Fusion Center Third Party Cyber Risk Lead Analyst (Vp)

Citigroup Inc. New York , NY 10007

Posted 1 week ago

  • Primary Location: United States,New York,New York

  • Education: Bachelor's Degree

  • Job Function: Technology

  • Schedule: Full-time

  • Shift: Day Job

  • Employee Status: Regular

  • Travel Time: No

  • Job ID: 19008055

Description

We are currently hiring a Third Party Cyber Risk Analyst, to be a liaison to Citi Fusion Center and The Citi Cyber Intelligence Team. The person will be responsible for monitoring, analyzing, documenting and responding to security events, and performing incident response.

Role/Responsibilities:

  • Responsible for analyzing, documenting and responding to security events, and performing incident response.

  • Identify cyber security threats and perform analysis of reported anomalies. Clearly identify those threat vectors that are specifically threatening to Citi, and contribute to remediation.

  • Serve as subject matter expert in incident response and digital forensics.

  • Use all available tools and data sources to verify accuracy, consolidate/translate data into actionable intelligence, analyze and understand security posture, understand top threats, and provide intelligence reports to stakeholders.

  • Document findings, communicate the findings with the 3rd Party entities and follow up on remediation.

  • Monitor threat intelligence reports.

  • To manage escalation and investigation risk related to third party in coordination with Fusion Center and CIC

  • Act as liaison to the Citi Cyber Security Fusion Center for TPISA Operations and Third party Continuous Monitoring.

  • Provide update on the Fusion Center weekly briefing to include information regarding TPAQs and TPCM escalations.

o Updating the CSFC dashboard on a weekly basis.

o Sending the brief slides to counterparts in ASPAC.

  • Participate in the wall-walk about the TPCM/TPISA dashboard when clients visit the CSFC.

  • Annually submitting inputs for the CSFC Annual Report.

  • Responsible for improving relevant knowledge, skills, and abilities through research, training, and other professional development activities.

About Citi:

Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management. Our core activities are safeguarding assets, lending money, making payments and accessing the capital markets on behalf of our clients.

Citi's Mission and Value Proposition explains what we do and Citi Leadership Standards explain how we do it. Our mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. We strive to earn and maintain our clients' and the public's trust by constantly adhering to the highest ethical standards and making a positive impact on the communities we serve. Our Leadership Standards is a common set of skills and expected behaviors that illustrate how our employees should work every day to be successful and strengthens our ability to execute against our strategic priorities.

Diversity is a key business imperative and a source of strength at Citi. We serve clients from every walk of life, every background and every origin. Our goal is to have our workforce reflect this same diversity at all levels. Citi has made it a priority to foster a culture where the best people want to work, where individuals are promoted based on merit, where we value and demand respect for others and where opportunities to develop to are widely available to all.

Qualifications

Qualifications:

  • Bachelor's Degree in IT or Computer Science (Master's preferred), or equivalent work experience

  • Strong Information Security (IS) and Third Party Information Risk background is a REQUIREMENT for this position.

  • Strong capability intelligence analysis in the area of Cyber Security, Computer Intrusion Analysis, Technology Transfer/Protection, Emerging Technologies, Systems and Vulnerabilities.

  • Familiarity with internet/networking technologies including protocols (TCP/IP, RIP, BGP, ARP, etc.), routers/switches, domain name system, regional internet registries, autonomous systems, etc.

  • Working knowledge of computer networks, firewalls, routers, and intrusion detection systems and types of log/security produced by these devices is highly desired

  • 5+ years of experience researching threat actors and threat groups within the cybercrime ecosystem

  • 5+ years of experience of Identify cyber security threats and perform analysis of reported anomalies. Clearly identify those threat vectors that are specifically threatening to Allison Transmission, and contribute to remediation. Advanced familiarity/proficiency in Computer Intrusion Analysis, Technology Transfer, Systems & Vulnerabilities and Information Operations.

  • 5+ years of experience utilizing threat and vulnerabilities tools, methods and software (LookingGlass ScoutPrime, Risk Recon etc.)

  • Demonstrated ability to use computer tools and software in analyzing numerical and written material to develop logical conclusions and to produce technical assessments for use in finished

  • Excellent written, verbal communication skills and strong organizational skills.

  • Superior use of MS Productivity Software such as MS Access, MS Word, VISIO, PowerPoint, Excel, and Access.

  • Ability to work independently and with minor supervision, as well as in a team environment

  • Ethical, accountable, and customer focused.

Apply Now


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
VP Cyber Risk Analyst

Moody's Analytics Knowledge Services

Posted 1 week ago

VIEW JOBS 3/13/2019 12:00:00 AM 2019-06-11T00:00 The MIS Cyber Risk Group focuses on the impact of cyber risk on credit as the potential exposure for global governments, companies and institutions continues to rise. The group is responsible for creating and executing a cyber-risk analytics and research agenda and developing approaches for the assessment of cyber risk. The VP Cyber Risk Analyst will have the ability to shape Moody's Investors Service (MIS) strategy, analytic, research and outreach framework for cyber risk and its relationship to credit and the financial markets. The role exists to produce timely and relevant research reports on cyber risk and help credit analysts understand and articulate the impact of cyber risk on financial performance. The successful candidate has a background in cyber threat intelligence and ability to communicate clearly to a non-technical audience. Responsibilities: * Curate and analyze cross industry cyber events for credit analysts and business executives through presentations and written reports. * Create and co-author original cross sector research focused on the intersection of cyber risk and financial exposure. * Work with group members in developing an analytic approach to the impact of cyber risk on credit. * Identify and analyze public and commercially available cyber risk data sets. * Work with MIS analysts on sector-specific publications in order to convey Moody's opinion and maintain a consistent voice on cyber related credit matters. * Assist in driving the cyber risk group research and outreach agenda by creating a pipeline of potential research topics and industry engagement opportunities * Work with the outreach and events team to bring cyber risk content into MIS issuer events #LI-DE1 Qualifications Required * Bachelor's or degree in a related field with a 6-8 of years of directly related job experience, or a master's degree in a related field and 3-5 years of related job experience. * Experience working in cyber threat intelligence or incident response role. * Prior work publishing or researching cyber risk issues and trends is a plus. * Excellent verbal and written communication and presentation skills * Sound judgment and highest ethical standards * Experience with financial analysis / accounting practices are a plus * Capable of developing independent opinions and defending own views Preferred * Professional, pro-active, flexible, diligent and dependable * Highly organized and efficient, with ability to multi-task and meet tight deadlines Moody's is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, sex, gender, age, religion, national origin, citizen status, marital status, physical or mental disability, military or veteran status, sexual orientation, gender identity, gender expression, genetic information, or any other characteristic protected by law. Moody's also provides reasonable accommodation to qualified individuals with disabilities in accordance with applicable laws. If you need to inquire about a reasonable accommodation, or need assistance with completing the application process, please email accommodations@moodys.com.. This contact information is for accommodation requests only, and cannot be used to inquire about the status of applications. For San Francisco positions, qualified applicants with criminal histories will be considered for employment consistent with the requirements of the San Francisco Fair Chance Ordinance. For New York City positions, qualified applicants with criminal histories will be considered for employment consistent with the requirements of the New York City Fair Chance Act. For all other applicants, qualified applicants with criminal histories will be considered for employment consistent with the requirements of applicable law. Click here to view our full EEO policy statement. Click here for more information on your EEO rights under the law. Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody's Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary. Moody's Analytics Knowledge Services New York NY

Fusion Center Third Party Cyber Risk Lead Analyst (Vp)

Citigroup Inc.