Threat Intelligence & Data Loss Prevention (DLP) Analyst

Evolver, a Converged Security Solutions company, is an information technology company serving the Federal, Commercial, and Legal markets that addresses client challenges in the present and transitions clients into the future by introducing efficient and effective IT solutions. With a dedicated focus on client satisfaction, CSS has proven its value time and time again, from managing day-to-day operations to skillfully navigating the implementation and support of new technologies. Our core competencies are infrastructure, application development, cybersecurity, cloud, end-user support, data analytics and legal services.

Position Overview

We are seeking a Threat Intelligence & Data Loss Prevention (DLP) Analyst to support and enhance our Teramind implementation. This role will be responsible for developing, managing, and optimizing Teramind rules to monitor, detect, and mitigate potential insider threats and data exfiltration risks. The ideal candidate will have experience in threat intelligence, insider threat detection, and DLP strategies, with a strong understanding of user behavior analytics (UBA) and security policies.

Responsibilities

• Teramind Rule Management
  • Develop, configure, and refine Teramind monitoring rules and policies to align with security and compliance requirements.
  • Continuously assess and fine-tune rule logic to minimize false positives and enhance detection accuracy.
  • Coordinate with security teams to define thresholds and response actions for insider threats.
• Threat Intelligence & Analysis
  • Monitor and analyze alerts generated by Teramind to identify trends, anomalies, and potential data leaks.
  • Conduct threat hunting activities using Teramind's behavioral analytics and other security tools.
  • Collaborate with Insider Threat, Cyber Threat Intelligence (CTI), and Security Operations Center (SOC) teams to assess risks.
• Data Loss Prevention (DLP) & Compliance
  • Implement DLP policies within Teramind to prevent unauthorized data movement, USB access, and screen captures.
  • Ensure alignment with regulatory requirements such as FISMA, CISA, NIST 800-53, and DHS policies.
  • Investigate potential violations and policy breaches flagged by Teramind.
• Incident Response & Reporting
  • Support incident investigations by providing detailed activity logs and user behavior analysis.
  • Work with forensic analysts to correlate Teramind data with other security tools (e.g., Splunk, SIEM, EDR).
  • Generate reports and dashboards for management to highlight risks and recommendations.
• Automation & Optimization
  • Identify opportunities to automate rule enforcement and response actions in Teramind.
  • Optimize system performance by managing exclusions, tuning alerts, and reducing false positives.

Basic Qualifications

• An Active Secret clearance required at the time of hire.
• Must be eligible for a Top Secret clearance with CI Polygraph with the willingness to undergo additional clearance processing if required during the project.
• Bachelor's degree in Cybersecurity, Information Security, or related field or equivalent experience).
• 3 years of experience in Threat Intelligence, DLP, Insider Threat, or Cybersecurity Operations.
• 3 years of experience with Teramind or similar Insider Threat/DLP solutions.
• 3 years of experience with user behavior analytics (UBA), data loss prevention (DLP), and insider threat methodologies.
• 3 years of experience with SIEM tools (e.g., Splunk), security frameworks (NIST 800-53, MITRE ATT&CK), and forensic investigation techniques.
• 3 years of experience with regex, scripting, or rule-based policy management for security monitoring.

Preferred Qualifications

• Experience with endpoint protection, cloud security monitoring, or UEBA solutions.
• Certifications such as CISSP, Security+, CEH, or Insider Threat Program Manager (ITPM).
• Knowledge of federal compliance frameworks (e.g., DHS 4300A, CISA Binding Operational Directives).

Evolver Federal is an equal opportunity employer and welcomes all job seekers. It is the policy of Evolver Federal not to discriminate based on race, color, ancestry, religion, gender, age, national origin, gender identity or expression, sexual orientation, genetic factors, pregnancy, physical or mental disability, military/veteran status, or any other factor protected by law.

Actual salary will depend on factors such as skills, qualifications, experience, market and work location. Evolver Federal offers competitive benefits, including health, dental and vision insurance, 401(k), flexible spending account, and paid leave (including PTO and parental leave) in accordance with our applicable plans and policies.