×
Register Here to Apply for Jobs or Post Jobs. X

Security Engineer - Insider Threat

Job in Atlanta, Fulton County, Georgia, 30301, USA
Listing for: Workday
Full Time position
Listed on 2026-07-04
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Job Description & How to Apply Below

Senior Insider Threat Investigator

Your work days are brighter here.

We're obsessed with making hard work pay off, for our people, our customers, and the world around us. As a Fortune 500 company and a leading AI platform for managing people, money, and agents, we're shaping the future of work so teams can reach their potential and focus on what matters most. The minute you join, you'll feel it. Not just in the products we build, but in how we show up for each other.

Our culture is rooted in integrity, empathy, and shared enthusiasm. We're in this together, tackling big challenges with bold ideas and genuine care. We look for curious minds and courageous collaborators who bring sun-drenched optimism and drive. Whether you're building smarter solutions, supporting customers, or creating a space where everyone belongs, you'll do meaningful work with Workmates who've got your back.

In return, we'll give you the trust to take risks, the tools to grow, the skills to develop and the support of a company invested in you for the long haul. So, if you want to inspire a brighter work day for everyone, including yourself, you've found a match in Workday, and we hope to be a match for you too.

About

the Role

We are seeking a Senior Insider Threat Investigator to join our Insider Threat organization to assist with monitoring, detecting, and mitigating insider risk. This role sits at the intersection of investigations, intelligence, and risk. You will help Workday identify patterns for detections and build out processes and controls to mitigate identified areas of opportunity. You will work closely with our Security Incident Response Team and Cyber Incident Management team to identify and mitigate enterprise threats to the confidentiality, integrity, and availability of Workday information systems and information.

We are looking for a seasoned investigator who brings deep expertise in insider threat, counterintelligence, or complex corporate investigations, paired with technical expertise to navigate UEBA/SIEM platforms, interpret digital evidence, and leverage open source intelligence.

This position will lead and conduct end-to-end insider threat investigations, spanning initial detection to triage and through resolution and closeout. This will involve interviewing subjects, witnesses, and stakeholders; manage document review and preservation; and execute investigative inquiries in alignment with company policies, establish investigative procedures, and law. The Insider Threat program coordinates with SIRT, IT, and Legal to collect, preserve, and analyze digital evidence in accordance with chain of custody requirements, industry best practices and legal hold requirements.

About

You

Basic Qualifications

  • 8+ years of progressive experience in insider threat investigations, counterintelligence, corporate investigations, incident response, intelligence analysis, or closely related discipline.
  • Bachelor's degree in Criminal justice, Cybersecurity, Intelligence Studies, Law, or closely related field.
  • Demonstrated track record leading or materially contributing to insider threat programs and complex, sensitive, cross-functional investigations in a government, corporate, or law enforcement environment.
  • Functional proficiency with SIEM platforms (e.g., Splunk, QRadar, Sentinel) and UEBA tools (e.g., Exabeam, Proofpoint, DTEX, Purview); able to construct and execute queries, triage and prioritize alerts, and interpret behavioral analytics outputs.
  • Working knowledge of DLP tools, endpoint detection, and digital forensic concepts.
  • Familiarity with Insider threat framework, threat assessment principles, including CERT, CISA, and NTTF standards.
  • Strong interpersonal and communication skills; able to operate with discretion and credibility across Legal, P&P, and executive stakeholder groups on sensitive matters.
  • Sound judgment and integrity; able to navigate ambiguous situations, manage competing priorities, and make defensible decisions under pressure.

Other Qualifications

  • Background in federal law enforcement (FBI, NCIS, AFOSI, ACIC), the U.S. Intelligence Community, U.S. military or government intelligence, federal insider threat programs, and cybersecurity.
  • Experience building or maturing a formal insider threat program, including development of investigation processes, detection logic, and governance and documentation.
  • Experience with case management platforms and maintaining investigation documentation.
  • Exposure to behavioral threat assessment and threat management programs; participation in industry working groups and forums.
  • CERT Insider Threat Program Manager (ITPM), Global Counter-Insider Threat Professional (GCITP), Certified Counter-Insider Threat Professional – F/A(CCITP), Certified Protection Professional (CPP) Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), CompTIA Certifications, GIAC certification, Certified Fraud Examiner (CFE)
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary