DescriptionGlobal Security (GS) protects the firm's employees and assets throughout the world. This responsibility includes the development of security and safety policies and procedures, regulatory and legislative compliance, corporate aviation, guard management, alarm response, crisis management, ATM, branch and corporate building security and customer safety, physical crime investigations, workplace violence, fire and life safety, pre-employment screening, fraud and employee investigations.
Within GS, the Threat Detection and Analysis team is responsible for identifying potential threats against the firm and its workforce from internal and external actors and developing strategies to mitigate those threats to protect the firm’s reputation, workforce, clients, and assets.
Job Description:
We are seeking a highly skilled and motivated Proofpoint ObserveIT Engineer to join our Global Security Insider Risk Analysis function. This individual will be instrumental in developing, configuring, and optimizing insider risk use cases to prevent, detect, and respond to internal threats. The candidate will work closely with cross-functional teams to create policies and rules tailored to our institution's needs, ensuring the robustness of our insider threat program.
Job Responsibilities:
- Design and implement comprehensive insider risk policies and rules using Proofpoint ObserveIT.
- Develop and configure insider risk use cases to accurately identify potential insider threats.
- Generate and analyze reports and metrics to measure the effectiveness of the insider risk monitoring solution and identify areas for improvement.
- Collaborate with IT, cybersecurity, and business units to understand requirements and integrate insider risk solutions into the broader security architecture.
- Conduct regular audits and reviews of insider risk policies and practices to ensure compliance with regulatory requirements and industry standards.
- Provide expert guidance and training to stakeholders on insider risk management best practices and the utilization of Proofpoint ObserveIT.
- Stay abreast of the latest insider risk trends, technologies, and regulatory changes to continuously enhance the institution's insider risk posture.
Required Qualifications, Capabilities, and Skills:
- Bachelor’s degree in Computer Science, Information Security, or a related field. Advanced degrees or certifications (CISSP, CISM, etc.) are highly advantageous.
- Minimum of 3 years of experience in insider risk management, cybersecurity, or a related field, with a strong focus on policy development and threat analysis.
- Proven expertise in Proofpoint ObserveIT or similar insider threat management platforms, including policy creation, rule configuration, and report generation.
- Familiarity with regulatory requirements and industry standards related to insider risk and data protection (e.g., GDPR, SOX, ISO 27001).
- Strong analytical and problem-solving skills, with the ability to analyze complex data and generate actionable insights.
- Excellent communication and interpersonal skills, with the ability to effectively collaborate with technical and non-technical stakeholders.
- Ability to work independently in a fast-paced and dynamic environment.
