Insider Threat Specialist

Company: HeartFlow
Location: Redwood City
Posted on: June 2, 2021

Job Description:

HeartFlow is a Software as a Service (SaaS) medical device company. We use cutting-edge technology (deep learning, computational fluid dynamics, cloud-based computing) combined with advanced clinical expertise to revolutionize the treatment of coronary artery disease. We have an exciting and challenging opportunity for a talented, highly experienced, information security investigator with significant hands-on security operations, cyber-investigations and insider threat detection and response experience to help continue to shape the foundation and mature our cyber-defense, detection, and response capabilities.

Reporting directly to the VP, Chief Information Security Officer, the Insider Threat Specialist will provide day-to-day insider threat subject matter expert services for the HeartFlow enterprise and its customers. The specialist will focus building out the insider threat program including but not limited to tool deployments, investigations, using strong problem-solving skills, and able to communicate effectively to people at various layers to assist leadership to make timely and well thought out decisions. This role will work cross-functionally with their peers on other teams such as threat response, blue team, human resources, legal and privacy analysts. This role is considered a subject matter expert for insider threat detection and investigation.

Job Responsibilities:

• Build and mature the HeartFlow insider threat program, detecting and investigating potential well-intentioned and malicious activities attributable to internal activities
• Evaluate client needs, coordinate design for an insider threat solution, and clearly communicate the value proposition of implementation
• Implement and/or assess existing detection and monitoring security controls
• Provide expert level knowledge of tools and technologies used for enterprise insider threat
• Hands on analysis and insider threat investigations to include intelligence collection and forensics activities leveraging DLP, UBA, SIEM, EDR, and Mandiant proprietary tools
• Administer and respond to DLP alerts, providing tuning as needed in response to investigations
• Provide eDiscovery support for HR and Legal initiated investigations

Required Experience:

• Expert-level experience building security programs to include hands-on implementation and/or assessment of security controls
• In-depth knowledge in collecting, analyzing, and investigating security incidents; responding to insider incidents, and/or collecting, analyzing, and disseminating insider threat intelligence
• Experience practicing extreme discretion while privy to highly-sensitive information
• Expert-level experience using one or more cyber-forensic investigation tools (i.e. FTK, EnCase, F-Response, etc)
• Expert-level experience using one or more Remote Monitoring and Management (RMM) tools (i.e. Teramind, NinjaRMM, etc)
• Excellent written and verbal communication skills; to include report writing and presentation
• Quickly master, simplify, and communicate the value proposition of complex subjects to clients
• Use formal project management skills in planning, tracking, and reporting on project progress
• Familiarity with security bypasses and backdoors to security controls as investigation points
• Familiarity with cloud technologies such as VMWare, Microsoft Azure and Amazon Web Services
• Minimum of 6+ years relevant cybersecurity experience
• Minimum of 3+ years in use and system administration of insider threat tools such as SIEM, DLP, and UBA

Preferred Experience:

• Expert level knowledge of insider threat tools and technologies used for enterprise security
• Law Enforcement (LE) background investigations experience is preferred, but not required
• Experience directly conducting and managing cyber-forensic investigations

Education:

• BS, AS, in computer science + 3 years or more relevant work experience or 6+ years' experience in cybersecurity without a degree

About HeartFlow, Inc.

HeartFlow, Inc. is a medical technology company redefining the way heart disease is diagnosed and treated. Our non-invasive HeartFlow FFRct Analysis leverages deep learning to create a personalized 3D model of the heart. By using this model, clinicians can better evaluate the impact a blockage has on blood flow and determine the best treatment for patients. Our technology is reflective of our Silicon Valley roots and incorporates decades of scientific evidence with the latest advances in artificial intelligence. The HeartFlow FFRct Analysis is commercially available in the United States, Canada, Europe and Japan. For more information, visit www.heartflow.com.

HeartFlow, Inc. is an Equal Opportunity Employer. We are committed to a work environment that supports, inspires, and respects all individuals and do not discriminate against any employee or applicant because of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law. This policy applies to every aspect of employment at HeartFlow, including recruitment, hiring, training, relocation, promotion, and termination.

Positions posted for HeartFlow are not intended for or open to third party recruiters / agencies. Submission of any unsolicited resumes for these positions will be considered to be free referrals.

Keywords: HeartFlow, Redwood City , Insider Threat Specialist, Other , Redwood City, California