Insider Threat Management Lead

Job Description

NBCUniversal is one of the world's leading media and entertainment companies.
Our impact is rooted in improving the communities where our employees, customers, and audiences live and work. We have a rich tradition of giving back and ensuring our employees have the opportunity to serve their communities. We champion an inclusive culture and strive to attract and develop a talented workforce to create and deliver a wide range of content reflecting our world.

Job Description
The Insider Threat management Lead will be a critical team member within the new Versant Cyber organization. This individual is responsible for collaborating across Busisnes's HR, Legal and the entire cyber team, to oversee and execute complex investigations into cybersecurity incidents, insider threats, anti-piracy and violations of security policy across the organization involving employee misconduct, data loss, IP theft, Content loss and other internal threats. As part of the investigations and insider threat team, the successful candidate will role play a critical part in safeguarding the company's people, data and content, and infrastructure by uncovering and responding to malicious or negligent activities.

Responsibilities:
Key areas of focus for the Investigations Lead include investigations leadership, technical analysis and forensics, insider threat detection, and program governance. The successful candidate will be responsible for the following activities:
• Coordinate investigative efforts across cybersecurity, physical security, HR, legal, and compliance teams.
• Serve as the primary escalation point for critical or high-risk investigative cases.
• Promote, foster, and advocate for an environment of collaboration, diversity, and inclusion.
• Conduct detailed forensic analysis of logs, endpoints, network activity, and digital evidence to uncover root causes and attribution.
• Deliver thorough investigative reports with clear findings, timelines, supporting evidence, and recommendations for remediation or disciplinary actions.
• Brief executive leadership on high-impact cases, investigation trends, and systemic vulnerabilities.
• Maintain awareness of emerging threats and apply investigative techniques accordingly.
• Work closely with the Security Operations Center (SOC) and threat intelligence teams to validate suspicious behavior and correlate indicators.
• Help establish and maintain investigative standards, workflows, and documentation practices.
• Monitor digital platforms for unauthorized content distribution
• Flag and report piracy incidents IAW Versant Media policy
• Assist in takedown request and DMCA filings
• Ensure investigative activities comply with legal, regulatory, and ethical requirements related to privacy, labor law, and corporate governance.
Qualifications
Basic Requirements:
• 5+ years working in Cyber Defense with experience in cybersecurity investigations, digital forensics, corporate security, detection engineering, or similar functions.
• Previous experience supporting or leading incident response or detection engineering functions.
• Proven ability to lead complex investigations from inception to closure with minimal oversight.
• Strong technical expertise in log analysis, endpoint forensics, SIEM/EDR platforms, and evidence preservation techniques.
• Deep understanding of insider threat indicators, data exfiltration patterns, and cybercrime tactics.
• Ability to manage sensitive cases with discretion and communicate clearly to both technical and non-technical stakeholders.
• Ability to be on call and provide support during non-traditional working hours.
• Bachelor's Degree in an IT related field and/or equivalent work experience.

Desired Characteristics:
• Previous experience working in multiple large complex environments and specifically within the Cyber Defense components of those organizations.
• Previous experience working in cyber defense and/or information security functions in the media and advanced technology industries.
• Previous experience working with network tools and technologies such as firewall (FW), proxies, IPS/IDS devices, full packet capture (FPC), and email platforms.
• Experience analyzing trends in digital infringement and propose countermeasures or mitigations.
• Experience in leading investigations both employee behavior and Piracy related
• Previous experience conducting static, dynamic, or reverse engineering malware analysis.
• Experience in applying security concepts to Cloud computing (AWS, Azure, GCP).
• Relevant certifications (GCIA, GCIH, GCFA, GNFA, etc.).
• Master's Degree in an IT related field.
Additional Requirements:
• This position is eligible for company sponsored benefits, including medical, dental and vision insurance, 401(k), paid leave, tuition reimbursement, and a variety of other discounts and perks. Learn more about the benefits offered by NBCUniversal by visiting the Benefits page of the Careers website. Salary range: $120,000 - $150,000 (bonus eligible)
• Fully Remote: This position has been designated as fully remote, meaning that the position is expected to contribute from a non-NBCUniversal worksite, most commonly an employee's residence.

Jobcode: Reference SBJ-86vmb9-216-73-216-129-42 in your application.