Insider Threat Hunt Analyst

About Northern Trust:

Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.

Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.

Northern Trust is seeking a skilled Insider Threat Hunt Analyst to join our Security Operations team. In this role you will proactively detect insider threats and attack techniques that may be present within the bank's environment. The Insider Threat Hunt Analyst will collaborate with Threat Intelligence, Cyber Threat Hunt ing and Insider Risk teams to identify opportunities to build and respond to insider tactics and techniques. This role will also develop new and innovative Insider hunt hypotheses and create and deploy detection rules to mature our threat detection capabilities.

Key Responsibilities:

• Conduct proactive threat hunts focused on potential insider threats using endpoint, network and clou d log data
• Develop and refine insider threat detection use cases
• Create and deploy insider focused threat detection rules
• Recommend improvements to insider monitoring, alerting and automation
• Collaborate with cross-functional teams on insider risk scenarios
• Stay informed on the latest insider threat trends, tactics and techniques.

Skills / Qualifications :

• 3+ years of experience in cybersecurity, preferably in Insider Threat , D igital F orensics, T hreat hunting, or"incident response
• Proficiency in writing and tuning detection logic in"SIEM platforms (e.g., Splunk, Sentinel, Elastic).
• Strong understanding of cybersecurity principles, including SIEM, IDS/IPS, and endpoint detection and response (EDR) solutions.
• Strong technical background in log analys i s, data correlation, and behavior al analytics.
• Working knowledge of the MITRE ATT&CK framework
• Excellent problem-solving skills and attention to detail

Preferred , but Not Required, Skills / Qualifications :

• Bachelor's degree in Computer Science, Information Security, or related field.
• Security +, EnCE , GSEC, GCIH , CGFA other cyber security related certifications
• An understanding of human behavior al analytics or psychology of insider risk , or an investigative background.

Salary Range:

$114,500 - 194,700 USD

Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.

Working with Us:

As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.

Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.

We'd love to learn more about how your interests and experience could be a fit with one of the world's most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater

Reasonable accommodation

Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at [email protected] .

We hope you're excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.

Apply today and talk to us about your flexible working requirements and together we can achieve greater.