Cyber DLP and Investigations Analyst

Who We Are
At Corebridge Financial, we believe action is everything. That’s why every day we partner with financial professionals and institutions to make it possible for more people to take action in their financial lives, for today and tomorrow.
We align to a set of Values that are the core pillars that define our culture and help bring our brand purpose to life:
     • We are stronger as one: We collaborate across the enterprise, scale what works and act   decisively for our customers and partners
     • We deliver on commitments: We are accountable, empower each other and go above and beyond for our stakeholders
     • We learn, improve and innovate: We get better each day by challenging the status quo and equipping ourselves for the future
     • We are inclusive: We embrace different perspectives, enabling our colleagues to make an impact and bring their whole selves to work

Who You’ll Work With

The Information Technology (IT) organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation and partners with business leaders to design and execute new strategies across the company. They also ensure the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles.

About The Role

The Cyber DLP and Investigations Analyst will provide valuable contributions to the Cyber Investigations group that includes Internal Investigations and Data Loss Prevention. Within Internal Investigations, this position focuses on proactive efforts to identify, disrupt, and protect Corebridge Financial from internal threats and conducts highly sensitive reactive investigations related to internal risks.  Within Data Loss Prevention, this position is tasked with evaluating DLP controls, investigating DLP alerts and working with technology partners and security peers to evaluate exception requests.

Responsibilities

• Conduct proactive efforts to identify, disrupt, and protect Corebridge Financial from internal threats that may undermine the integrity and operations of the business.
• Triage internal investigation alerts and requests and correlate with other data sources to identify and investigate potential malicious or suspicious internal activity. 
• Contribute to improving proactive detection of insider threat activity through research, development and implementation of new use cases, processes, and technology.
• Perform highly sensitive and confidential investigations, including digital forensic analysis, involving internal risks such as employee misconduct, intellectual property theft, embezzlement, misuse, harassment, and physical security threats.
• Utilize a range of data sources, systems, and tools to collect, search, recover, sort, and organize large volumes of digital evidence during all phases of the investigative process.
• Deliver clear, meaningful results and associated reporting to requestors of various levels across the organization.
• Assist in the troubleshooting of and enhancements to data loss prevention controls and solutions.
• Investigate data loss alerts for potential accidental or malicious data leaks.
• Assist with driving continuous improvement across the cyber investigations group and its processes.
• Maintain awareness of new forensic technology, insider threat detection techniques, and industry best practices.

Please note this is not an exhaustive list of all responsibilities of the position, and the requirements of the job may change in line with business needs.

Skills and Qualifications

• Minimum 4 years of experience in computer forensics, investigations, or similar information security discipline in digital investigations following legally sound practices (including chain of custody).
• Experience with insider threat detection, mitigation, and analysis techniques.
• Good understanding of enterprise email systems including Office 365.
• Experience using enterprise level incident response and DLP tools.
• Experience conducting sensitive and confidential investigations, including the use of forensic technologies such as EnCase and Cellebrite.
• Knowledge of current digital forensic best practices and methodologies.
• Knowledge of current data loss protections best practices and solutions.
• Ability to navigate a complex global network as part of the investigative research process.

Personal Attributes:

• Self-starter with a sense of urgency who takes ownership and responsibility for service delivery.
• Works independently with minimal guidance while also working collaboratively with the team to achieve strategic goals.
• Professional, clear, and concise communication to both technical and non-technical audiences.
• Excellent analytical ability, sharp attention to detail, creative problem solving, and consultative skills.
• Proven organizational skills (time management and prioritization).
• Position requires access to highly sensitive confidential material; integrity and discretion are mandatory.

Formal Education & Certification:

• Bachelor of Science in Computer Science, Information Systems, Software Engineering, Criminal Justice, - or any combination of education and relevant experience

Preferred Certifications:

• GIAC Certified Forensic Analyst – GCFA
• GIAC Certified Forensic Examiner – GCFE
• Certified Forensic Computer Examiner - CFCE
• Certified Information Systems Security Professional – CISSP
• ** NOTE: An equivalent combination of experience, education and/or training may be substituted for the listed minimum requirements.

Compensation

The anticipated salary range for this position is $100,000 to $110,000 at the commencement of employment.  Not all candidates will be eligible for the upper end of the salary range. The actual compensation offered will ultimately be dependent on multiple factors, which may include the candidate’s geographic location, skills, experience and other qualifications.

In addition, the position is eligible for a discretionary bonus in accordance with the terms of the applicable incentive plan.

Corebridge also offers a range of competitive benefits as part of the total compensation package, as detailed below.

Work Location

This position is based in Corebridge Financial’s Houston, TX, Jersey City, NJ, Woodland Hills, CA, or Durham, NC. offices and is subject to our hybrid working policy, which gives colleagues the benefits of working both in an office and remotely.

Estimated Travel

Minimal travel

Why Corebridge?
At Corebridge Financial, we prioritize the health, well-being, and work-life balance of our employees. Our comprehensive benefits and wellness program is designed to support employees both personally and professionally, ensuring that they have the resources and flexibility needed to thrive.
Benefit Offerings Include:

• Health and Wellness: We offer a range of medical, dental and vision insurance plans, as well as mental health support and wellness initiatives to promote overall well-being.
• Retirement Savings: We offer retirement benefits options, which vary by location.  In the U.S., our competitive 401(k) Plan offers a generous dollar-for-dollar Company matching contribution of up to 6% of eligible pay and a Company contribution equal to 3% of eligible pay (subject to annual IRS limits and Plan terms). These Company contributions vest immediately.
• Employee Assistance Program: Confidential counseling services and resources are available to all employees.
• Matching charitable donations: Corebridge matches donations to tax-exempt organizations 1:1, up to $5,000.
• Volunteer Time Off: Employees may use up to 16 volunteer hours annually to support activities that enhance and serve communities where employees live and work.
• Paid Time Off: Eligible employees start off with at least 24 Paid Time Off (PTO) days so they can take time off for themselves and their families when they need it.

Eligibility for and participation in employer-sponsored benefit plans and Company programs will be subject to applicable law, governing Plan document(s) and Company policy.

We are an Equal Opportunity Employer
Corebridge Financial, is committed to being an equal opportunity employer and we comply with all applicable federal, state, and local fair employment laws. All applicants will be considered for employment based on job-related qualifications and without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, disability, neurodivergence, age, veteran status, or any other protected characteristic. The Company is also committed to compliance with all fair employment practices regarding citizenship and immigration status. At Corebridge Financial, we believe that diversity and inclusion are critical to building a creative workplace that leads to innovation, growth, and profitability. Through a wide variety of programs and initiatives, we invest in each employee, seeking to ensure that our colleagues are respected as individuals and valued for their unique perspectives.
Corebridge Financial is committed to working with and providing reasonable accommodations to job applicants and employees, including any accommodations needed on the basis of physical or mental disabilities or sincerely held religious beliefs.  If you believe you need a reasonable accommodation in order to search for a job opening or to complete any part of the application or hiring process, please send an email to [email protected].  Reasonable accommodations will be determined on a case-by-case basis, in accordance with applicable federal, state, and local law.
We will consider for employment qualified applicants with criminal histories, consistent with applicable law.

To learn more please visit: www.corebridgefinancial.com

Functional Area: