Citi
Security Operation Center (SOC) Cyber Fraud and Web Application Defense Analyst - Assistant Vice President
This job is now closed
Job Description
- Req#: 26933742
As a key member of the Security Operations Center team, the analyst's primary responsibilities will include:
Actively monitoring, researching, and assessing security events to identify and analyze web application attacks and digital fraud.
Specialized in detecting and responding to threats such as Account Takeovers (ATO), Distributed Denial of Service (DDoS) attacks, common web application vulnerabilities (e.g., Cross-Site Scripting, SQL injection, command injection), and anomalies in financial transactions.
Follow pre-defined actions to handle BAU and high severity issues including escalating to other support groups.
Execute daily ad hoc tasks or lead small projects as needed.
Perform assessment as well as troubleshooting to help isolate technical issues with the integration of fraud monitoring technologies
Identify areas for tuning use cases to enhance monitoring value.
Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention, and mitigation of detected fraudulent activities.
Strong knowledge of current Digital Fraud trends including common Account Takeover techniques.
Deep understanding of Application Layer Protocols (HTTP) and OWASP Top 10, including detection of common web application vulnerabilities.
Knowledge of cutting-edge threats and technologies affecting Web Applications.
The following experiences will be considered a plus:
Experience with vulnerability assessment as well as penetration testing.
Experience with any scripting language and Splunk.
Understanding of various operating systems (Windows/UNIX), and web technologies (focusing on Internet security).
Experience with Big Data Technologies, ETL Tools, Data Warehouse and Business Intelligence technologies.
Consistently demonstrates clear and concise written and verbal communication
Proven influencing and relationship management skills
Proven strong analytical skills
Attentive to detail and possess a strong investigative mindset
A good team player, self-driven and able to act as individual contributor
5-8 years of relevant experience in SOC.
Relevant experience in cyber fraud is a plus.
Following Certifications will be considered a plus: [CISSP, GWAPT and CFE].
Bachelor’s degree/University degree or equivalent experience
This is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks on a 24x7 basis. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.
Responsibilities:Job Skills:
Qualifications:
Education:This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
Regular weekly work shift will include one of the weekends (e,g, Saturday Or Sunday).
#LI-Hybrid
------------------------------------------------------
Job Family Group:
Technology------------------------------------------------------
Job Family:
Information Security------------------------------------------------------
Time Type:
Full time------------------------------------------------------
Most Relevant Skills
Please see the requirements listed above.------------------------------------------------------
Other Relevant Skills
For complementary skills, please see above and/or contact the recruiter.------------------------------------------------------
Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.
If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi .
View Citi’s EEO Policy Statement and the Know Your Rights poster.About the company
While we're a global bank, our mission is simple: We responsibly provide financial services that enable growth and economic progress. We strive to earn and maintain the public's trust by constantly adhering to the highest ethical standards. We ask our colleagues to ensure that their decisions pass three tests: they are in our clients' interests, create economic value, and are always systemically responsible. When we do these things well, we make a positive financial and social impact in the communities we serve and show what a global bank can do.
Notice
Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.
Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.
An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.