Security Operation Center (SOC) Cyber Fraud and Web Application Defense Analyst - Assistant Vice President

This is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks on a 24x7 basis. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

Responsibilities:

• As a key member of the Security Operations Center team, the analyst's primary responsibilities will include:
• Actively monitoring, researching, and assessing security events to identify and analyze web application attacks and digital fraud.
• Specialized in detecting and responding to threats such as Account Takeovers (ATO), Distributed Denial of Service (DDoS) attacks, common web application vulnerabilities (e.g., Cross-Site Scripting, SQL injection, command injection), and anomalies in financial transactions.
• Follow pre-defined actions to handle BAU and high severity issues including escalating to other support groups.
• Execute daily ad hoc tasks or lead small projects as needed.
• Perform assessment as well as troubleshooting to help isolate technical issues with the integration of fraud monitoring technologies
• Identify areas for tuning use cases to enhance monitoring value.
• Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention, and mitigation of detected fraudulent activities.
  

Job Skills:

• Strong knowledge of current Digital Fraud trends including common Account Takeover techniques.
• Deep understanding of Application Layer Protocols (HTTP) and OWASP Top 10, including detection of common web application vulnerabilities.
• Knowledge of cutting-edge threats and technologies affecting Web Applications.
• The following experiences will be considered a plus:
• Experience with vulnerability assessment as well as penetration testing.
• Experience w­ith any scripting language and Splunk.
• Understanding of various operating systems (Windows/UNIX), and web technologies (focusing on Internet security).
• Experience with Big Data Technologies, ETL Tools, Data Warehouse and Business Intelligence technologies.
• Consistently demonstrates clear and concise written and verbal communication
• Proven influencing and relationship management skills
• Proven strong analytical skills
• Attentive to detail and possess a strong investigative mindset
• A good team player, self-driven and able to act as individual contributor
  

Qualifications:

• 5-8 years of relevant experience in SOC.
• Relevant experience in cyber fraud is a plus.
• Following Certifications will be considered a plus: [CISSP, GWAPT and CFE].
  
  

Education:

• Bachelor’s degree/University degree or equivalent experience
  
  

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Regular weekly work shift will include one of the weekends (e,g, Saturday Or Sunday).

------------------------------------------------------

Job Family Group:

Technology

------------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Most Relevant Skills

Please see the requirements listed above.

------------------------------------------------------

Other Relevant Skills

For complementary skills, please see above and/or contact the recruiter.

------------------------------------------------------

Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.

If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View Citi’s EEO Policy Statement and the Know Your Rights poster.