Senior Insider Threat Analyst

Job Title: Senior Insider Threat Analyst
Reports to: Insider Threat Team Lead
Location: Los Angeles, CA - Hybrid Remote (Must be a CA, UT, TX, MD, PA, VA, IN, WA, or District of Columbia resident and have the ability to come into the office as needed)
Job Class: Exempt
About SHEIN Technology
SHEIN Global Security and Risk Management (GSRM) is a global security organization that oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN's global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.
Here, innovation isn't simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.
Position Summary:
The Insider Threat Analyst is responsible for technical analysis and investigation of insider threats to protect the company's customers, employees, assets, and infrastructure from malicious threats. The Insider Threat Analyst will use various platforms and tools such as User and Entity Behavior Analysis (UEBA), SIEM, Data Loss Prevention (DLP), and digital forensic tooling. This Insider Threat Analyst will operate in compliance with all established polices and SLAs, across all aspects of the security operating framework.
The Insider Threat Analyst must be familiar with insider threat industry standards and best practices, and must be able to effectively work with development, engineering, and operational counterparts, across a broad deeply technical environment in all security areas common within an e-commerce and technology industry. Candidate should also have extensive experience in security data analytics, intelligence & threat hunting and digital forensics. Candidate will also assist their leadership with ensuring all security tools and technologies are properly supported, implemented and sufficiently meet the needs for which they are deployed to protect SHEIN confidential and proprietary data.
Core Responsibilities:

• Able to use both technical and non-technical capabilities, understand wide-ranging critical assets, use insider threat/risk management industry recognized principles, standards, and best practices, and is knowledgeable in global laws and regulations that could impact the development of the program.
• Active threat hunting within the SHEIN network using a formalized process.
• Analysis of automated data access checks across various platforms to help detect abuse and data exfiltration.
• Assist in building automation and detection models to support identification of anomalous activity and response activities to mitigate insider threats at scale.
• Identify gaps in our infrastructure, and work with business partners to gain visibility through logging and detection.
• Provides in-depth reporting of internal investigations.
• Performs maintenance and upkeep of the forensics environment and analysis tools.
• Collects, maintains and analyzes threat intelligence from both internal and external sources
• Develops and tests custom detection signatures and implements manual and automated threat response mechanisms.
• Works in partnership with Corporate Security, GSOC, IT organizations, HR and Legal as an escalation resource for insider threat investigations.
• Maintains the strict confidentiality of sensitive information
• Performs other duties as assigned or required
• Establish credibility throughout the organization by earning the reputation for being a proactive operation and change agent.
• Sustain high-availability service levels and ensure fulfillment of business-wide service levels and operational support objectives.
• Demonstrates continuous effort to improve operational performance, streamline work processes and work cooperatively to provide quality, seamless customer service.

We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.
Skills and Qualifications:

• Possess a Bachelor's degree or higher in the field of engineering, computer science or equivalent advanced technology field of study. Equivalent professional experience may be substituted in lieu of education.
• Must demonstrate a general understanding of enterprise networking and server environments.
• Strong working and practical knowledge of digital forensics and analysis
• Experience with insider threat technologies (SIEMs, Data Loss Prevention solutions, host forensic solutions, UEBA, etc.).
• Exposure to AWS services such as EC2, S3, Lambda, and RDS.
• Exposure to data science and analytics solutions applicable to the insider threat detection space.
• Must have experience organizing, planning, scheduling, conducting, and managing work assignments to meet project milestones or established completion dates.
• Must possess the ability to understand new concepts quickly and apply them in an evolving environment while contributing to the development of new processes.
• Working knowledge or experience in Python, PowerShell, SQL, and similar scripting languages desired.
• Ability to work independently or in a team environment is essential as is the ability to work extended hours as required.
• High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity
• Must be able to support on-call, escalation and high-paced/ fast tempo operating environments

SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment.
Pay: $82,800.00 min - $129,300.00 max. annually.