Insider Threat Monitoring Lead

The U.S. Customs and Border Protection (CBP) Cyber Security Directorate (CSD) is leading one of the most comprehensive, mission critical cybersecurity operations in the federal governmentprotecting the digital infrastructure that safeguards Americas borders. This multifaceted program spans 24/7/365 Security Operations Center (SOC) monitoring, advanced threat intelligence, forensics, incident response,cloudand network security engineering, zero trust modernization, vulnerability assessment, and enterprise-wide risk and compliance activities. Key Leads on this program will guide teams at the forefront of national security, supporting sophisticated cyber operations that defend vital systems, enable secure mission execution, and counter rapidly evolving threats. You will find this work uniquely impactful, fast-paced, and deeply collaborative, offering the opportunity to lead high performing technical teams, shape CBPs cybersecurity strategy, and contribute directly to the protection of the nation.

MEANINGFUL WORK AND PERSONAL IMPACT

The Insider Threat Monitoring Lead plays a vital role at the intersection of cybersecurity, behavioral analysis, and investigative response. In this missioncritical leadership position, you will:

• Oversee detection and analysis of insider threat activity, data loss events, foreign service national monitoring, and sensitive data spillageensuring CBP can rapidlyidentifyand mitigate risks from within.

• Lead a highly skilled team, you will shape investigative methodologies, drive advanced analytics, and collaborate closely with forensics, counterintelligence, and SOC functions.

• Thrive inhighstakesinvestigative environments and want to directly safeguard the integrity of CBPs workforce and mission systems.

WHAT YOULL NEED TO SUCCEED

• Top Secret withSCIeligibilityclearance.

• Minimum of five (5) years of professional experience with an in-depth understanding of the principles, methodologies, and best practices forestablishing, operating, and maturing an insider threat program.

• Bachelors degree in computer science, information technology, or related field.

• Knowledge of deterrence, detection, and mitigation strategies.Proficiencyin gathering, integrating, analyzing, and responding to threat-related information.

• Experience assessing risks,identifyingvulnerabilities, and developing effective countermeasures.

• Strong knowledge of cybersecurity principles, network security, data protection, and monitoring employee use of enterprise networks.

• Expertiseinidentifying, assessing, prioritizing, and mitigating security risks.

• Ability to analyze intelligence to understand and neutralize threats.

• Thorough knowledge of relevant government policies and regulations, such as the National Industrial Security Program Operating Manual (NISPOM) (32 CFR Part 117), Executive Order13587, and the Presidential Memorandum "Minimum Standards for Executive Branch Insider Threat Programs."

• Maintains active Certified Information System Security Professional (CISSP).

EDUCATION AND EXPERIENCE

• Bachelors Degreepreferred.

• Previousor Current CBP Background Investigationdesired.

OWN YOUR OPPORTUNITY
Explore a career in cyber security at GDIT andyoullfind endless opportunities to grow alongside colleagues who share your passion for securing the mission.