Senior Insider Threat Investigations

The Community You Will Join: 

• Airbnb is a mission-driven company dedicated to helping create a world where anyone can belong anywhere. It takes a unified team committed to our core values to achieve this goal. Airbnb was born in 2007 when two hosts welcomed three guests to their San Francisco home, and has since grown to over 5 million hosts who have welcomed over 2 billion guest arrivals in almost every country across the globe. Every day, hosts offer unique stays and experiences that make it possible for guests to connect with communities in a more authentic way.

The Difference You Will Make:

• The Insider Threat Investigations Manager oversees the rollout, operational quality, and ongoing effectiveness of BPO (Business Process Outsourcing) investigations into insider threats impacting Airbnb. This leader is responsible for building, scaling, and managing a global insider investigations program that empowers external (BPO) teams to deliver high-quality, compliant, and thorough investigations. As the program grows, the Manager will develop and oversee regional investigations leads, who will manage onboarding and ongoing support for BPO investigations teams in their geographic areas. For high-complexity and high-severity cases, the Manager acts as both lead and partner, driving joint investigations alongside BPO personnel to ensure delivery of best-in-class investigative outcomes. They will closely collaborate with their program counterpart within Security Engineering, collating security control vulnerabilities, building feedback channels, closing the loop of investigative findings, detection gaps, and emerging threats, to inform ongoing improvements in detection rules and workflows. They will collaborate extensively with Information Security, Legal, HR, and Risk & Compliance to safeguard Airbnb’s assets and reputation.

A Typical Day: 

Program Leadership, Scalability & Operational Oversight

• Deploy, and evolve the BPO Insider Threat Investigations program to support global operations and future growth.
• Develop the framework to scale the program regionally by recruiting, onboarding, and managing regional investigations leads.
• Oversee directly, then delegate operational oversight to regional leads in the delivery of standardized BPO onboarding, ongoing training, operational review and maintenance for both new and existing BPO investigation teams.
• Conduct continuous assessments of BPO investigations and regional teams to ensure thoroughness, technical accuracy, compliance, and alignment with Airbnb standards.
• Lead global feedback cycles, and knowledge-sharing sessions across internal teams, regional leads, and all BPO investigators.
• Serve as an escalation point for high-impact cases, ensuring prompt response and resolution in collaboration with regional leads and BPO teams.
• Coordinate with Security Engineering on the rollout, scaling and performance review of detection models, ticketing systems, and remediation action specifically designed for the BPO use case.

Investigation Management & Joint Case Leadership

• Oversee BPO and regional investigation workflows for diverse insider threat risks (financial misconduct, IP theft, production abuse, unauthorized access, etc.).
• Prioritize and define key performance indicators (KPIs) for BPO investigation teams to ensure investigations are thorough, compliant, and aligned with Airbnb standards.
• Oversee and enforce SLAs for investigations, ensuring investigations begin promptly and final reports are delivered within defined timeframes.
• Personally lead and coordinate joint investigations and subject interviews in partnership with BPO teams and regional leads on complex, high-severity matters.
• Assure all investigations reflect proper evidence handling, digital forensics, interview practices, and documentation in line with legal, regulatory, and corporate requirements.

Guidance for Investigations

• Set investigation and response standards and provide log analysis guidance to BPO teams, then to internal regional leads.
• Align regional leads and BPO investigators with internal resources, tools, and subject matter expertise as needed.

Legal Acumen, Compliance, and Reporting

• Ensure global investigations comply with employment law, data privacy regulations, company policies, and relevant commercial frameworks.
• Collaborate with Legal, Talent, Privacy, and Risk and Compliance both centrally and via regional leads to support effective risk management and remediation.
• Deliver structured, cross-functional and executive-level reports and briefings on regional and global threat, vulnerability, and BPO security health metrics and synthesize lessons learned for continuous improvement.

Your Expertise:

Experience & Expertise

• 10+ years of professional experience in insider threat investigations, enterprise security, investigations into applications, production environments, or equivalent.
• Demonstrated experience overseeing investigation teams and/or managing vendor/BPO programs at scale, preferably including global/regional operations.
• Experience establishing and managing regional leadership structures in investigations, with a track record of onboarding, training, and supporting geographically distributed teams.
• Strong background in technical investigation, digital forensics, and operational quality assurance.

Managerial & Program Skills

• Proven ability to build and scale enterprise investigation programs, including development of regional leadership/oversight capabilities.
• Skilled in mentoring, enabling, and coaching both direct and indirect (e.g., BPO/regional) investigation teams.
• Capable of designing and implementing regional onboarding programs and maintaining operational standards worldwide.

Legal Acumen

• Deep understanding of employment law, data privacy, and regulatory compliance relevant to large-scale, cross-border investigations.

Preferred Certifications

• General/Corporate/Workplace Investigations CFE, PCI, CPP, CFI, SHRM-Internal Investigations
• Cyber Security Awareness Courses(e.g. Google Cybersecurity Certificate)
• Insider Threat & Threat Assessment CERT ITPM, NaBITA, Behavioral Science.
• Project Management Professional (PMP); Agile Certified Practitioner (PMI-ACP)

Additional Attributes

• Demonstrated ability to communicate program strategy, status, and risk effectively to senior leaders and cross-functional teams globally.
• Analytical thinker with a commitment to operational excellence, scalability, and continuous program improvement.

Your Location:

This position is US - Remote Eligible. The role may include occasional work at an Airbnb office or attendance at offsites, as agreed to with your manager. While the position is Remote Eligible, you must live in a state where Airbnb, Inc. has a registered entity. Click here for the up-to-date list of excluded states. This list is continuously evolving, so please check back with us if the state you live in is on the exclusion list  If your position is employed by another Airbnb entity, your recruiter will inform you what states you are eligible to work from.

Offices: United States