Security Operation Center

Security Operation Center (SOC) Cyber Fraud Analyst (Assistant Vice President) The Security Operations Center Cyber Fraud Analyst is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks on a 24x7 basis. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy. Overview The SOC Cyber Fraud Analyst monitors, researches, assesses and analyzes digital fraud attacks using various Security Event Monitoring platforms. The role requires collaboration with Fraud Policy, Operations, Strategy and other teams for early detection, prevention and mitigation of fraudulent activities. Previous experience in cyber security operations or incident response is required. Responsibilities Monitor, research, assess and analyze Digital Fraud Attacks leveraging security event monitoring platforms (Web Threat Detection, Real Time Fraud Risk Assessment, Big Data and Digital Application Monitoring tools). Follow predefined actions to handle BAU and high severity issues, including escalation to other support groups. Execute daily ad hoc tasks or lead small projects as needed. Create and maintain operational reports for Key Performance Indicators and weekly/monthly metrics. Perform assessments and troubleshooting to help isolate technical issues with the integration of fraud monitoring technologies. Participate in daily and ad hoc conference calls to manage quality assurance and documentation related tasks. Identify areas for tuning use cases to enhance monitoring value. Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention and mitigation of detected fraudulent activities. Job Skills/Qualications Ability to communicate effectively both orally and in writing. Strong knowledge of current Cyber Fraud trends including common Account Takeover techniques and banking malware. Deep understanding of Intrusion Detection analysis (TCP/IP, packet level analysis) as well as Application Layer Protocols (HTTP). Advanced understanding of various operating systems (Windows/UNIX) and web technologies (Internet security). Knowledge of cutting-edge threats and technologies affecting Web Applications. Experience with Big Data Technologies, ETL Tools, Data Warehouse and BI technologies is preferred. Experience with any scripting language and Splunk is a plus. Experience with vulnerability assessment, penetration testing or forensic analysis fields is a plus. Certifications from EC-Council, GIAC, (ISC)² are preferred (CISSP, CEH, GCIA, GWAPT and CFE). Qualifications 5-8 years of relevant experience in Cyber Fraud or SOC Consistently demonstrates clear and concise written and verbal communication Proven influencing and relationship management skills Proven analytical skills Education Bachelor’s degree/University degree or equivalent experience This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required. ------------------------------------------------------ Job Family Group: Technology ------------------------------------------------------ Job Family: Information Security ------------------------------------------------------ Time Type: Full time ------------------------------------------------------ Location: Singapore, Singapore EEO Statement: Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law. If you require a reasonable accommodation to use our search tools and/or apply for a career opportunity, please review Accessibility at Citi. View Citi’s EEO Policy Statement and the Know Your Rights poster. #J-18808-Ljbffr