Investigator is responsible for conducting high-risk, co...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
airbnb.com Logo
Airbnb
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10-12 years of experience in insider threat investigations, security, digital forensics, or related industries
  • Proven experience conducting high-risk, legally sensitive investigations involving corporate executives and critical business functions
  • Strong expertise in Windows, MacOS, and Chrome OS forensic tools
  • Experience in SQL-based forensic data correlation and behavioral anomaly analysis
  • Strong employment legal and commercial legal acumen, with experience handling workplace investigations and regulatory compliance
  • Familiarity in digital forensic tools
  • Advanced knowledge of Windows Event Viewer, MacOS Console, Chrome OS system logs for forensic evidence retrieval
  • Comprehension and skills in investigating cloud environments and Kubernetes
  • Experience with high-severity data deletion and asset retrieval in corporate environments
  • Ability to conduct investigative interviews and communicate findings clearly and effectively to legal, HR, and security teams
Job Responsibility
Job Responsibility
  • Conduct high-risk, complex insider threat investigations involving cybersecurity, financial misconduct, intellectual property theft, unauthorized access, and data exfiltration
  • Investigate identified threats produced by the Information Security Engineering team or from other internal reporting
  • Conduct technical investigations, guide OSINT research, perform subject interviews, evidence collection, data deletion, and asset retrieval
  • Ensure adherence to employment law, corporate policies, and regulatory requirements
  • Utilize a functional understanding of information security principles, practices, and frameworks
  • Investigate insider threat cases including financial misconduct, engineering production abuse, intellectual property theft, legal escalations involving executive personnel
  • Conduct structured investigative interviews
  • Manage incident response in coordination with Information Security, HR, Legal, and other relevant parties
  • Perform custom high-severity data deletions and secure asset retrieval
  • Collaborate with security engineering teams for forensic collection of digital evidence
  • Fulltime
Read More
Arrow Right

Insider Risk Lead

Brown & Brown is seeking an Insider Risk Lead to join our growing team remotely ...
Location
Location
United States , Daytona Beach; Dallas; Atlanta
Salary
Salary:
200000.00 - 225000.00 USD / Year
bbrown.com Logo
Brown & Brown UK
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in cybersecurity, information technology, risk management, or related field (or equivalent experience)
  • 7+ years of experience in cybersecurity, insider threat, digital forensics, SOC operations, or similar roles
  • Proven experience developing or managing insider risk or behavioral analytics programs
  • Strong understanding of data protection, access management, monitoring tools, and investigative methodologies
  • Superior communication and judgment, especially in sensitive or confidential situations
  • Experience in decentralized or federated enterprise environments (preferred)
  • Relevant certifications (e.g., CISSP, CISM, CEH, GIAC certified tracks) (preferred)
  • Experience with UBA, SIEM, DLP, endpoint detection, or cloud analytics platforms (preferred)
  • Experience working with HR, legal, or compliance leadership on risk matters (preferred)
Job Responsibility
Job Responsibility
  • Lead the design, governance, and maturity roadmap of the Insider Risk Program
  • Develop policies, standards, and procedures aligned to enterprise cybersecurity objectives and regulatory expectations
  • Establish operational models for monitoring, escalation, and executive reporting
  • Oversee behavioral and technical monitoring tools (e.g., UBA, DLP, and privileged activity analytics)
  • Conduct and/or coordinate insider risk investigations, ensuring accuracy, discretion, and appropriate documentation
  • Partner with Cybersecurity Operations to triage and interpret insider related alerts
  • Serve as the primary liaison to Legal, HR, Compliance, Technology, and business units for insider risk processes
  • Facilitate communication and training to promote a culture of awareness and shared accountability
  • Work within Brown & Brown’s decentralized structure to ensure alignment, transparency, and consistent practices
  • Develop and deliver dashboards, reports, and insights for cybersecurity leadership and executive stakeholders
What we offer
What we offer
  • Medical/Rx
  • Dental
  • Vision
  • Life Insurance
  • Disability Insurance
  • ESPP
  • 401k
  • Student Loan Assistance
  • Tuition Reimbursement
  • Free Mental Health & Enhanced Advocacy Services
  • Fulltime
Read More
Arrow Right

Security Operations Center Insider Threat Analyst - Assistant Vice President

The Info Security Ops Sr Analyst is an intermediate level position responsible f...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience
  • 1 certification or ability to earn within 12 months of joining preferred
  • Advanced Proficiency with Microsoft Office
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven analytical skills
  • Bachelor's degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Provide technical guidance to Citi, clients and vendors
  • Collaborate with Program Manager and cross-functional teams to develop comprehensive project plans, obtain business/technology resource commitment and define/document business requirements
  • Develop user acceptance test plans and coordinate their execution
  • Complete tasks to project deadlines and deliverables, including performing data analyses and trending reports
  • Report significant variances and develop corrective action plans
  • Ensure data quality throughout the lifecycle of assigned projects
  • Coach and train new team members as needed
  • Has the ability to operate with a limited level of direct supervision
  • Can exercise independence of judgement and autonomy
  • Acts as SME to senior stakeholders and /or other team members
  • Fulltime
Read More
Arrow Right

