• Competitive
  • Singapore
  • Permanent, Full time
  • Citibank NA
  • 2018-11-19

CIC Tactical Cyber Threat Intelligence Analyst

CIC Tactical Cyber Threat Intelligence Analyst

  • Primary Location: Singapore,Singapore,Singapore
  • Education: Bachelor's Degree
  • Job Function: Risk Management
  • Schedule: Full-time
  • Shift: Day Job
  • Employee Status: Regular
  • Travel Time: No
  • Job ID: 18064376


Description

The Citi Cyber Intelligence Center (CIC) is part of Citi Operations & Technology Risk Management (OTRM) Information Security and is responsible for analyzing cyber threat information designed to increase Citi's cyber threat awareness and protection levels. By providing awareness, indications, warnings, and operational readiness, the CIC protects the Citi brand, global business operations, technology infrastructure and client trust against cyber threats worldwide.
Seeking motivated professional to conduct cyber threat analytic research, produce clear, concise, and well documented cyber threat analytic products focusing on domestic and international cyber threats effecting Citi's financial infrastructure, customer experience, and domestic and global market development.  In addition to crafting well documented cyber threat analysis; applicants will be expected to be present their findings during meetings, company forums, and internal cyber security working groups, as necessary.  Maintain a close and on-going relationship with other cyber security professionals in ASPAC with both private industry and government personnel, as appropriate:  
  • Conceptualize and produce clear, concise and well documented multi-source cyber threat intelligence reports, CIC initiated cyber products, and oral presentation when required
  • Identify and analyze threats which potentially create a risk to the company, its employees, shareholders, assets and clients
  • Initiate and participate in host-nation cyber threat intelligence exchanges with private industry financial sector peers, law enforcement personnel, when applicable, and with other Citi lines of business
  • Through the course of daily internal Citi and host-nation exchanges, be prepared to share analytic discoveries and developments with CIC analytics personnel and with the CIC leadership team
  • Maintain a general situational awareness of developing and potential malicious cyber activity in ASPAC and be able to brief counter-parts in New York, New Jersey, and Washington DC as appropriate 
  • Work closely with the local technology risk teams to assess risk and provide recommendations for improving our security posture
  • Work closely with other cyber threat and security personnel and workcenters to identify duplicative tasks and projects, initiate collaborative analytic projects and submit recommendations to CIC leadership on potential corrective actions and/or collaborative endeavours  
  • Actively initiate and engage in cyber threat discussions and decisions which support and align with Citi's established values and the principles of Citi's Execution 2.0
  • Assist Technology peers in regular production and dissemination of intelligence reports
  • Review threat information and maintain threat repository
  • Given the CIC is part of Citi Operations & Technology Risk Management, the candidate will not only have CIC Management career progression opportunities but also career opportunities in the Citi Technology Risk, Information Security, and Incident Management departments
  • Position will be located in Singapore


Qualifications

Req Qualifications: 
  • Bachelors degree
  • Experience in cyber security aspects of multiple platforms, operating systems, software, etc. communications and network protocols
  • 3+ years in a cyber threat intelligence job function
  • CISSP or CISA Certification preferred
  • Strong intelligence analytical background
  • Familiarity with open source intelligence service providers and methodologies
  • Understanding of networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection systems, encryption, load balancing, and other network protocols
  • Previous Intelligence and/or Law Enforcement background(s), a plus
  • Strong communication and diplomacy skills are required
  • Strong project management and analytical skills
  • Ability to effectively communicate with all levels of senior management
  • Strong written and verbal communication and presentation skills
  • Ability to create effective cross-functional and cross-business teams
  • Excellent communication skills, analytical ability, strong judgment and leadership skills, and the ability to work effectively with clients and IT management and staffs
  • Ability to communicate technical issues to technical and non-technical business representatives
  • In-depth understanding of intelligence analysis and production; either with private industry or government service
  • Working knowledge of IS programs including, Incident Management, Vulnerability Assessment, Cyber Intelligence, Infrastructure Defense, Security Operations. Understanding of major threats and threat actors
  • Understanding of networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection systems, encryption, load balancing, and other network protocols
  • Possesses the ability to review information to determine its significance, validate its accuracy and assess its reliability
  • Familiarity with open source intelligence research and methodologies
  • Can conduct moderately complex analysis of information from multiple sources to arrive at a conclusion and present key analytic judgments
  • Understanding of a variety of structured analytic techniques (examples: Red Team Analysis, Structured Brainstorming, Key Assumption Check, Analysis of Competing Hypotheses, Devil's Advocacy, and Alternative Futures Analysis
*LI-SG