Insider Threat Program Analyst

Overview

1 week ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

Company Summary
Arlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future.

Position

Description:


This position is responsible for supporting National Oceanic and Atmospheric Administration’s (NOAA's) Internal Risk Management Program (IRMP) by designing, implementing, and maintaining comprehensive insider threat detection and mitigation capabilities. The Insider Threat Program Analyst will develop and operationalize policies, systems, and practices to detect, deter, and respond to potential insider threats within NOAA's workforce, including government employees, contractors, and uniformed services.

The ideal candidate will have expertise in security data analysis, risk assessment, and collaboration with internal and external stakeholders to ensure the protection of sensitive information, systems, and assets. This role requires strong analytical skills and the ability to identify behavioral indicators of insider threats while maintaining compliance with privacy regulations and ethical standards.

Location: Hybrid (Silver Spring, MD)

Clearance: Active TS/SCI

• Program Support and Internal Risk Operations
  (
  
  Note:
  
  Responsibilities are described in a continuous narrative in the original posting. See below for the structured list.)

• Support development and implementation of a comprehensive Internal Risk Management Program (IRMP) that detects, deters, and responds to insider threats across NOAA’s workforce, including employees, contractors, and uniformed personnel.
• Assist with crafting and maintaining internal risk/insider threat policies, procedures, and governance artifacts; ensure alignment with federal directives and NOAA policy.
• Data Integration and Analytics:
  Consolidate and analyze security data from multiple sources (e.g., cybersecurity telemetry/SIEM, User Access Management (UAM), Human Resources (HR), physical access, case management, and lawful external data) into a cohesive risk picture that provides actionable insights to leadership.
• Develop analytic methods and behavioral indicators; produce dashboards and routine analytical products to inform risk prioritization and mitigation activities.
• Monitor system integration performance and data quality; recommend improvements to achieve target integration milestones and performance metrics.

• Case Management and Incident Response:
  Execute insider threat reporting and response procedures; triage, document, and track matters in the IRMP HUB case management tools; coordinate formal referrals and follow-up actions.
• Support insider threat incident investigations, response, and mitigation; document timelines, actions, lessons learned, and protocol adjustments.
• Meet timeliness standards for incident documentation and reporting (e.g., initial reporting within three business days) and ensure evidence handling aligns with applicable policy.

• Training, Awareness, and Culture:
  Develop and deliver insider threat and internal risk training and awareness content; assess training effectiveness via post-training surveys and performance metrics.
• Drive adoption of best practices to embed a proactive, ethical, and privacy-aware internal risk culture across NOAA; tailor content to roles and mission contexts.
• Maintain training artifacts and schedules; recommend continuous improvement actions based on feedback and outcomes.

• Research Security and Compliance (NSPM-33):
  Support development and implementation of research security protocols and compliance measures to protect sensitive research and deter foreign interference.
• Assist with assessments, gap analyses, and corrective action planning to achieve and sustain compliance with NSPM-33 and related standards.

• Collaboration and Stakeholder Engagement:
  Coordinate with internal stakeholders (e.g., Cybersecurity Division, HR, Legal/Privacy/Civil Liberties, Research Security, Security Management) and external partners (e.g., NITTF, SEI CERT).
• Document stakeholder engagements, action items, and outcomes; track completion and effectiveness.

• Reporting and Deliverable Execution:
  Develop and maintain program artifacts and deliverables, which may include:
  Risk Mitigation Strategy documents;
  Research Security Compliance Reports;
  Training & Awareness Program Reports;
  Insider Threat Detection System Status Reports;
  Incident Response and Mitigation Reports;
  Risk…