Citi Group Cyber Fraud Lead Analyst 

United States, Texas, Irving 

287161440

, you will be working within the Cyber Security Operations Center, leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. This role performs monitoring, research, assessment, and analysis of Digital Fraud Attacks leveraging various Security Event Monitoring platforms including Web Threat Detection, Real Time Fraud Risk Assessment, Big Data and Digital Application Monitoring tools (ArcSight, Splunk, SAS, Teradata, and enterprise real time fraud detection tools). The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy. While working with a global SOC team with members in Singapore, Texas, New York, and Florida, you will also work with various fraud teams outside of our organization daily.

Responsibilities:

• Follow Pre-defined actions to handle BAU and High severity issues including escalating to other support groups.
• Execute daily ad-hoc tasks or lead small projects as needed.
• Create and maintain operational reports for Key Performance Indicators and weekly and monthly metrics.
• Perform assessment as well as troubleshooting to help isolate technical issues with the integration of fraud monitoring technologies.
• Participate in daily and ad-hoc conference calls to manage quality assurance and documentation related tasks.
• Identify areas for tuning use cases to enhance monitoring value.
• Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention, and mitigation of detected fraudulent activities.
• Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions

Qualifications:

• 6+ years of relevant experience
• Strong knowledge of current Cyber Fraud trends including common Account Takeover techniques and banking malware.
• Experience with Big Data Technologies, ETL Tools, Data Warehouse and Business Intelligence technologies
• Consistently demonstrates clear and concise written and verbal communication
• Deep understanding of Intrusion Detection analysis (TCP/IP, packet level analysis) as well as Application Layer Protocols (HTTP)
• Knowledge of cutting-edge threats and technologies affecting Web Applications
• Proven analytical skills

Preferred Qualifications:

• 4+ years working in the security & operations fields is a plus
• Experience with any scripting language (Python, Perl, VBScript) is a plus
• Experience with vulnerability assessment as well as penetration testing or forensic analysis fields is a plus
• Certifications from EC-Council, GIAC, (ISC)² are preferred [CISSP, C|EH, GCIA, CCNA] preferred
• Advanced proficiency with Microsoft Office tools and software is a plus
• Proven influencing and relationship management skills is a plus
• Advanced understanding of various operating systems (Windows/UNIX), and web technologies (focusing on Internet security) is a plus

Bachelor’s degree/University degree or equivalent experience

Master’s degree preferred

Anticipated Posting Close Date:

View the " " poster. View the .

View the .

View the