Security Engineer, Insider Threat Detection & Response

As a Security Engineer you will join our OpenAI engineers and researchers in bui...
Location
Location
United States , San Francisco; Seattle; New York City
Salary
Salary:
230000.00 - 385000.00 USD / Year
openai.com Logo
OpenAI
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years experience working in a detection/response or insider-risk role
  • Broad familiarity with operating systems and platforms such as macOS, Windows, Linux, and Kubernetes, along with experience in cloud infrastructure
  • Knowledge of modern adversary tactics and attack paths, data exfiltration techniques, and have experience running and leading incidents
  • Proficiency with a scripting language (e.g. Python, Bash, PowerShell, or similar)
  • Independently manage and run projects, balance preventative controls with user friction, and prioritize efforts for risk reduction
  • Motivated by securing transformative technology and can adapt familiar security frameworks to new risks in AI infrastructure
Job Responsibility
Job Responsibility
  • Innovate on Detection and Response infrastructure to engineer and automate end-to-end detection and investigation workflows
  • Develop, measure, and tune detection rules to ensure effective and sustainable operations
  • Drive projects across OpenAI’s technology stack with a focus on insider threats, ranging from access abuse and intellectual property theft to novel risks emerging within AI infrastructure
  • Partner closely with cross-functional stakeholders, including HR, Legal, and peer investigative teams, providing technical expertise and evidence to support investigations
  • Collaborate on cutting-edge AI research, and use AI to improve OpenAI’s Security posture
What we offer
What we offer
  • Medical, dental, and vision insurance for you and your family, with employer contributions to Health Savings Accounts
  • Pre-tax accounts for Health FSA, Dependent Care FSA, and commuter expenses (parking and transit)
  • 401(k) retirement plan with employer match
  • Paid parental leave (up to 24 weeks for birth parents and 20 weeks for non-birthing parents), plus paid medical and caregiver leave (up to 8 weeks)
  • Paid time off: flexible PTO for exempt employees and up to 15 days annually for non-exempt employees
  • 13+ paid company holidays, and multiple paid coordinated company office closures throughout the year for focus and recharge, plus paid sick or safe time (1 hour per 30 hours worked, or more, as required by applicable state or local law)
  • Mental health and wellness support
  • Employer-paid basic life and disability coverage
  • Annual learning and development stipend to fuel your professional growth
  • Daily meals in our offices, and meal delivery credits as eligible
  • Fulltime
Read More
Arrow Right

Insider Threat Program Analyst Intern

The Insider Threat Program Intern will support Arcfield's mission to detect, ass...
Location
Location
United States , Chantilly
Salary
Salary:
Not provided
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Current enrollment in a degree program related to Homeland Security, intelligence studies, cybersecurity, computer science, psychology, criminology, security studies, or a related field
  • Strong analytical and critical‑thinking skills, with the ability to interpret complex or incomplete data
  • Excellent written communication skills, especially in producing clear, structured analytical products
  • Ability to handle sensitive information with discretion and professionalism
  • Basic understanding of national security frameworks or risk analysis
  • Proficiency with Microsoft Office tools (Word, Excel, PowerPoint)
Job Responsibility
Job Responsibility
  • Analyze security‑relevant data from cybersecurity, personnel security, physical security, and Human Resource systems to identify potential insider risk indicators
  • Assist analysts with preliminary assessments, case triage, and development of structured analytical products
  • Conduct open‑source and internal research to support security led investigations and risk assessments
  • Prepare concise written summaries, timelines, and data visualizations for senior analysts and program leadership
  • Maintain and update analytic SOPs, workflows, and documentation
  • Participate in cross‑functional coordination with cybersecurity, program security, Human Resources, legal, and program management teams
  • Contribute to insider threat trend analysis, behavioral‑indicator research, and program metrics
  • Assist with awareness and training initiatives by developing analytic insights or supporting content creation
Read More
Arrow Right

Third Party Risk Manager

A highly motivated and hands-on professional to join the Supply Chain Security (...
Location
Location
Netherlands , Amsterdam
Salary
Salary:
Not provided
levy-professionals.com Logo
Levy Professionals
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Knowledge and experience with setting up projects & deliverables within supply chain security / Third-Party Risk Management (TPRM)
  • Proven experience in executing information security risk assessments
  • Knowledgeable on one or more areas such as security processes, technology architectures, network security, application security, and vulnerability management
  • Experience with the ServiceNow TPRM module is a significant advantage
  • HBO or University degree
  • Excellent stakeholder management skills
  • A strong ability to translate technical risks into business risks and vice versa
  • Hands-on, self-organised, willing to finish and deliver (execution power)
  • Service-oriented professional who enjoys taking on an internal consultancy role
  • The working language within the team is English
Job Responsibility
Job Responsibility
  • Govern and manage IT vendor relationships concerning performance on the security aspects of underlying contractual obligations
  • Execute Vendor Security Risk Assessments and perform necessary follow-up actions, focusing on material risks
  • Ensure that information security risks are identified and managed effectively throughout all stages of the relationship with external vendors
  • Review the applicability and quality level of assurance reports issued by third parties
  • Manage the IT security-related part of vendor contracts, working closely with 2nd line functions such as legal, compliance, and procurement on contractual changes
  • Actively stay up-to-date with emerging cyber security trends, risk, and threat developments, and share this knowledge to help integrate them into the assessment program
  • Help solve security-related questions, take initiative, and escalate in time if needed
  • Signal improvements related to the way of working inside the team and contribute to improving the excellence of the service offering
  • Work according to the DevOps & Agile methodology, improving Supply Chain Security services based on user stories
  • Occasionally investigate and resolve incidents as they occur
Read More
Arrow Right