Lead Insider Threat Investigator - Careers

Airbnb

Quick summary

Work type
On-site
Location
San Francisco, CASydney, Australia
Posted
5 days ago
Nearby
99+ roles within 25 mi

Market check

Salary context

How this pay compares to similar roles

Similar $191k
$142k most similar roles pay here $239k

This listing doesn't post a salary. Most similar roles pay $153,135–$229,500.

Based on 240 similar postings.

Employer

About Airbnb

Founded in 2008 and formerly known as AirBed & Breakfast, Inc., Airbnb is a global marketplace connecting travelers with hosts who offer unique accommodations, ranging from private rooms to entire homes. It operates a massive digital platform for booking stays, experiences, and travel services worldwide.

Airbnb currently has 78 open roles on FindRole.

Listed pay typically runs $204,000–$255,000 across 47 roles with salary data.

Most-posted roles

View all roles at Airbnb

At a glance

TL;DR · Lead Insider Threat Investigator - Careers

Apply Now Log in to save

The Insider Threat Lead Investigator role within the Information Security Engineering team requires a senior professional with extensive experience in conducting complex insider threat investigations involving cybersecurity, financial misconduct, and intellectual property theft. This individual will perform technical investigations, guide OSINT research, conduct subject interviews, collect evidence, and manage incident response while adhering to legal and regulatory requirements. Key responsibilities include forensic collection of digital evidence from endpoints and cloud platforms, log analysis, and collaboration with Legal, HR, and Compliance teams to assess corporate risk and develop remediation strategies. The ideal candidate possesses deep technical expertise in Windows, macOS, Chrome OS forensics, SQL-based data correlation, and Kubernetes security, along with strong legal acumen for handling sensitive cases involving executive personnel and critical business functions.

Skills

Windows Event Viewer MacOS Console Chrome OS logs AWS Azure GCP Kubernetes SQL Digital Forensics CI/CD Prometheus Grafana Linux Python Go Docker

What you'll do

  • Conduct high-risk insider threat investigations involving cybersecurity and financial misconduct.
  • Guide OSINT research and perform structured investigative interviews with subjects and stakeholders.
  • Manage incident response in coordination with Information Security, HR, Legal, and other relevant parties.
  • Collaborate on forensic collection of digital evidence from endpoints, cloud storage, and mobile devices.
  • Perform log analysis across enterprise systems to correlate human events for investigative strategies.
  • Ensure investigations adhere to employment law, corporate policies, and data privacy regulations.

What we're looking for

  • 10-12 years of experience in insider threat investigations and digital forensics.
  • Deep technical expertise in Windows, MacOS, Chrome OS forensic tools and cloud environments.
  • Proven ability to conduct high-risk, legally sensitive investigations involving corporate executives.
  • Strong legal acumen with experience in employment law and regulatory compliance.
  • Proficiency in SQL-based forensic data correlation and behavioral anomaly analysis.
  • Experience conducting investigative interviews and providing clear briefings to executive leadership.

Related searches

More Lead Insider Threat Investigator jobs Lead Insider Threat Investigator jobs in San Francisco All jobs at Airbnb

More like this

Similar roles

Insider Risk Specialist, Insider Threat Program

GEICO

Remote (Bethesda, MD) +3 8 days ago $75,000$160,000
SIEM Python OSINT Threat_Hunting Incident_Response Cybersecurity Scripting Automation Cloud_Security SaaS PaaS Data_Analysis Investigative_Reporting Log_Analysis Metrics Mitre_Framework
Remote
Save

Staff Security Analyst, Insider Threat

Anduril Industries

Costa Mesa, CA 8 days ago $191,000$253,000
Python Go Terraform AWS CI/CD Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Kubernetes PostgreSQL Prometheus Grafana Linux Git JSON YAML REST APIs NIST Cybersecurity Framework
Save

Sr. Security Investigator

Uber

Seattle, WA +2 72 days ago $180,000$180,000
AWS GCP Azure SIEM EDR MITRE ATT&CK Python APIs SOAR GenAI Okta Azure AD Container Security SaaS Platform Logs
Hybrid
Save

Insider Risk Investigator

Applied Materials

Santa Clara, CA 23 days ago $152,000$208,500
UEBA Python PostgreSQL Kubernetes AWS Terraform Docker CI/CD Open-Source Intelligence (OSINT) digital forensics cybersecurity networking concepts project management international data privacy regulations
Save

Staff Security Analyst, Insider Threat

Anduril Industries

Seattle, WA 8 days ago $191,000$253,000
Python Go Terraform AWS CDK Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) CI/CD PostgreSQL Kubernetes Prometheus Grafana Linux Git JSON YAML Counterintelligence Export Controlled Information (ECI)
Save