Director, Insider Threat

The Opportunity

We are advancing an enterprise Insider Threat capability designed to protect the company’s most critical assets from misuse or mishandling while reinforcing a culture of trust and accountability. This role will lead the strategy and execution of a modern insider risk program that integrates behavioral analysis, cyber telemetry, and investigative discipline to identify and manage human-driven risk.

The Director of Insider Threat will operate at the intersection of cybersecurity, workforce risk, and business operations. This leader will translate critical asset intelligence into targeted monitoring and detection, ensuring insider risk defenses are aligned to what matters most. The role requires close partnership with HR, Legal, Privacy, and cybersecurity operations to deliver consistent, fair, and risk-informed outcomes.

This position shapes how the enterprise protects trusted access at scale.

The Team

The Insider Threat organization is a multidisciplinary function responsible for detecting and managing insider-driven risk across employees, contractors, and third parties. The team combines investigative rigor, analytical depth, and strong professional judgment.

Core capabilities include:

• Behavioral risk monitoring and signal analysis.
• Insider threat investigations and case management.
• Cyber deception and honeypot operations.
• Workforce telemetry correlation.
• Risk documentation and executive reporting.
• Cross-functional coordination with HR, Legal, Privacy, and Compliance.

The Director will recruit, develop, and lead a high-trust team capable of handling sensitive matters with professionalism and discretion.

The Impact

The Insider Threat function operationalizes protection of the enterprise’s most sensitive assets by aligning monitoring and investigations to critical data context.

The Director of Insider Threat will:

• Establish and mature the enterprise insider threat program.
• Align detection and monitoring to crown-jewel asset priorities.
• Enable early identification of misuse or mishandling risk.
• Strengthen workforce trust governance and accountability.
• Improve investigative consistency and defensibility.
• Integrate insider risk intelligence into cyber operations.
• Support executive visibility into workforce risk trends.
• Reduce high-impact human-driven cyber incidents.

This role strengthens enterprise confidence in how trusted access is governed and protected.

The Minimum Qualifications

• 8+ years of experience in cybersecurity, insider threat, investigations, intelligence, or related risk disciplines.
• Authorized to work in the U.S. without current or future sponsorship.

Preferred Qualifications

• Demonstrated experience leading insider risk, investigations, or fraud programs.
• Strong understanding of behavioral risk indicators and cyber telemetry.
• Experience working cross-functionally with HR, Legal, Privacy, or executive stakeholders.
• Proven leadership experience managing technical or investigative teams.
• Ability to manage sensitive matters with discretion and fairness.
• Strong executive communication and reporting skills.
• Experience handling confidential investigations or high-risk employee matters.
• Experience establishing or scaling insider threat programs.
• Background in digital forensics, intelligence analysis, or behavioral investigations.
• Familiarity with deception technologies and adversary engagement.
• Knowledge of workforce privacy and employment law considerations.
• Experience in highly regulated environments.
• Relevant certifications (CISSP, CISM, GIAC, or investigative credentials).
• Degree in cybersecurity, intelligence studies, psychology, criminal justice, or related field.
• Experience briefing executives on workforce risk trends.

#LI-SC1