Share this Job

Insider Threat Analyst 2


Newport News, Virginia, United States


The Insider Threat Analyst will conduct technical analysis of various internal company data sources for indicators of internal threats in support of the Corporate Insider Threat Program. Using user behavior analytics tools, identify and refer potential threats to appropriate entities. Provide case support as necessary. Work with various stakeholders to refine alerts based on triage results and current events. Develop briefings based on trend analysis and identify new opportunities for program maturation.


  • Ability to apply critical thinking in evaluating different scenarios
  • Ability to handle confidential and sensitive information with appropriate discretion
  • Ability to prioritize work and operate independently; know when to seek guidance
  • Ability to organize and manage multiple projects simultaneously
  • Proficiency in MS Office - Word, Excel, Outlook and PowerPoint


Preferred Qualifications: 

  • Experience as an insider threat detection analyst, cyber security, intelligence or counterintelligence analyst with specific understanding of the tactics, techniques and procedures employed by company insiders and/or criminal adversaries.
  • Experience with insider threat detection systems and procedures
  • Experience using Data Loss Prevention (DLP), Security Information and Event Management (SIEM), and User and Entity Behavioral Analytics (UEBA) tools to execute complex search queries related to insider threats and generate reports.
  • Working understanding of information derived from: DLP, SIE, UEBA, Endpoint Detection and Response, and Network traffic.
  • Certified National Threat Analyst (CNTA) or Certified Cyber Threat Analyst (CCTA)
  • Security certifications (CEH, Security +, CISSP, etc)
  • Excellent communication and organizational skills.
  • Outstanding work ethic with a passion for information security.
  • High quality analytical, investigative and problem-solving skills and attention to detail
Basic Qualifications

Bachelor's Degree and 2 years of experience. Master's Degree and 0 years of experience. A relevant professional certification can be substituted for a Bachelor's Degree.

Job Description
Investigates and analyzes all response activities related to cyber incidents within the network environment or enclave. Collects data from a variety of Computer Network Defense (CND) tools, including intrusion detection system alerts, firewall and network traffic logs, and host system logs to analyze events that occur within their environment. Provides operations for persistent monitoring of all designated networks, enclaves, and systems. Interprets, analyzes, and reports all events and anomalies in accordance with computer network directives, including initiating, responding, and reporting discovered events. Executes first level (initial) responses and addresses reported or detected incidents. Conducts network of software vulnerability assessments and penetration testing utilizing reverse engineering techniques. Perform vulnerability analysis and exploitation of applications, operating systems or networks. Identifies intrusion or incident path and method. Isolates, blocks or removes threat access. Evaluates system security configurations. Evaluates findings and performs root cause analysis. Performs analysis of complex software systems to determine both functionality and intent of software systems. Resolves highly complex malware and intrusion issues. Contributes to the design, development and implementation of countermeasures, system integration, and tools specific to Cyber and Information Operations. May prepare and presents technical reports and briefings. May perform documentation, vetting and weaponization of identified vulnerabilities for operational use.

Req ID: 1640 

Department: T51 CYBERSECURITY 

Entity: NN SHIPBUILDING (0265) 

Travel Required: Yes, 10%-25% of the time 

Shift: 1st 

Relocation: No relocation assistance available 

Education: Bachelor's Degree 

Virtual/Telework Opportunity: Yes-May Consider Occasional/Part-time Teleworking for this position 

US Citizenship Required for this Position: Yes 

Clearance Type: No - Clearance Not Required to Start  


Company Statement:

Huntington Ingalls Industries is America’s largest military shipbuilding company and a provider of professional services to partners in government and industry. For more than a century, HII’s Newport News and Ingalls shipbuilding divisions in Virginia and Mississippi have built more ships in more ship classes than any other U.S. naval shipbuilder. HII’s Technical Solutions division provides a wide range of professional services through its Fleet Support, Mission Driven Innovative Solutions, Nuclear & Environmental, and Oil & Gas groups. Headquartered in Newport News, Virginia, HII employs more than 40,000 people operating both domestically and internationally.


EEO Statement:

Huntington Ingalls Industries is an Equal Opportunity/Vets and Disabled Employer. U.S. Citizenship may be required for certain positions.