Senior Insider Threat Analyst

About Universal Music Group

We are UMG, the Universal Music Group. As the world’s leading music company, we are committed to artistry, innovation, and entrepreneurship. We operate a broad array of businesses in recorded music, music publishing, merchandising, and audiovisual content across more than 60 countries. Our mission is to identify and develop recording artists and songwriters, producing, distributing, and promoting critically acclaimed and commercially successful music to delight fans globally.

How We LEAD

The Senior Insider Threat Analyst, Global Insider Threat Management, reports to the VP, Global Insider Threat Management. This critical role is responsible for detecting, investigating, and responding to potential data loss, insider threat, and AI-related security incidents across our global enterprise. The analyst will leverage advanced tools such as SIEM, DLP, UEBA, and emerging AI security technologies. You will proactively identify risky behaviors, fine-tune detection capabilities, and deliver clear, actionable investigative insights to strengthen the organization’s overall data protection and insider threat posture.

How You’ll CREATE

• Respond to DLP alerts, monitor DLP consoles, and analyze security events to identify potential data loss incidents.
• Conduct hands-on investigation and threat hunting using SIEM, UEBA, and DLP tools.
• Respond to alerts from AI security tools for monitoring and protection.
• Address AI-related security incidents or abuse.
• Conduct in-depth investigations of suspected insider threat incidents, including unauthorized access, data exfiltration, and policy violations.
• Regularly review and fine-tune DLP and UEBA rules/policies to reduce false positives and improve detection accuracy.
• Develop and implement insider threat detection use cases, alert rules, and incident response playbooks.
• Prepare detailed reports on investigation findings, risk assessments, and recommended remediation actions.
• Assess potential insider threats by evaluating the risks associated with users, data, and systems.
• Participate in data protection audits, compliance reviews, and risk assessments related to DLP.
• Contribute to knowledge-sharing initiatives by documenting case studies from DLP and UEBA incidents.
• Assist business units in identifying sensitive data and mapping out potential leakage points.
• Gather documentation and contribute to the Global Insider Threat Management Team knowledge base.
• Organize and facilitate cross-functional insider threat project alignment with all applicable stakeholders to accomplish common goals.
• Perform other duties as assigned.

Bring Your VIBE

• Proven investigation and threat hunting skills.
• Ability to work under pressure and manage multiple projects with tight deadlines across a global enterprise.
• Self-motivated, detail-oriented, with strong analytical skills.
• Excellent written and verbal communication skills, capable of conveying complex technical information to non-technical stakeholders.
• Ability to identify trends and behavioral patterns indicative of insider threat activity, ensuring alerts are risk-weighted and actionable.
• High level of integrity and discretion when handling sensitive information.
• Good interpersonal and group dynamic skills; a strong collaborator and team player.
• Ability to influence without explicit authority.
• Willingness to participate in on-call rotations and respond to incidents outside of normal business hours if necessary.
• Excellent analytical skills and a creative problem-solving mindset.
• Good understanding of artificial intelligence and machine learning concepts and workflows.
• Familiarity with the unique threats and vulnerabilities associated with AI/ML.
• 3-5 years of experience in cybersecurity, information security, or a related field, with a focus on insider threat analysis and investigation.
• Proven experience in digital forensics, incident response, or threat hunting.
• Hands-on investigation and threat hunting experience in SIEM (Security Information and Event Management), DLP (Data Loss Prevention), UEBA (User and Entity Behavior Analytics), and other relevant security technologies.
• Hands-on experience or exposure to AI technologies.
• Bachelor's degree in Cybersecurity, Information Assurance, or equivalent related field experience.
• Experience with insider threat detection platforms like SIEM, DLP, and UEBA.
• Knowledge of relevant legal and regulatory requirements related to data protection and privacy.

Perks Playlist

Join an entrepreneurial, global organization where authenticity, boldness, creativity, connection, drive, and insight are our daily values. We offer comprehensive medical, dental, and vision coverage, including 100% coverage for out-patient in-network mental health services, fertility coverage, wellbeing reimbursements (up to $720/year), Student Loan Repayment Assistance, and Tuition Reimbursement. Our 401(k) offers 100% immediate vesting on the first 5% of contributions, plus an additional UMG contribution. Enjoy flexible Paid Time Off for exempt employees, 3 weeks PTO for non-exempt employees, 2 weeks paid Winter Break, 10 Company Holidays (including Juneteenth and Wellbeing Day), and Summer Fridays. Generous paid parental leave is available for every type of parent. For full details, visit the Perks Playlist page of our career site.

Key skills/competency

• Insider Threat Investigation
• Data Loss Prevention (DLP)
• Security Information and Event Management (SIEM)
• User and Entity Behavior Analytics (UEBA)
• Threat Hunting
• Digital Forensics
• Incident Response
• AI Security
• Data Protection
• Compliance