1

Insider Risk Manager Jobs in Florida (NOW HIRING)

Senior Security Engineer

Orlando, FL

$106K - $146K/yr

Configure and manage Microsoft Purview for data governance, information protection, data loss prevention, insider risk, and compliance. * Strengthen identity and access management (IAM) practices ...

Senior Security Engineer

Orlando, FL ยท On-site

$106K - $146K/yr

Configure and manage Microsoft Purview for data governance, information protection, data loss prevention, insider risk, and compliance. * Strengthen identity and access management (IAM) practices ...

... insider threat cases. * Client relationship management: Serve as the primary point of contact for ... Provide expert guidance on cyber resilience, digital risk identification, risk mitigation ...

... insider threat cases. * Client relationship management: Serve as the primary point of contact for ... Provide expert guidance on cyber resilience, digital risk identification, risk mitigation ...

next page

Showing results 1-20

Insider Risk Manager information

What does an Insider Risk Manager do?

An Insider Risk Manager is responsible for identifying, assessing, and mitigating risks posed by individuals within an organization, such as employees, contractors, or business partners. Their work focuses on preventing data breaches, intellectual property theft, and other security incidents caused by trusted insiders. They develop policies, conduct investigations, monitor employee activity for suspicious behavior, and collaborate with other departments to strengthen security measures. Ultimately, their goal is to protect the organization's assets and reputation from internal threats.

What are some common challenges faced by an Insider Risk Manager, and how can they be addressed?

Insider Risk Managers often face challenges such as detecting subtle behavioral changes that may signal insider threats, balancing employee privacy with effective monitoring, and fostering a culture of security awareness. Addressing these challenges typically involves working closely with IT, HR, and legal teams to implement risk assessment tools, develop clear communication strategies, and provide regular training. Additionally, staying updated on the latest threat trends and maintaining transparent incident response protocols help Insider Risk Managers mitigate potential risks effectively.

What is the difference between Insider Risk Manager vs Data Loss Prevention Specialist?

AspectInsider Risk ManagerData Loss Prevention Specialist
CredentialsSecurity certifications (CISSP, CISM), risk management experienceSecurity certifications, technical knowledge of DLP tools
Work EnvironmentCorporate security teams, risk assessment settingsIT security teams, technical implementation roles
Industry UsageFinancial, healthcare, government sectorsTech, finance, enterprise sectors
Primary FocusIdentifying and mitigating insider threatsPreventing data exfiltration and leaks

The Insider Risk Manager focuses on detecting and managing risks posed by internal employees, while the Data Loss Prevention Specialist concentrates on technical measures to prevent data leaks. Both roles require security certifications and are vital in protecting organizational assets, but they differ in scope and daily responsibilities.

What are the key skills and qualifications needed to thrive as an Insider Risk Manager, and why are they important?

To thrive as an Insider Risk Manager, you need expertise in cybersecurity, risk assessment, and incident response, often supported by a degree in information security or a related field. Familiarity with SIEM tools, DLP systems, and certifications like CISSP or CISM are typically required. Strong analytical thinking, discretion, and communication skills help in identifying threats and collaborating with stakeholders. These skills ensure effective mitigation of insider threats, protecting organizational assets and sensitive information.
What are popular job titles related to Insider Risk Manager jobs in Florida? For Insider Risk Manager jobs in Florida, the most frequently searched job titles are:
What job categories do people searching Insider Risk Manager jobs in Florida look for? The top searched job categories for Insider Risk Manager jobs in Florida are:
What cities in Florida are hiring for Insider Risk Manager jobs? Cities in Florida with the most Insider Risk Manager job openings:
EDAT- Senior Data Security Engineer (Data Rights Management - DR with Security Clearance

EDAT- Senior Data Security Engineer (Data Rights Management - DR with Security Clearance

