Chief of Cybersecurity - Insider Threat Analytics

Responsibilities for this Position

Overview
The Chief of Insider Threat Analytics is responsible for overseeing user activity monitoring and behavioral analytics across EBs enterprise network to identify, assess, and mitigate insider threats. This position reports directly to the Chief Information Security Officer (CISO). The role ensures compliance with DFARS, NIST SP 800 171, CMMC, NISPOM Insider Threat Program, GD Corporate Policy, and other applicable regulations. The position leads a team of analysts responsible for insider threat detections, analytics, investigation support, and program operations.

Responsibilities
Oversee day to day operations of insider threat monitoring tools and analytics platforms
Lead development, tuning, and maintenance of behavioral analytics and anomaly detection models
Manage Insider Threat Analytics policies, procedures, and escalation workflows
Direct user activity monitoring across endpoints, networks, identity systems, collaboration tools, and data repositories
Conduct periodic assessments of insider threat risk, trends, and program maturity
Coordinate investigations with Physical Security, HR, Legal, and Information Technology teams
Validate security controls related to user privileges, data access, and high risk user groups
Maintain insider threat related documentation, processes, and audit artifacts
Oversee configuration management related to insider threat detection and monitor impacts of system changes
Provide regular reporting, metrics, and briefings to leadership
Ensure quality assurance of insider threat analytics and detection effectiveness

Skills / Competencies
Strong leadership and team management capabilities
Ability to work independently in a fast paced environment
Experience collaborating with cross functional teams spanning Physical Security, HR, Legal, and Information Technology organizations
Strong analytical, problem solving, and decision making skills
Excellent written, verbal, and presentation skills
Strong interpersonal and documentation skills

Required:

• Bachelors degree in a technical field, such as engineering, computer science, or criminal justice
• Minimum of 5 years of experience in Insider Threat, Security Operations, or Cybersecurity Analytics
• Professional advanced cybersecurity certifications such as CISSP, CISM, or various SANS courses
• Detailed knowledge of DFARS, NIST SP 800 171, CMMC, NISPOM Insider Threat Program guidance
• Experience with Forensic Collection platforms, SIEM platforms, and behavior-based user monitoring tools
• Experience interacting with government representatives, auditors, or internal security personnel
• Secret security clearance is required

Preferred:

• Masters degree in a business field
  Previous law enforcement experience
• Experience supporting an Insider Threat Program in defense or regulated industries

PI284440591