Insider Threat Analyst Lead

Washington, DC


Apply Save

Type: Contract

Category: Security

Industry: Government

Reference ID: JN -062026-107269

Date Posted: 06/03/2026

Shortcut: http://careers.eliassen.com/1jUO3j


Description:

Hybrid in Washington, DC

 

Our client seeks an Insider Threat Analyst Lead to support a federal cybersecurity program focused on identifying, analyzing, and mitigating insider threats. The lead will direct insider threat analysis efforts, leverage behavioral analytics and SIEM tools, and drive investigative processes to detect and respond to risks posed by internal actors.

 

Due to client requirements, applicants must be US Citizen and willing and able to work on a w2 basis. For our w2 consultants, we offer a great benefits package that includes Medical, Dental, and Vision benefits, 401k with company matching, and life insurance.

 

Rate: $80.00 to $130.00/hr. w2


Responsibilities:
  • Lead and conduct in-depth technical analysis of insider threat activity across enterprise environments.
  • Perform behavioral analytics to identify anomalous user behavior, insider risk patterns, and potential threats.
  • Utilize SIEM tools, including Splunk, to correlate cybersecurity alerts and identify indicators of insider activity.
  • Manage and oversee end-to-end case management for insider threat investigations, including documentation and escalation.
  • Analyze large datasets to identify trends, patterns, and indicators related to insider threats.
  • Collaborate with SOC, incident response, HR, legal, and security teams to support investigations and mitigation actions.
  • Develop and refine insider threat detection methodologies and analytic approaches.
  • Provide reporting, briefings, and recommendations to leadership on insider threat risks and investigation outcomes.
  • Ensure compliance with federal policies and insider threat program requirements.

Experience Requirements:
  • 5+ years conducting in-depth technical analysis of insider threats.
  • 3+ years conducting behavioral analytics.
  • 2+ years using Splunk SIEM to correlate cybersecurity alerts.
  • 2+ years managing overall case management for cybersecurity investigations.
  • Certified Cyber Insider Threat Professional (CCITP) Program.
  • Preferred: Experience supporting federal insider threat or counterintelligence programs.
  • Preferred: Familiarity with User and Entity Behavior Analytics (UEBA) tools and methodologies.
  • Preferred: Strong understanding of insider threat frameworks, governance, and compliance standards.
  • Preferred: Experience working with cross-functional stakeholders (security, legal, HR, compliance).
  • Preferred: Strong analytical, investigative, documentation, and communication skills.

Recruitment Transparency Notice
 
Eliassen Group values transparency in our recruitment practices. Please be advised that Eliassen Group utilizes artificial intelligence (AI) tools as part of its initial application screening and hiring process. You may receive email and SMS notifications from the Eliassen Virtual Recruiting Team (noreply@eliassen.com, 781-808-2924) inviting you to complete a brief voice screening as part of your application process. These tools assist our hiring teams in different ways, including but not limited to, assistance in reviewing application materials to help identify candidates whose qualifications most closely match the requirements of the position. All AI-assisted evaluations and responses are reviewed by human recruiters before any hiring decisions are made. The use of AI in our process is intended to support fairness, efficiency, and consistency, and Eliassen Group takes measures to prevent bias or discrimination in connection with its hiring practices. By proceeding, you acknowledge, agree, and consent to Eliassen Group’s use of these tools, including AI tools, as part of the application and hiring process.
 

Skills, experience, and other compensable factors will be considered when determining pay rate. The pay range provided in this posting reflects a W2 hourly rate; other employment options may be available that may result in pay outside of the provided range.

W2 employees of Eliassen Group who are regularly scheduled to work 30 or more hours per week are eligible for the following benefits: medical (choice of 3 plans), dental, vision, pre-tax accounts, other voluntary benefits including life and disability insurance, 401(k) with match, and sick time if required by law in the worked-in state/locality.
If anyone reaches out to you about an open position connected with Eliassen Group, please ensure that you are working directly with us by confirming the following:

· When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.

