Senior Security Analyst II - Insider Threat (Bartlett)
AbbVie in Bartlett, IL
Industry: Defense/Security Clearance - Others
Type: Full Time
$64,725.00 - 146,700.00
The Senior Security Analyst II will advance and mature AbbVie's Insider Threat Program. The program will focus on the ability to detect data security issues caused by the inadvertent or intentional efforts of personnel (employees, contractors, and partners) authorized to access AbbVie information and systems. The capabilities will focus on user activity abnormalities, using innovative monitoring strategies include machine-learning based behavioral techniques as well as traditional contextual use cases. The Insider Threat Program will also mature the ability to identify compromised authorized personnel credentials through monitoring strategies across enterprise authentication, data loss prevention, file access audit logs, and other security/system logs.
Define behavioral analytic use cases to identify suspicious activity for investigation by Incident Response teams.
Document and adhere to a consistent detection mythology to ensure a defendable and consistent approach to identifying abnormal activity
Coordinate with legal, privacy, and human resource partners on the intention and scope of the Insider Threat Program
Collaborate with Information Security teams on the selection, configuration, and operational use of Behavior Analytics platforms (aka UBA, UEBA)
Define operational metrics and KPI to define the operational state of the Insider Threat program
Influence and enhance the organization's Data Protection strategy across people, process, and technology
Support efforts to automate incident detection and response activities, focused on Behavior Analytics technologies and related incident analysis
Develop reports and metrics for leadership across BTS, Legal, Human Resources, and Office of Ethics and Compliance
Ability to analyze and understand technical information; and ability to author clear and concise reports and presentations
Ability to successfully interact with non-technical in-business contacts
Strong familiarity with data classification concepts and processes
Deep understanding of data loss and data protection processes
3+ years operating Behavior Analytics technologies, examples include SAS, Securonix, Gurucul, Exabeam, and Interset
12+ years of overall experience and atleast 10 years in an information security position
Experience with building a relevant security monitoring and response capability, ideally related to Insider threat
Experienced in a wide variety of technical solutions focused on data protection and cyber security; and experience with data loss prevention products.
College degree in computer science or related field