The Senior Investigator role leads and supports investigations involving cyber incidents, insider risk, data loss, unauthorized disclosure, suspicious user activity, employee-related security concerns, high-risk users, and other sensitive matters requiring coordinated handling.This is an investigation led role. The investigator will triage alerts, scope activity, collect and preserve evidence, correlate technical and behavioral indicators, document findings, brief stakeholders, and recommend proportionate mitigation actions. The role requires incident response judgment, strong documentation, discretion, and working knowledge of SIEM, SOAR, EDR, DLP, identity, endpoint, and threat intelligence tools.Core ResponsibilitiesCyber & Sensitive InvestigationsLead and support investigations involving cyber incidents, insider-risk alerts, data misuse, policy violations, unauthorized disclosure, suspicious user activity, and other sensitive security mattersTriage alerts, scope activity, identify affected users, systems, data, and business processes, and determine investigation priority based on risk and impactPrepare clear investigation summaries, findings, recommendations, and executive-ready updates for Cyber Security leadership, Legal, HR, Compliance, and business stakeholdersThreat AnalysisApply incident response methodology to assess suspicious activity, determine root cause, validate impact, and support containment or remediation actionsCorrelate endpoint, network, identity, cloud, email, and user-behavior evidence to distinguish benign activity from policy violations, compromise, or intentional misuseUse threat intelligence and investigative tooling to enrich cases, validate indicators, improve detections, and support proactive risk reductionInsider Risk Detection & ManagementIdentify and assess insider-risk indicators across DLP, UEBA, identity, endpoint, cloud, collaboration, and security monitoring platformsInvestigate potential data exfiltration, unauthorized access, abnormal file movement, misuse of sensitive information, and risky behavior by employees, contractors, or privileged usersMonitor high-risk scenarios including employee departures, role changes, privileged access, high-risk travel, sensitive projects, and repeat policy violationsCase Management, Evidence & DocumentationMaintain complete case documentation from intake through closure, including timeline, evidence sources, investigative actions, findings, risk assessment, and mitigation decisionsPreserve evidence integrity and maintain chain of custody where required for cyber, employee, legal, or compliance-sensitive mattersEnsure cases are handled confidentially, consistently, and in alignment with company policy, privacy expectations, legal guidance, and HR directionCross-Functional Coordination & MitigationServe as a trusted investigation partner to Cyber Security, Legal, HR, Compliance, IT, business leadership, and other stakeholders involved in sensitive casesCoordinate escalation, containment, access changes, monitoring, employee action, clean-device workflows, post-travel review, or other mitigation steps with the appropriate ownersTranslate technical findings into clear business risk language for non-technical stakeholders while preserving investigative accurac