· Eliassen Group will never ask you for personal information (home address, bank account, or check routing number) until you have worked with someone clearly associated with Eliassen Group.

If you have any indication of fraudulent activity, please contact fraud@eliassen.com.

 
About Eliassen Group:
 
Eliassen Group is a strategic consulting firm that helps organizations reach further and achieve more through our technology, business advisory, and life sciences solutions. For nearly 40 years, we have combined exceptional people, deep domain expertise, and intelligent capabilities to expand our clients’ capacity and accelerate meaningful outcomes. We are driven by a purpose to positively impact the lives of our employees, clients, consultants, and the communities we serve.
 
Eliassen is committed to building a diverse and inclusive team from a variety of backgrounds, perspectives, and skills. We are an Equal Opportunity and Affirmative Action Employer and all employment decisions are based on merit, performance, and business needs. Eliassen does not discriminate on the basis of race, color, gender identity or expression, sexual preference or orientation, sex (including pregnancy, childbirth, and related medical conditions), marital status, creed, religion, physical or mental disability, genetic information, military or veteran status, age, ancestry, national origin, citizenship status, prohibited criminal record inquiries of applicants and employees, or any other category protected by federal, state, or local laws.
 
Don’t miss out on our referral program! If we hire a candidate that you refer us to then you can be eligible for a $1,000 referral check!
 

  • Sr. Solutions Architect III - Cyber

     Washington, DC

    Description: On-site in Washington, DC Our client seeks a Sr. Solutions Architect III - Cyber to design, implement, and manage scalable cybersecurity solutions across multiple domains. You will lead the implementation of a Security Operations Center an...

    Date Posted: 05/18/2026 Recommended

  • SIEM Engineer

     Washington, DC

    Description:Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a SIEM Engineer to support enterprise security monitoring, detection engineering, and log management within a federal SOC environment. The role administers SIEM platforms...

    Date Posted: 06/02/2026 Recommended

  • Senior Program Manager – Cyber Testing & Release Acceleration (AI Program)

     Anywhere

    Description: Remote Our client is seeking a Senior Program Manager to lead a critical workstream within a large-scale AI-driven cybersecurity program. The initiative focuses on detecting emerging cyber threats and accelerating remediation timelines to ...

    Date Posted: 06/03/2026 Recommended

  • Senior Cybersecurity Analyst

     Anywhere

    Description: Remote Our client seeks a Senior Cybersecurity Analyst to lead proactive defense, guide security architecture, and drive incident response and risk mitigation. The role manages and configures enterprise security tools while advancing best ...

    Date Posted: 06/09/2026 Recommended

  • SOC Analyst

     Washington, DC

    Description: Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a SOC Analyst to support continuous monitoring, detection, analysis, and response to cybersecurity events across hybrid cloud and on-premises environments. The analyst w...

    Date Posted: 06/02/2026 Recommended

  • Associate Network Security Engineer

     Fenton Cary, NC

    Description: Associate Network Security Engineer Cary, NC • Hybrid Our client is seeking an Associate Cybersecurity Engineer for a 12‑month contract, with potential for permanent conversion, to support the Information Security organization. This role f...

    Date Posted: 05/31/2026 Recommended

  • Reporting & Metrics Analyst

     Washington, DC

    Description: Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a Reporting & Metrics Analyst to support operational, cybersecurity, and compliance reporting within a federal SOC/NOC environment. The role will develop dashboards, tra...

    Date Posted: 06/02/2026 Recommended

  • Automation / SOAR Engineer

     Washington, DC

    Description: Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks an Automation / SOAR Engineer to design, develop, and implement automation solutions within a federal cybersecurity operations environment. The role focuses on building ...

    Date Posted: 06/02/2026 Recommended

  • Tier 2 Senior Cyber Security Analyst

     Tustin, CA

    Description: Santa Ana, CA | Onsite at OC Data Center Our client seeks a Tier 2 Senior Cyber Security Analyst to support a 24x7x365 Security Operations Center. The analyst will create, tune, monitor, and investigate SIEM alerts and support incident res...

