1

Insider Risk Manager Jobs in Oklahoma (NOW HIRING)

Senior Cybersecurity Analyst

Oklahoma City, OK · On-site +1

$92K - $119K/yr

Information Protection & Data Security -- data classification, sensitivity labeling, data loss prevention (DLP), and insider risk management. * Device compliance policy enforcement, mobile device ...

New

Insider Risk Manager information

What does an Insider Risk Manager do?

An Insider Risk Manager is responsible for identifying, assessing, and mitigating risks posed by individuals within an organization, such as employees, contractors, or business partners. Their work focuses on preventing data breaches, intellectual property theft, and other security incidents caused by trusted insiders. They develop policies, conduct investigations, monitor employee activity for suspicious behavior, and collaborate with other departments to strengthen security measures. Ultimately, their goal is to protect the organization's assets and reputation from internal threats.

What are some common challenges faced by an Insider Risk Manager, and how can they be addressed?

Insider Risk Managers often face challenges such as detecting subtle behavioral changes that may signal insider threats, balancing employee privacy with effective monitoring, and fostering a culture of security awareness. Addressing these challenges typically involves working closely with IT, HR, and legal teams to implement risk assessment tools, develop clear communication strategies, and provide regular training. Additionally, staying updated on the latest threat trends and maintaining transparent incident response protocols help Insider Risk Managers mitigate potential risks effectively.

What is the difference between Insider Risk Manager vs Data Loss Prevention Specialist?

AspectInsider Risk ManagerData Loss Prevention Specialist
CredentialsSecurity certifications (CISSP, CISM), risk management experienceSecurity certifications, technical knowledge of DLP tools
Work EnvironmentCorporate security teams, risk assessment settingsIT security teams, technical implementation roles
Industry UsageFinancial, healthcare, government sectorsTech, finance, enterprise sectors
Primary FocusIdentifying and mitigating insider threatsPreventing data exfiltration and leaks

The Insider Risk Manager focuses on detecting and managing risks posed by internal employees, while the Data Loss Prevention Specialist concentrates on technical measures to prevent data leaks. Both roles require security certifications and are vital in protecting organizational assets, but they differ in scope and daily responsibilities.

What are the key skills and qualifications needed to thrive as an Insider Risk Manager, and why are they important?

To thrive as an Insider Risk Manager, you need expertise in cybersecurity, risk assessment, and incident response, often supported by a degree in information security or a related field. Familiarity with SIEM tools, DLP systems, and certifications like CISSP or CISM are typically required. Strong analytical thinking, discretion, and communication skills help in identifying threats and collaborating with stakeholders. These skills ensure effective mitigation of insider threats, protecting organizational assets and sensitive information.
What are popular job titles related to Insider Risk Manager jobs in Oklahoma? For Insider Risk Manager jobs in Oklahoma, the most frequently searched job titles are:
What cities in Oklahoma are hiring for Insider Risk Manager jobs? Cities in Oklahoma with the most Insider Risk Manager job openings:
Senior Cybersecurity Analyst

Senior Cybersecurity Analyst

Flywheel Energy

Oklahoma City, OK • On-site, Remote

$92K - $119K/yr

Full-time

Posted 7 days ago

New


Job description

Flywheel Energy is seeking an experienced and driven Senior Cybersecurity Analyst to protect the data, infrastructure, and operational systems that power our ~1,000-person upstream oil and gas business. The Senior Cybersecurity Analyst will serve as a primary defender of Flywheel's digital assets, acting as the first line of response for security alerts, incidents, and vulnerabilities. Responsible for monitoring, investigating, and remediating threats across our IT and OT environments, supporting security compliance, managing key security tools, and helping build a stronger security culture across the organization.

Key ResponsibilitiesSecurity Operations & Incident Response
  • Serve as the primary point of contact for monitoring, acknowledging, investigating, and escalating cybersecurity alerts and incidents.
  • Lead or participate in incident response activities including containment, eradication, recovery, and post-incident review.
Threat & Vulnerability Management
  • Perform regular vulnerability assessments, penetration testing support, and security control testing across systems and networks, and address security gaps.
  • Track and prioritize remediation of vulnerabilities in coordination with infrastructure and application teams.
Security Tool Administration

Administer and optimize Flywheel's security stack, including:

  • Endpoint detection and response, threat and vulnerability management, and attack surface reduction across all managed devices.
  • Information Protection & Data Security — data classification, sensitivity labeling, data loss prevention (DLP), and insider risk management.
  • Device compliance policy enforcement, mobile device management (MDM), and endpoint security configuration.
  • Security awareness training program administration, phishing simulation campaigns, and employee risk reporting.
  • Leverage Anthropic Claude (AI) to accelerate security operations including threat research and summarization, drafting and updating SOPs and incident reports to increase team efficiency and response speed.
Security Governance, Risk & Compliance
  • Apply and enforce a security framework across the business, vendors, and contractors to ensure consistent compliance.
  • Represent security interests during acquisition and divestiture activity and system integration projects.
  • Monitor compliance with applicable internal and external security policies and data protection standards.
OT/IT Convergence & Energy-Specific Security
  • Support the security of OT and ICS/SCADA environments integral to oil and gas field operations, applying appropriate frameworks and controls.
  • Collaborate with cloud, network, AI, and infrastructure teams to ensure consistent security posture across hybrid environments.
  • Evaluate and mitigate risks associated with remote field connectivity, production systems, and operational technology platforms.
Litigation Support
  • Support legal hold administration in coordination with Legal and HR, including custodian identification, hold issuance, and tracking through Microsoft Purview eDiscovery — ensuring defensible, auditable processes from initiation through release.
  • Assist with eDiscovery data collections, processing, and production workflows following EDRM pipeline best practices from identification through production.
Required Qualifications
  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or equivalent professional experience.
  • 5+ years of verifiable, progressive experience in cybersecurity, information security, or IT security operations.
  • Demonstrated experience managing security operations including incident response, threat analysis, and vulnerability management.
  • Solid understanding of network security principles including firewalls, intrusion detection/prevention, access controls, and network segmentation.
Preferred Qualifications
  • Knowledge of OT/IT convergence, SCADA/ICS security considerations, and relevant frameworks (NIST CSF, IEC 62443).
  • Additional certifications such as CISSP, CISM, or CEH are a plus.
  • Experience with change management and configuration activities in enterprise environments.
  • Willingness to perform occasional after-hours critical support and participate in an on-call rotation.