Citi Group VP – Information Security Analyst Emerging Threat 

Singapore, Singapore 

354054936

Overview of the Organization:

Overview of Chief Information Security Office (CISO):

Overview of the Role:

The Vice President, Emerging Threat Analyst role is an intermediate level position responsible for driving efforts to detect, monitor, and prevent emerging cyber threats with the potential to lead to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

As an Emerging Threat Analyst, your role is to monitor, identify, and analyze new and evolving threats to Citi's information systems, networks, and data. You'll stay at the forefront of emerging technologies, vulnerabilities, threat actors, and attack vectors leveraging this knowledge to anticipate and mitigate future potential risks. Collaborating with cross-function teams, you'll develop proactive strategies and countermeasures to protect against these emerging cyber threats (or near-term threats), ensuring resilient and strong controls and/or mitigations. You will help create actionable dashboards to identify these threats. You'll author expert reports and provide recommendations for enhancing defensive capabilities. This role also requires the ability to assess and analyze large data sets to identify potential threats and trends. Strong analytical skills, a deep understanding of cyber principles, big data experience, creativity, and a proactive mindset are essential for success in this dynamic and critical role.

Responsibilities:

• Develop corrective action language for Information Security (IS) gaps and ensure risk closure meets Citi requirements or industry best practices.
• Facilitate the implementation of approved IS tools and identify/recommend new or improved security solutions or emerging technologies.
• Mitigate risk by analyzing the root cause of issues, impacts to business, and required corrective actions and develop security solutions.
• Ensure IS compliance and seek opportunities to enhance the efficiency of IS policies and procedures.
• Identify significant IS threats and vulnerabilities, and define appropriate controls for discovered threats, documenting the business response.
• Analyze large data sets.
• Disseminate changes to IS regulations and standards to Business and Program owners.
• Provide Information Security advice and counsel as needed.
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
• Serve as a conduit between technology and business teams and provide support on a wide range of threat intelligence projects, including the ability to identify, collect, and analyze multiple data sources
• Support incident response function in Singapore.

Qualifications:

• 5-10 years of relevant experience.
• Additional technical certifications are preferred.
• Demonstrated ability to research and apply current information regarding the IS field.
• Consistently demonstrates clear and concise written and verbal communication.
• Proven influencing and relationship management skills.
• Proven analytical skills.
• Intelligence and investigations experience with detailed knowledge in data analytics, cyber security protocols, cyber threat intelligence, and cyber-fraud investigations.
• Experience supporting client matters while meeting tight deadlines and customer requirements.
• Experience in one or more cybersecurity functions such as Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection / Prevention, Monitoring, Incident Response, or Digital Forensics.
• Familiarity with the NIST Cybersecurity Framework, Center for Internet Security Critical Security Controls.

Education:

• Bachelor's degree in IT, Computer Science, Intelligence, or equivalent experience.
• Master’s degree preferred.

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Time Type:

View the " " poster. View the .

View the .

View the