Pour rester informé sur nos opportunités :
    Rejoignez notre communauté de Talents

    L1 Insider Threat Analyst

    Philippines

    L1 Insider Threat Analyst

    • 202406889
    • Philippines
    • Closing on: Jan 31 2025

    Description

    We are seeking passionate people to grow the Cyber Security team within WTW and provide an excellent service and trusted expertise to all parts of our business. We have an exciting opening for a skilled and experienced L1 Insider Threat Analyst. As part of the Cyber Defence department, this role will triage and monitor Insider Threat and Data Loss Prevention (DLP) alerts. Reporting to the L1 Insider Threat Manager, this role is suited to someone who has Microsoft Purview DLP and Insider Threat analyst experience. The L1 team serves as the first line of defence against insider threats, promptly identifying and responding to potential risks to the organisation.

    As part of the Cyber Defence department, this role will triage and monitor Insider Threat and Data Loss Prevention (DLP) alerts. Reporting to the L1 Insider Threat Manager, this role is suited to someone who has Microsoft Purview DLP and Insider Threat analyst experience. The L1 team serves as the first line of defence against insider threats, promptly identifying and responding to potential risks to the organisation.

    The Role

    • Perform initial system information analysis and triaging of Insider Threat and DLP alerts across the various egress channels in both on premise and cloud environments.
    • Monitor Insider Threat and DLP alerts using available protection tools to respond, triage, and escalate as needed.
    • Escalate Insider Threat and DLP alerts which require further investigation by the Global Security Operations Centre or L2 Insider Threat team.
    • Adhere to established security policies and procedures while handling alerts to ensure consistency, compliance, and effective triage.
    • Analyse alert patterns to properly interpret and prioritise threats with available DLP and Insider Threat tools.
    • Contribute to the fine tuning of rules across the detection tools by highlighting pain points to the L1 Insider Threat Manager.
    • Contribute to the development and improvement of operational documents.

    Secondary responsibilities:

    • Other relevant tasks as designated by the L1 Insider Threat Manager.
    • Provide support to projects and initiatives that enhance data protection policies and standards.

    Qualifications

    The Requirement

    • It is essential that you have experience within a DLP or Insider Threat Analyst role in a global enterprise organisation. 
    • Relevant Microsoft Qualifications for Purview DLP, Defender and Insider Risk Management (IRM).
    • A good operational knowledge of Microsoft Purview DLP, Defender and IRM modules.
    • Good analytical and triage skills to identify complex security issues and respond at the same level with a technical understanding of when to escalate impacting security events.
    • Must possess requisite oral communication and writing skills.
    • Must be self-motivated and capable of independent work while operating in a geographically and culturally diverse peer group.
    • Must exhibit a history of reliability and good decision-making skills due to the trust imparted in them as a Insider Threat analyst.

     

    Beneficial:

    • Awareness of data protection laws, regulations, and compliance requirements (e.g., GDPR, CCPA, HIPAA).
    • Entry-level Cyber Security qualifications such as Comptia Security+
    • Understanding of common security tools and technologies such as SIEM.
    • Prior experience in cyber security roles in areas such as incident response, threat detection or security operations.

    WTW is an Equal Opportunity Employer

    Apply Now

    Pas toi?

    Merci

    Contact non sollicité

    Tout curriculum vitae ou profil de candidat non sollicité soumis via notre site web ou receptionné sur les adresses emails électroniques des employés de Willis Towers Watson est considéré comme la propriété de Willis Towers Watson et n’est pas soumis au paiement de frais d’agence.

    Pour être une agence / un cabinet de recrutement autorisé par Willis Towers Watson, cette agence / ce cabinet doit avoir un accord écrit formel existant signé par un recruteur autorisé de Willis Towers Watson et être dans une relation de travail active avec l’organisation.

    Les CV doivent être soumis conformément à notre processus de présentation de candidats, ce qui inclut le fait d’être activement engagé dans la recherche en question. De même, pour nos agences de recrutement/firmes de recherche autorisées, si le processus de présentation de candidats n’est pas respecté, aucun frais d’agence ne sera payé par Willis Towers Watson.

    Willis Towers Watson est un employeur promouvant l’égalité des chances. Si vous souhaitez que vos coordonnées soient sauvegardées en vue d’un examen ultérieur, veuillez envoyer un courriel à : Agency.inquiries@willistowerswatson.com .

    Nos bureaux

    Nos collaborateurs sont présents dans plus de 140 pays : de Mumbai à Londres, en passant par Manille et New York, du Moyen-Orient à l’Amérique latine. Cette dimension internationale que nous retrouvons dans la plupart de nos projets est une source d’opportunités de collaboration et de croissance incroyables. Parcourez la carte ci-dessous pour voir jusqu’où une carrière chez Willis Towers Watson pourrait vous mener.

    Rencontrez nos collaborateurs