This job might no longer be available.

Associate Insider Threat Engineer

Team Name:

Job Title:

Requisition ID:

Job Description:

Job Title : Associate Insider Threat Engineer

Location : Irvine, CA

Your Platform

Activision Blizzard plays a centralized role in the creation of epic entertainment by supporting our interactive gaming brands and studios with a diverse range of career opportunities across corporate functions such as Marketing, Communications, Legal, Human Resources, Finance and Supply Chain. Located in our global headquarters in Santa Monica, we encompass equal parts agility, creativity and rigor to enhance the employee and player experience. To learn more, check us out at www.activisionblizzard.com or on Twitter at @ATVI_AB.

Your Mission

As an Associate Insider Threat Engineer you will be in a technical role assisting with the information security across the organization by understanding the internal threats it faces. Their primary responsibilities are (but not limited to): responding to alerts of potentially malicious activity including sensitive data theft, sabotage, and leaks while balancing security with privacy. The analyst will be responsible for leveraging security related data from internal sensors (e.g. SIEM aggregated data from firewall, IDS, EDR, endpoints, etc.) and external sources (vendors, industry working groups, law enforcement etc.) to implement effective detections and mitigations. This person will work closely with Legal, Human Resources, Employee Relations, Physical Security, and studio representatives to investigate and forensically examine potentially impacted systems.

Priorities can often change in a fast-paced environment like ours, so this role includes, but is not limited to, the following responsibilities:

• Respond to and investigate alerts of potentially malicious activity related to ABK intellectual property.
• Develop baselines of system activity to better identify anomalous or potentially malicious activity on ABK information systems.
• Perform forensic analysis of information systems, including logs, hard drive images, etc. as required by Insider Threat investigations.
• Reconstruct events of an insider threat incident by creating a timeline via correlation of forensic data.
• Write reports of investigative actions and findings for Legal, Human Resources, Employee Relations and other stakeholders.
• Some international travel required

Player Profile

Minimum Requirements:

• Knowledge of host and network based forensics
• Experience conducting log analysis and and event correlation
• Ability to combine data from multiple threats
• Excellent oral/written communication
• Ability to work as part of a team to achieve desired objectives and project results
• Ability to interface effectively and decisively with all levels of management, departments and outside vendors.