• Competitive
  • Singapur, Singapore
  • Festanstellung, Vollzeit
  • Citibank NA
  • 2018-07-18

Security Operations Center (Fraud Analyst) Cyber Security

Security Operations Center (Fraud Analyst) Cyber Security

  • Primary Location: Singapore,Singapore,Singapore
  • Education: Bachelor's Degree
  • Job Function: Technology
  • Schedule: Full-time
  • Shift: Day Job
  • Employee Status: Regular
  • Travel Time: No
  • Job ID: 18006286


Description

  • The Cyber Security & Networks (CS&N) organization is responsible for the management of critical security & network infrastructure, services, and monitoring across the enterprise on a global level. Services offered span areas across Infrastructure Defense/Perimeter Security Services (PSO/STI IS); Security Event Monitoring Services/Security Operations Center (SOC/SECM); Core & Distributed Authentication Services (SSO); Host & Application Protection Services (HASI); Vulnerability Assessment (VA/Ethical Hacking), Network Operations, and Network & Security Build/Solutioning.
  • Security Operations Center (SOC) has been established as a centralized organization that provides information security and fraud incident detection and response services for the global Citi business environments. Threats and vulnerabilities are identified through real time monitoring and alerting, trending analysis, external and internal intelligence sources, and strategic technology deployment. SOC works closely with internal information security teams like SIRT and CSIS, as well as Fraud and other groups to escalate events identified through monitoring and analysis.
  • The Security Operations Center Information Fraud Analyst will be part of the SOC Team. This center monitors, analyzes, and responds to threats and vulnerabilities. SOC Fraud Analysts will be responsible for performing the day-to-day monitoring of Citi's environment, analyzing, responding to events as necessary, and providing technical support. These operations are critical since they provide Citi's first line of defense against attacks.
Key Responsibilities:
  • The analyst performs monitoring, research, assessment and analysis on fraud and security monitoring systems, which requires demonstrable security incident response experience.
  • Follow pre-defined actions to handle BAU and High severity issues including escalating to other support groups.
  • Execute daily adhoc tasks or lead small projects as needed.
  • Create and maintain operational reports for Key Performance Indicators and weekly and Monthly Metrics.
  • Perform initial risk assessment on new threats and vulnerabilities, perform assessment phase of Vulnerability & Threat Management process.
  • Perform assessment as well as troubleshooting and help isolate issues with IDS/IPS sensors, Antivirus servers, Vulnerability scanners, SIEM and fraud tools.
  • Participate in daily and ad-hoc conference calls as well as compliance & controls, self-assessment processes and documentation related tasks.


Qualifications

Knowledge/Experience:
  • 6+ years working in the security & operations fields.
  • Excellent knowledge of Intrusion Detection (deep TCP/IP knowledge, and Cyber security), various operating systems (Windows/UNIX), and web technologies (focusing on Internet security).
  • Experience in web development and programming languages i.e. Java, XML, Perl and HTML.
  • Knowledge of cutting edge threats and technologies effecting Web Application vulnerabilities and recent internet threats.
  • Exposure on Vulnerability assessment as well as penetration testing or forensic analysis fields are an advantage.
  • A good understanding of security, web based and infrastructure vulnerabilities is required.
  • Experience driving negotiations and managing/developing strategic relationships and partnerships.
  • Working knowledge of cybersecurity & network principles and elements.
Skills:
  • Fluent in oral and written English.
  • Extensive liaison networks within and external to the financial services industry.
  • Great communications skills; Must be able to interact with senior management from both a business and technical perspective.
  • Must be able to present to different audiences and adjust accordingly (business, technical and management) either structured presentations or ad-hoc.
  • Business process improvement mindset with a drive for controls, automation and efficiency.
  • Must be able to multitask efficiently and provide accurate, reliable, consistent end-to-end service.
  • The candidate is expected to have a very strong knowledge Microsoft tools like Excel, MS Project, SharePoint, Visio, Word, PowerPoint, MS Access, SQL.
Qualifications:
  • Bachelor's Degree in Business, Information Systems (or equivalent), Master's degree or MBA preferred.
  • Certifications from ECCouncil, GIAC, (ISC)² are preferred [CISSP, C|EH, GCIA, CCNA].
Competencies
  • Strong self-management, work autonomy and use of own initiative.
  • Ability to read and understand packet level data.
  • Ability to handle ambiguity and make decisions and recommendations with limited data.
  • Solid analytical/problem-solving skills with capability to identify solutions to unusual and complex problems.
  • Operates with passion and drive when pursuing goals.
  • Self-motivated and goal-oriented with the ability to seize the initiative, garner consensus and develop and implement an effective strategy.
  • Demonstrates a high level of analytical rigor in formulating strategies, objectives and measuring results.
  • Willingness to challenge and question the status quo, making recommendations for best solutions.
  • Strong strategic thinking skills
  • Personal presence, intellect, energy and drive to succeed in a high-performance environment.
  • Drives excellent through others to achieve organizational performance and change.


*LI-SG
Singapur, Singapore Singapur Singapore SG