    Date Posted: 05/20/2026 Recommended

  • Lead Cybersecurity Engineer

     Washington, DC

    Description: Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a Lead Cybersecurity Engineer to design and implement enterprise security solutions across a hybrid federal environment. The role will lead engineering initiatives spann...

    Date Posted: 06/04/2026 Recommended

  • Senior Organizational Change Manager

     Anywhere

    Description: Remote Our client is seeking a Organizational Change Manager to support enterprise programs by driving streamlined and sustainable change across the organization. This role partners closely with business, technology, and program teams to m...

    Date Posted: 06/07/2026 Recommended

  • Associate Security Engineer, Cyber Monitoring

     Aiken, SC

    Description: On site (100%) in Aiken, SC Our client seeks an Associate Security Engineer, Cyber Monitoring for a role on the Network Monitoring team. The selected candidate will support real-time alert monitoring, basic incident triage, email security ...

    Date Posted: 05/20/2026 Recommended

  • Security Analyst/Information Systems Security Officer

     Fort Meade, MD

    Description: Onsite in Fort Meade, MD Our client seeks a Security Analyst serving as an Information Systems Security Officer to lead implementation and enforcement of security policies aligned to NIST frameworks. The role will conduct continuous monito...

    Date Posted: 05/19/2026 Recommended

  • Security Engineer

     Washington, DC

    Description: Onsite in Washington, DC Our client seeks a Security Engineer to support a federal cybersecurity mission that protects critical transportation infrastructure. The role focuses on endpoint vulnerability management, risk assessment and mitig...

    Date Posted: 06/06/2026 Recommended

  • Backup Program Manager

     Washington, DC

    Description: Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a Backup Program Manager to support day-to-day program execution for a large federal cybersecurity and operations program. The role will assist the Program Manager with ...

    Date Posted: 06/02/2026 Recommended

  • Associate Security Engineer - Cyber Response

     Aiken, SC

    Description: 100% on site - Aiken, SC Our client is seeking an Associate Engineer to support cyber response activities aligned to the NIST Core Cybersecurity Framework functions of Identify, Detect, Respond, and Recover. The role support cyber security...

    Date Posted: 05/20/2026 Recommended

  • Lead Privileged Access Management (PAM) Engineer

     Washington, DC

    Description: Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a Lead Privileged Access Management (PAM) Engineer to design, implement, and operate enterprise PAM solutions across a complex federal hybrid cloud environment. The role...

    Date Posted: 06/02/2026 Recommended

  • Senior Systems Engineer

     Fort Meade, MD

    Description: On-site in Fort Meade, MD Our client seeks a Senior Systems Engineer to support the Defense Information Systems Agency Citadel mission. The role requires advanced engineering, integration, administration, and operational support for enterp...

    Date Posted: 05/19/2026 Recommended

  • SATCOM Engineer

     Aberdeen Proving Ground, MD

    Description: Aberdeen Proving Ground, Maryland Our client seeks a SATCOM Engineer to guide development and integration of satellite communications across Project Manager Tactical Network systems. The role requires familiarity with Army and DoD standard...

    Date Posted: 05/19/2026 Recommended

  • Senior Data Engineer

     Westlake, TX

    Description:Hybrid Every Other Week onsite / 5 days in Westlake, TX Our client seeks a Senior Data Engineer to join the Cyber Data Analytics chapter within Enterprise Cybersecurity. You will design and deliver scalable data solutions that secure and en...

    Date Posted: 06/04/2026 Recommended

  • NOC Analyst

     Washington, DC

    Description: Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a NOC Analyst to support enterprise network and infrastructure monitoring within a 24x7 federal operations environment. The role encompasses real-time monitoring, event ...

    Date Posted: 06/02/2026 Recommended

  • SOC/NOC Operations Manager

     Washington, DC

    Description: Hybrid 2 Days Onsite/3 Days Remote in Washington, DC Our client seeks a SOC/NOC Operations Manager to lead 24x7 cybersecurity and network operations within a complex federal enterprise environment. The manager will oversee security and net...

