UPS values and safeguards its’ critical assets such as people, technology, information and facilities.  Access to critical assets can be gained by employees, former employees, contractors or trusted business partners who are called insiders.  Significant risk can be posed to organizations when insider access is used maliciously or unintentionally to cause harm in some way. Mitigation of insider threat risk will be managed through technical, administrative and physical processes called the insider threat program.

UPS is seeking a talented Insider Threat Program Manager to provide subject matter expertise, leadership and management in fulfilling UPS' Insider Threat program responsibilities. He/She will apply knowledge and mastery of Insider Threat Management (ITM) best practices and counterintelligence concepts to plan and conduct a full range of responsibilities including set up of risk use cases, identification and analysis of anomalous behavior using analytical tools, investigations through data set analysis and in person interviews with cross functional teams, technical report writing to document cases and effective communications processes. The Insider Threat Program Manager will possess comprehensive knowledge of appropriate directives, regulations, policies, and procedures necessary to independently perform and supervise a team of analysts.

RESPONSIBILITIES AND DUTIES

• Executes on program strategy and deliverables and time line established
• Formalizes Standard Operating Plan (SOP) for the Insider Threat Program
• Establishes analysts procedural requirements and develops training to support the SOP
• Provides oversight, counterintelligence support and operations management of the organization's day-to-day Insider Threat Management program
• Develops effective UEBA use cases to identify anomalous behavior, coordinates and assesses data inputs into the use cases to obtain the desired output and continually analyzes and improves behavioral use cases based on the needs of the business
• Leads team of analysts to track, identify, investigate, escalate, disrupt, or protect against espionage and other intelligence activities that could undermine business operations
• Manages thorough, complex and sensitive statistical analysis and machine learning of key resources and prepares formal reports of findings including professional presentations to key leadership
• Develops, manages, implements, maintains oversight of, and coordinates the counterintelligence operations and programs for foreign visitor vetting, suspicious activity reporting and any other CI work-related activities
• Manages vendor relationships as required to support insider threat program tools
• Influences leadership teams and cross functional teams to effectively drive change
• Builds high performing teams through passion, collaboration and results oriented leadership
• Manages responsibilities including communications, coaching, mentoring, staff development, performance management, salary administration, staffing decisions and cost plan management

KNOWLEDGE AND SKILLS

• Strong problem evaluation and resolution skills
• Working knowledge of UPS systems, Information Security tools such as SIEM, DLP, Endpoint and data exfiltration methods
• Working knowledge of Microsoft Projects, Microsoft Access, Microsoft Excel, Microsoft PowerPoint
• Demonstrates advanced AI Machine Learning knowledge and application and experience applying models to large scale problems and advanced knowledge and experience with tuning a number of machine learning models such as Bayesian Networks/Random Forest/Neural Networks/Boosting/Bagging
• Experience with intelligence community roles, responsibilities, organizations, capabilities and analysis
• Knowledge of the UPS organizational structure and policies
• Knowledge and understanding of Executive Order 13587 and NISPOM
• Understanding of NIST and application to the Insider Threat discipline
• Proven leadership skills and ability to manage upwardly and cultivate relationships internally and externally to obtain the desired relationship outputs while managing multiple priorities and handling ambiguity
• Detail-oriented, resourceful and able to manage shifting priorities
• Strong listening, written, oral and presentation skills
• Knowledge of the UPS Risk Management Framework
• Carnegie Mellon Insider Threat Program Management Certification or willing to obtain with six months
• Working knowledge of advanced interviewing techniques
• Minimum of ten total year’s relevant experience including a minimum of two or more years' experience in information systems, systems audit, security, counterintelligence activities, human resources or compliance plus a minimum of five years’ experience in planning, organizing and managing the activities of others as direct reports and/or project teams
• Bachelor's or Master’s Degree in Analytics, Statistics, Mathematics, Data Science, Computer Science, Engineering, or related field - Preferred
• Experience with network analysis methods - Preferred
• Experience with behavior analytics tools - Preferred
• Certified Risk Management Professional - Preferred
• PMP or equivalent certification - Preferred
• Working knowledge of high level programming languages - Python, R, SAS, Spark - Preferred

UPS is an equal opportunity employer – race/color/religion/sex/national origin/veteran/disability/sexual orientation/gender identity

Founded on a $100 loan in 1907, 2 teenage boys opened up a messenger service in a 6 by 17 foot office located just below the sidewalk on Second Avenue and Main Street in Seattle, WA. Messengers ran errands, carried notes, hand baggage, and delivered trays of food for customers. They also delivered packages, traveling by streetcars and bicycles for longer trips, and later using motorcycles.