The Citi Cyber Intelligence Center (CIC) is part of the Global Information Security organization and is responsible for analyzing cyber threat information designed to increase Citi's cyber threat awareness and protection levels. By providing awareness, indications, warnings and operational readiness, the CIC protects the Citi brand, global business operations, technology infrastructure and client trust against cyber threats worldwide.
In our team we are looking for a:
Cyber Threat Intelligence Intermed Analyst
Maintain good general situational awareness of the cyber threat environment.
Perform threat intelligence review and follow-up, cover Alerting function and Handover - as needed.
Analyze cyber threat data and correlate with existing understanding of cyber threats impacting the Citi franchise.
Actively monitor and research cyber threats with a direct or indirect impact to the Citi brand, business operations, infrastructure and client trust.
Triage tactical, technical reporting in real time to determine its accuracy and identify threats of potential interest and impact to Citi and its clients.
Complete written and verbal (daily) briefings - as needed.
Deliver concise written assessments that add context and detail to those threats, and enable other information security and cyber security teams to meaningfully respond to them.
Regularly support, involve and liaise with all the CIC Threat Intelligence teams, including but not limited to the Tactical, Operational, Strategic and Technical sub-teams.
Provide real-time and local intelligence support to other (non-CIC) operational teams in the Global Information Security environment.
Represent the CIC and support other representation and awareness activities - as required.
Support the BAU processes and ad-hoc deliverables of the CIC EMEA Analysis team - as needed.
Musts: At least completed BSc education, preferably in one of the following areas: information security / information technology / (cyber) defense / politics / military / intelligence. Experience working in operational environments where multiple competing items must be prioritized and delivered. Experience in roles requiring excellent standards of written and verbal communication. Preferably 1+ years in an intelligence (defense / civilian / law enforcement) or information security related role. High-level understanding of the following concepts: Cyber Kill Chain, Advanced Persistent Threat, Third Party Risks, Cybercrime, Hacktivism, Various Cyber Attack Types, Fraud, Malware and Ransomware, Mobile Threats, Social Engineering, Insider Threats, SOC function, Incident Management, Networks, Encryption, Defense in Depth, OSI. Ability to actively track and prioritize issues and inquiries. Possesses the ability to review information to determine its significance, validate its accuracy and assess its reliability. Must be a self-starter, self-motivated and able to work independently with little oversight. Ability to work within cross-functional and cross-business teams. Strong organizational and analytical skills. Enjoys being challenged and learning new, necessary information to better understand and identify threats. Ability to effectively communicate with all levels of senior management and peer team members.
Plus: Russian / Ukrainian / Chinese language skill is an advantage. Any relevant certificate in an advantage (CISM, SANS, CSX, ISO, Etc.)
What we offer:
Ability to improve written and verbal communication and presentations skills with all levels of staff, including senior management. Ability to work within cross-functional and cross-business teams and gain overview of the CIC and Global Information Security functions. Developing analytical, coordination and leadership skills. Gaining understanding in various "cyber threat handling" and "crisis management" functions and processes.
Apply now to be part of this dynamic team
Internal Number: 5871893
eFinancialCareers is a career site specializing in financial services.