    Date Posted: 06/02/2026 Recommended

  • Sr. Software Engineer II

     Washington dc, DC

    Description:On-site in Washington, DC Our client seeks a Sr. Software Engineer II to design and manage enterprise endpoint security solutions across DoD and IC environments. The role requires deep expertise with Trellix and Windows/Linux systems, leade...

    Date Posted: 06/01/2026 Recommended

  • Lead Business Analyst / Quality Assurance

     Anywhere

    Description: Remote Our client, an industry leader in cybersecurity and threat intelligence, seeks a Lead Business Analyst / Quality Assurance professional to support a large-scale migration from Atlassian Data Center to Atlassian Cloud for Jira and Co...

    Date Posted: 05/25/2026 Recommended

  • Associate Cybersecurity Engineer - Controls

     Aiken, SC

    Description: Aiken, SC - mostly on site, hybrid role in the government / energy sector (on‑site with limited remote flexibility) Our client seeks an Associate Security Engineer to support cybersecurity controls within a highly regulated environment. Th...

    Date Posted: 05/20/2026 Recommended

  • AI Consultant II

     Charlotte, NC

    Description: Hybrid 3 On in Charlotte, NC Our client seeks an AI Consultant to educate stakeholders, lead ideation, and translate business needs into scalable AI solutions. The role requires strong communication, design-thinking facilitation, and profi...

    Date Posted: 06/09/2026 Recommended

  • Associate Cybersecurity Engineer - Cloud / Compliance

     Aiken, SC

    Description: Aiken, SC - Hybrid role in the government / energy sector, based near Aiken, SC. Limited remote work may be available (VERY limited), our client prefers 100% on site Our client seeks an Associate Engineer focused on cloud cybersecurity aut...

    Date Posted: 05/20/2026 Recommended

  • Quant Developer

     Jersey City, NJ

    Description: On-site in Jersey City, NJ Our client seeks a senior software engineer to lead design and development of next-generation electronic trading systems and data infrastructure. The role requires hands-on leadership building scalable, resilient...

    Date Posted: 05/25/2026 Recommended

  • Financial Business Analyst

     Tysons Corner, VA

    Description: Hybrid 3 days onsite / 2 days remote in Tysons Corner, VA Our client seeks a Financial Business Analyst to analyze and validate automated surveillance systems across multiple asset classes and regulatory domains. The role will reverse-engi...

    Date Posted: 05/29/2026 Recommended

  • Sr. Full Stack Developer / AI Platform Engineer

     Greenwood Village, CO

    Description: Greenwood Village, CO | Onsite 4 days per week Our client seeks a Sr. Full Stack Developer / AI Platform Engineer to advance an AI-driven development ecosystem. The role will focus on building AI developer harnesses and workflows, integrat...

    Date Posted: 05/17/2026 Recommended

Eliassen Group is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status. Eliassen Group’s Affirmative Action Plan (AAP) is available for inspection by any employee or applicant for employment upon request, during normal business hours of Monday through Friday, 8:30am to 5:30pm EST. Interested persons should contact Phaedra Wells at pwells@eliassen.com for assistance. It is unlawful in Massachusetts and Maryland to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

Applicants with disabilities that believe they require an accommodation or assistance with a position, please email our HR team at hradmin@eliassen.com. This email inbox is designed exclusively to assist job seekers whose disability prevents them from being able to apply online. Emails sent for other purposes will not receive a response.


Please be advised that a number of fraudulent job postings have been released under the Eliassen Group brand.

Unfortunately, fraudulent job postings can happen. If anyone reaches out to you about an open position connected with Eliassen Group, never provide personal or financial information to anyone who is not clearly associated with Eliassen Group

If anyone seemingly from Eliassen Group has ever requested this personal information in the past or does so in the future, please contact fraud@eliassen.com.

Please ensure that you are working directly with us by confirming the following:

  • When you work with Eliassen Group, all email communication will come from an Eliassen.com address, never Gmail, Yahoo, etc.
  • Eliassen Group will never ask you for personal information (home address, bank account, or check routing number) until you have worked with someone clearly associated with Eliassen Group, as indicated above