Barbaricum

Tampa, FL โ€ข On-site

$100K - $136K/yr

Other

Posted 2 days ago

New


Job description

Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 17 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent. Headquartered in Washington, DCโ€™s historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nationโ€™s most complex and rewarding challenges. Join our team. Barbaricum is currently seeking a Senior Data Security Engineer (Data Rights Management) to serve as a technical leader supporting the USSOCOM Enterprise Development, Application, and Training (EDAT) Zero Trust Data Team. This position is responsible for designing, implementing, and maintaining enterprise Data Rights Management (DRM) and data-centric security capabilities that protect sensitive information throughout its lifecycle in accordance with the Department of Defense (DoD) Zero Trust Strategy. The Senior Data Security Engineer works closely with cybersecurity architects, ICAM engineers, cloud engineers, system owners, and mission partners to implement data protection controls that enforce least privilege, continuous verification, and policy-based access to Controlled Unclassified Information (CUI) and other sensitive data across on-premises and cloud environments. Key Responsibilities * Design, implement, and sustain enterprise Data Rights Management (DRM) solutions supporting the DoD Zero Trust Data Pillar. * Engineer data-centric security controls that protect sensitive information regardless of location, device, or user. * Configure and manage encryption, labeling, classification, access control, and persistent protection technologies for enterprise data. * Implement Microsoft Purview Information Protection, Microsoft Purview Data Loss Prevention (DLP), Microsoft Purview Information Governance, Microsoft Purview Insider Risk Management, Microsoft Defender for Cloud Apps, and related Microsoft 365 security technologies. * Develop and maintain enterprise data classification schemas, sensitivity labels, protection templates, and automated labeling policies. * Integrate DRM capabilities with Identity, Credential, and Access Management (ICAM) solutions to enforce attribute-based and role-based access controls. * Collaborate with Zero Trust architects to implement policy decision points (PDPs), policy enforcement points (PEPs), and continuous authorization mechanisms supporting secure data access. * Develop data protection strategies supporting cloud, hybrid, and on-premises environments. * Implement and maintain data loss prevention (DLP) policies for email, endpoints, cloud applications, collaboration platforms, and removable media. * Support secure collaboration using Microsoft 365, SharePoint Online, Teams, Exchange Online, OneDrive, and Azure services. * Evaluate enterprise data flows and recommend security controls that reduce organizational risk while supporting operational requirements. * Perform security assessments, gap analyses, and technical evaluations of DRM and data protection technologies. * Develop engineering documentation including system design documents, implementation plans, standard operating procedures (SOPs), technical reports, and architecture diagrams. * Support Authority to Operate (ATO), RMF, and cybersecurity compliance activities. * Participate in architecture reviews, security engineering working groups, technical interchange meetings, and Zero Trust planning sessions. * Mentor junior engineers and provide technical leadership across the Data Team. Required Qualifications * Active Top Secret/SCI security clearance. * Must be eligible to maintain access to USSOCOM systems and facilities. * Bachelorโ€™s degree in Cybersecurity, Information Technology, Computer Science, Information Systems, Engineering, or a related technical field (or equivalent experience). * Minimum of 10 years of progressively responsible cybersecurity or information security engineering experience. * Experience implementing enterprise Data Rights Management (DRM), Information Rights Management (IRM), or Enterprise Digital Rights Management (EDRM) technologies. * Strong understanding of DoD Zero Trust principles, architecture, and implementation guidance. * Experience securing data across Microsoft 365, Azure, hybrid cloud, and enterprise environments. * Experience implementing Microsoft Purview Information Protection, DLP, sensitivity labeling, and information governance capabilities. * Experience with data classification, encryption, key management, and data lifecycle management. * Experience integrating security solutions with Microsoft Entra ID (Azure AD), Conditional Access, Privileged Identity Management (PIM), and ICAM architectures. * Knowledge of NIST SP 800-53, NIST SP 800-207 (Zero Trust Architecture), DoD Zero Trust Reference Architecture, RMF, and CMMC concepts. * Strong knowledge of encryption technologies, PKI, certificate management, and secure information sharing. * Experience troubleshooting complex enterprise security implementations. * Excellent written and verbal communication skills. Desired Qualifications * Experience supporting USSOCOM or other DoD organizations. * Experience implementing Microsoft Defender XDR security solutions. * Experience with Microsoft Defender for Endpoint, Defender for Office 365, Defender for Identity, and Defender for Cloud Apps. * Familiarity with cloud security technologies including Microsoft Azure, AWS, or Google Cloud Platform. * Experience with Microsoft Graph API, PowerShell automation, and infrastructure-as-code. * Experience integrating DRM with enterprise collaboration platforms. * Knowledge of data discovery, insider risk, data governance, and privacy solutions. * Experience supporting Agile software development and DevSecOps environments. Certifications Candidate must possess an active DoD 8140 baseline certification appropriate for the position (such as Security+ CE, CySA+, CASP+, CISSP, or equivalent) prior to start date. Preferred certifications include: * Certified Information Systems Security Professional (CISSP) * Microsoft Certified: Information Protection Administrator Associate (SC-400) * Microsoft Certified: Cybersecurity Architect Expert (SC-100) * Microsoft Certified: Security Operations Analyst (SC-200) * Microsoft Certified: Identity and Access Administrator Associate (SC-300) * Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900) * Certified Information Security Manager (CISM) * GIAC Security Certifications (GSEC, GCIA, GCED, or similar) EEO Commitment All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.