Insider Threat Analyst

Job Title:

Insider Threat Analyst

We’re hiring a Senior CSIRT Analyst to support incident detection, investigation, and response activities across Kaseya’s environment. This role focuses on managing security incidents, improving response processes, and supporting threat detection and containment efforts across cloud and on‑premise systems. You’ll work closely with Security, IT, Infrastructure, and Engineering teams to investigate threats, coordinate remediation activities, and improve overall incident response capabilities.

• Investigate and respond to security incidents across cloud, on‑premise, and hybrid environments
• Perform incident triage, containment, eradication, and recovery activities for confirmed security events
• Conduct threat hunting and analysis to identify suspicious or malicious activity
• Monitor and analyze alerts generated from SIEM, EDR, DLP, and related security platforms
• Coordinate with internal stakeholders to support remediation and incident communication efforts
• Document incidents, response actions, and findings in accordance with operational procedures
• Develop and maintain dashboards, reporting, and operational metrics related to incident response activities
• Participate in on‑call rotations to support incident response outside standard business hours
• Mentor junior analysts and contribute to improvements in incident response processes and tooling

• 5+ years of experience in incident response, CSIRT, SOC, or cybersecurity operations roles
• Experience investigating and responding to security incidents in a production environment
• Experience working with security tools such as SIEM, EDR, DLP, or threat detection platforms
• Experience working in cloud, on‑premise, or hybrid infrastructure environments
• Experience documenting and managing incidents through ticketing or case management systems

• Experience conducting threat hunting or malware analysis activities
• Understanding of incident response frameworks and security best practices
• Experience creating dashboards, reporting, or operational security metrics
• Familiarity with vulnerability management and forensic investigation concepts
• Experience collaborating with cross‑functional stakeholders including IT, Legal, and Engineering
• Relevant security certifications (e.g., Security+, GCIH, GCFA, CySA+, CISSP)
• Experience mentoring junior analysts or supporting team development

Kaseya provides equal employment opportunity to all employees and applicants without regard to race, religion, age, ancestry, gender, sex, sexual orientation, national origin, citizenship status, physical or mental disability, veteran status, marital status, or any other characteristic protected by applicable law.