Insider Risk Investigator - Technical & Human Intelligence

About the Role

We are seeking an exceptional Insider Risk Investigator with expertise in both human and technical investigations to support and protect Anthropic's mission. The Insider Risk Team works cross-functionally to deter, identify, investigate and mitigate risks to Anthropic's most critical assets—our people, our data, and our infrastructure.

Responsibilities

• Triage custom technical detection alerts
• Independently conduct end-to-end insider risk investigations while working closely with IT, Detection and Response, Legal, HR and other cross-functional teams
• Monitor and triage external threats targeting employees
• Conduct sensitive interviews of employees or other involved parties
• Perform technical analysis of logs from SIEM, DLP, UEBA systems 
• Leverage AI tools (Claude, Claude Code) to accelerate investigation workflows and data analysis
• Build and maintain investigation documentation
• Assist in iterating and improving on processes, procedures and systems to detect, mitigate and investigate insider risks
• Work cross-functionally to develop, refine and operationalize insider risk indicators, scenarios and mitigation strategies
• Provide rapid-turnaround security assessments to support business operations
• Support education and awareness programs to promote a robust security culture
• Serve as the subject matter expert for insider risk and provide training to team members as needed

You may be a good fit if you have

• Bachelor's degree and/or higher education in a related field
• 5-8 years of experience in insider risk, corporate investigations or a related domain
• 3-5 years experience in conducting investigative interviews
• Experience conducting OSINT for threat assessment, or counterintelligence
• Experience leveraging DLP, UEBA, SIEM, SOAR and other insider risk security tooling for detections and investigations
• Broad understanding of internal and external investigations, cybersecurity, interview techniques, risk assessment and managing strong cross-functional relationships
• Ability to communicate complex security findings clearly and concisely to non-technical stakeholders (written and verbal)
• Track record of rapid response to time-sensitive security requests
• Comfort operating across organizational boundaries (Security, People, Legal, IT)
• Exceptional communication, collaboration skills and the ability to lead projects with little guidance
• Demonstrated ability to operate independently with minimal oversight while managing sensitive cases

Strong candidates may also have

• Experience working in the technology industry or at/with AI/ML companies
• Experience with counterintelligence investigations and nation-state threat actor TTPs
• Background in open-source intelligence collection and analysis
• Track record of AI/LLM adoption for productivity gains in investigative work
• Experience contributing to a high growth startup environment
• Specialized knowledge of risks unique to the AI sector
• Experience with data exfiltration investigations across multiple vectors (email, cloud, removable media)
• Experience working in government, defense, or high-security environments

What makes you successful here

• Entrepreneurial mindset: You see gaps and fill them without being asked
• Technical + human balance: Equal comfort analyzing log data and conducting sensitive interviews
• AI-native approach: You leverage LLMs to work smarter, not just harder
• Mission alignment: You understand AI safety stakes and insider risk's role in protecting that mission
• Judgment under uncertainty: You make sound decisions with incomplete information
• Clear communicator: You distill complex findings into actionable insights for diverse audiences
• Cross-functional navigator: You build relationships and collaborate effectively across teams

Deadline to apply: None. Applications will be received on a rolling basis.