Back to jobs

Lead Insider Threat Investigator

Airbnb
Sydney, Australia
Jun 4, 2026
Salary not listed

Job Description

Airbnb was born in 2007 when two hosts welcomed three guests to their San Francisco home, and has since grown to over 5 million hosts who have welcomed over 2 billion guest arrivals in almost every country across the globe. Every day, hosts offer unique stays and experiences that make it possible for guests to connect with communities in a more authentic way.

The Difference You Will Make:

The Insider Threat Lead Investigator is responsible for conducting high-risk, complex insider threat investigations involving cybersecurity, financial misconduct, intellectual property theft, unauthorized access, and data exfiltration. This role focuses on investigating identified threats produced by the Information Security Engineering team or from other internal reporting.

The investigator will conduct technical investigations, guide OSINT research, perform subject interviews, evidence collection, data deletion, and asset retrieval, while ensuring adherence to employment law, corporate policies, and regulatory requirements. This role requires deep technical expertise in digital forensics, cloud security, log analysis, and enterprise forensic tools while maintaining strong legal acumen to manage sensitive cases involving corporate risk, HR, and compliance considerations.

A Typical Day:

1. Technical Investigations

  • Utilize a functional understanding of information security principles, practices, and frameworks.
  • Investigate identified insider threat cases escalated from the Information Security Engineering team, including:
    • Financial misconduct
    • Engineering production abuse (e.g., code manipulation, unauthorized system modifications, data sabotage)
    • Intellectual property theft & unauthorized data exfiltration
    • Legal escalations involving executive personnel
  • Conduct structured investigative interviews with subjects and relevant stakeholders to validate findings and gather additional intelligence.
  • Manage incident response in coordination with Information Security, HR, Legal, and other relevant parties.
  • Perform custom high-severity data deletions and secure asset retrieval in compliance with legal, regulatory, and corporate policies.

2. Digital Forensics & Technical Analysis

  • Collaborate with security engineering teams for the forensic collection of digital evidence from endpoints (Windows, macOS, Chrome OS), cloud storage, and mobile devices (iOS, Android).
  • Perform log analysis and coordinate/perform event queries across
Apply now on Adzuna