Senior Insider Threat Engineer

Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s family of systems is powered by Lattice OS an AI-powered operating system that turns thousands of data streams into a realtime, 3D command and control center. As the world enters an era of strategic competition, Anduril is committed to bringing cutting-edge autonomy, AI, computer vision, sensor fusion, and networking technology to the military in months, not years.

ABOUT THE JOB

Anduril’s Insider Threat team is looking for a senior cybersecurity analyst to protect Anduril Intelligence Systems (AIS) from internal security threats. This analyst will be a critical part of analyzing anomalous activities, running investigations, and working across the business line. This role will be a key stakeholder within the Anduril Information Security team implementing forward-leaning, innovative insider threat & counterintelligence detections and mitigations.

WHAT YOU'LL DO

• Support Anduril Intelligence Systems as our front line responder by identifying, triaging, investigating, and remediating Insider Threat related security detections and anomalies.
• Own Insider Threat investigations from end to end.
• Lead evaluating and implementing controls to reduce Anduril's attack surface from an insider threat.
• Produce dashboards and metrics to support and streamline incident response and investigations.
• Perform threat hunting and identify anomalies within the environment to uncover insider threat activity.
• Communicate technical security concerns and issues to a non-technical audience.
• Deeply embed yourself within the AIS business line and form relationships with key stakeholders.

REQUIRED QUALIFICATIONS

• Action-oriented analyst with the ability to work autonomously and take ownership of complex projects.
• Knowledge of modern adversary tradecraft and mitigating controls.
• Proven experience in insider threat investigations, digital forensics, and incident response.
• Ability to analyze large datasets across various systems (SIEM, data lake, etc.).
• Experience with Endpoint Detection and Response (EDR) tools, Data Loss Prevention (DLP), and other telemetry sources.
• Excellent analytical skills, capable of interpreting complex data and deriving actionable insights.
• Capable of handling highly sensitive investigations with utmost discretion.
• Currently possesses and can maintain an active U.S. Top Secret SCI security clearance.

PREFERRED QUALIFICATIONS

• Experience in one or more general purpose languages (Python, Go, etc) and familiarity with one or more infrastructure as code languages (e.g., Terraform, AWS CDK) in a production capacity.
• Experience building controls around export controlled information, CUI, and other sensitive data.
• Understanding of counterintelligence concepts and their application in security operations, particularly for identifying and addressing insider threats.
• Bachelor’s degree in Information Systems, Information Security, Cyber Security, Computer Science, Computer Engineering and 5+ years of security analyst experience; or 7+ years of security analyst experience without a degree.

Anduril is an equal-opportunity employer, and we encourage candidates from all backgrounds to apply. If you are someone passionate to work on problems that matter, we’d love to hear from you!