Cybersecurity Engineering Manager

TransUnion’s Global Information Security organization is seeking a passionate and experienced leader to join our Global Insider Threat Program as Manager – Insider Threat Engineering. In this role, you will oversee a team focused on the operational prevention and detection of insider threats, to safeguard TransUnion’s critical data assets.

In this high-impact role, you will lead a globally dispersed team and collaborate with stakeholders to prevent and detect insider threats, while continuously identifying opportunities to enhance capabilities.

• Team Leadership – Lead a team of ~5 insider threat engineers within this critical functional area, define team goals aligned with Cyber Defense objectives, set clear expectations, and foster a collaborative work environment.
• Engineering Execution – Ensure effective insider threat prevention and detection capabilities across diverse operating systems (Windows, macOS, Linux) and environments (On-prem, Azure, GCP, AWS).
• Strategic Vision - Own the roadmap for insider threat prevention and detection tools and integrations, ensuring scalability, performance, and alignment with enterprise architecture and evolving threat landscape.
• Drive Cross-Functional Collaboration - Partner with Insider Threat Operations and Investigation teams within Cyber Defense and our partner Security Engineering organization to ensure seamless insider threat prevention and detection capabilities. Additionally, you will engage with TransUnion’s global business units to ensure protection against the loss of data assets while also supporting the enablement of the business.
• Continuous Improvement - Define KPIs and deliver regular reports to executive leadership on program effectiveness, incident trends, and risk posture. Additionally, continuously monitor insider threat prevention and detection technologies and implement enhancements to mature TransUnion’s capabilities.
• Data Protection Compliance - Partner with Governance, Risk, and Compliance (GRC) teams to align insider threat controls with Data Protection and Security Management (DPSM) requirements, ensuring audit readiness and control effectiveness, and alignment with enterprise data protection goals.
• Mentoring and Team Development – Support the development of team members through mentoring, industry engagement / knowledge sharing, and training opportunities.
• Bachelor's degree in cybersecurity, computer science, engineering, or a related field preferred.
• Demonstrated experience leading technical teams in the design, deployment, and tuning of insider threat prevention and detection capabilities.
• Deep experience with data loss prevention (DLP), insider threat detection, and user and entity behavior analytics (UEBA) capabilities such as Microsoft Purview, Symantec, Proofpoint, Netskope, Forcepoint, DTEX, etc.
• Experience with cloud-native security tooling (e.G., Microsoft Defender, AWS Macie, Google Chronicle) is a plus.
• Strong understanding of data classification, labeling, and governance.
• Proven record of excellent leadership skills, with the ability to build and motivate high-performing teams.
• Strong cross-functional communication skills, with the ability to influence stakeholders across Security, Legal, HR, and IT.
• Experience operating in a regulated environment with a deep understanding of regulatory requirements and their practical implications, including PCI-DSS, GDPR, Reserve Bank of India (RBI), NYDFS, and other data protection / privacy regulations.
• Strong understanding of security frameworks such as CIS, ISO 27001, and / or NIST CSF as well as industry best practices.
• Relevant security certifications such as CISSP, CISM, or similar are highly desirable