Your role

　　Are you a cybersecurity professional with hands on experience identifying Insider threats? Do you routinely work closely with business, legal, compliance, and technology stakeholders to investigate incidents, improve processes through technology, policy, and employee education? Do you have knowledge of insider threat frameworks and best practices? Do you have hands on experience with User/Entity behavior analysis tool implementation or operationalization? Are you self-driven, motivated and have experience working on a global security team?

　　We are looking for an Insider Threat Analyst to:

　　• utilize investigation techniques to deter, detect, and mitigate Insider Threat activity in collaboration with business, HR, line manager, and other key clients

　　• monitor, analyze, and interpret system logs for events and incidents reflective of unauthorized access or operational irregularities and escalates for action as appropriate

　　• develop response strategies and technical support documents, summaries, reports, presentations and other designated products that help support the Insider Threat program

　　• assist in the Identification, implementation, and management of associated technologies, services and solutions needed for the insider threat program to operate

　　• operate effectively on a global team with limited oversight supporting "follow the sun" operational model

　　Join us

　　At UBS, we embrace flexible ways of working when the role permits. We offer different working arrangements like part-time, job-sharing and hybrid (office and home) working. Our purpose-led culture and global infrastructure help us connect, collaborate, and work together in agile ways to meet all our business needs.

　　From gaining new experiences in different roles to acquiring fresh knowledge and skills, we know that great work is never done alone. We know that it's our people, with their unique backgrounds, skills, experience levels and interests, who drive our ongoing success. Together we're more than ourselves. Ready to be part of #teamUBS and make an impact?

　　Disclaimer / Policy Statements

　　UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.

　　Your team

　　You will be working in the Insider Threat Program, as a member of the Technology Information Security Office (TISO), within Technology Services (TS). The TISO organization is responsible for the technical aspects of our cyber security and information security at UBS. This includes building and managing the technical security systems and infrastructure we have globally to managing our complex identity and access management.

　　The Insider Threat Program is a global team with presence in Switzerland, UK, USA, and Singapore, focusing on pro-active defense and strong insider threat management capabilities. This role is based in Nashville, within the Insider Threat - Americas Team.

　　Diversity helps us grow, together. That's why we are committed to fostering and advancing diversity, equity, and inclusion. It strengthens our business and brings value to our clients.

　　Your expertise

　　• ideally 3+ years of combined hands on experience within the fields of Insider Threat & Information Security, with past job roles in security threat monitoring related work

　　• strong to advanced understanding of insider threat best practices, operations and current threat landscape and using these skills to effectively monitor, triage, and investigate insider threats across a complex and diverse global enterprise

　　• knowledge and/or operational experience or implementation of insider threat related technologies, including DLP, UEBA, Email Security, EDR, Web Proxy, Data Protection, and IAM

　　• strong understanding or experience working with information security requirements, policies, and regulations supporting security control compliance activities

　　• advanced problem solving and analytical skills to collect and analyze disparate threat indicators and develop correlations to enhance ongoing detection alerts and capabilities and use insider tradecraft knowledge to assist in designing, building, testing, and implementing Insider Threat use-cases utilizing various security event data sources

　　• able to perform hands on analysis and triage of potential Insider Threats and maintain strong relationships with clients across our firm , with experience in understanding or writing complex event search correlations supporting detection analytics involving security event data to triage, investigate and respond to insider threat events

　　• advanced degree in computer science or cyber related field and/or certified in one or more fundamental to advanced cyber domains like CompTIA Security+, CompTIA CySA+, GSEC, GCIA, CISSP or equivalent additional years of experience in cyber threat monitoring operations related job roles

　　• act as an independent InT technical and operational resource, advising on independent projects, serving as an InT operations trainer and serve as both a technical and investigative escalation point supporting InT operational monitoring and response

　　"At UBS, we appreciate our Veterans and are committed to providing opportunities in Financial Services."

　　LI-UBS

　　UBS-MOGUL

　　About us

　　UBS is the world's largest and the only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors..

　　We have a presence in all major financial centers in more than 50 countries.

　　How we hire

　　This role requires an assessment on application. Learn more about how we hire: www.ubs.com/global/en/careers/experienced-professionals.html