Security Operation Center (SOC) Cyber Fraud and Web Application Defense Analyst - Assistant Vice President

Discover your future at Citi

Working at Citi is far more than just a job. A career with us means joining a team of more than 230,000 dedicated people from around the globe. At Citi, you’ll have the opportunity to grow your career, give back to your community and make a real impact.

Job Overview

This is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks on a 24x7 basis. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

Responsibilities:

• As a key member of the Security Operations Center team, the analyst's primary responsibilities will include:

  • Actively monitoring, researching, and assessing security events to identify and analyze web application attacks and digital fraud.

  • Specialized in detecting and responding to threats such as Account Takeovers (ATO), Distributed Denial of Service (DDoS) attacks, common web application vulnerabilities (e.g., Cross-Site Scripting, SQL injection, command injection), and anomalies in financial transactions.

• Follow pre-defined actions to handle BAU and high severity issues including escalating to other support groups.

• Execute daily ad hoc tasks or lead small projects as needed.

• Perform assessment as well as troubleshooting to help isolate technical issues with the integration of fraud monitoring technologies

• Identify areas for tuning use cases to enhance monitoring value.

• Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention, and mitigation of detected fraudulent activities.

Job Skills:

• Strong knowledge of current Digital Fraud trends including common Account Takeover techniques.

• Deep understanding of Application Layer Protocols (HTTP) and OWASP Top 10, including detection of common web application vulnerabilities.

• Knowledge of cutting-edge threats and technologies affecting Web Applications. 

• The following experiences will be considered a plus:

  • Experience with vulnerability assessment as well as penetration testing.

  • Experience w­ith any scripting language and Splunk.

  • Understanding of various operating systems (Windows/UNIX), and web technologies (focusing on Internet security). 

  • Experience with Big Data Technologies, ETL Tools, Data Warehouse and Business Intelligence technologies. 

• Consistently demonstrates clear and concise written and verbal communication

• Proven influencing and relationship management skills

• Proven strong analytical skills

• Attentive to detail and possess a strong investigative mindset

• A good team player, self-driven and able to act as individual contributor

Qualifications:

• 5-8 years of relevant experience in SOC.

• Relevant experience in cyber fraud is a plus.

• Following Certifications will be considered a plus: [CISSP, GWAPT and CFE].

Education:

• Bachelor’s degree/University degree or equivalent experience

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Regular weekly work shift will include one of the weekends (e,g, Saturday Or Sunday).

#LI-Hybrid

------------------------------------------------------

Job Family Group:

Technology

------------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Most Relevant Skills

Please see the requirements listed above.

------------------------------------------------------

Other Relevant Skills

For complementary skills, please see above and/or contact the recruiter.

------------------------------------------------------

Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.

If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View Citi’s EEO Policy Statement and the Know Your Rights poster.