About the position
The Assistant Vice President, Emerging Threat Analyst role is an intermediate level position responsible for driving efforts to detect, monitor, and prevent emerging cyber threats with the potential to lead to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy. As an Emerging Threat Analyst, your role is to monitor, identify, and analyze new and evolving threats to Citi's information systems, networks, and data. You'll stay at the forefront of emerging technologies, vulnerabilities, threat actors, and attack vectors leveraging this knowledge to anticipate and mitigate future potential risks. Collaborating with cross-function teams, you'll develop proactive strategies and countermeasures to protect against these emerging cyber threats (or near-term threats), ensuring resilient and strong controls and/or mitigations. You will help create actionable dashboards to identify these threats. You'll author expert reports and provide recommendations for enhancing defensive capabilities. This role also requires the ability to assess and analyze large data sets to identify potential threats and trends. Strong analytical skills, a deep understanding of cyber principles, big data experience, creativity, and a proactive mindset are essential for success in this dynamic and critical role.
Responsibilities
• Develop corrective action language for Information Security (IS) gaps and ensure risk closure meets Citi requirements or industry best practices.
• Facilitate the implementation of approved IS tools and identify/recommend new or improved security solutions or emerging technologies.
• Mitigate risk by analyzing the root cause of issues, impacts to business, and required corrective actions and develop security solutions.
• Ensure IS compliance and seek opportunities to enhance the efficiency of IS policies and procedures.
• Identify significant IS threats and vulnerabilities, and define appropriate controls for discovered threats, documenting the business response.
• Analyze large data sets.
• Disseminate changes to IS regulations and standards to Business and Program owners.
• Provide Information Security advice and counsel as needed.
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets.
Requirements
• 2-8 years of relevant experience.
• Demonstrated ability to research and apply current information regarding the IS field.
• Consistently demonstrates clear and concise written and verbal communication.
• Proven influencing and relationship management skills.
• Proven analytical skills.
• Data analytics.
Nice-to-haves
• Additional technical certifications are preferred.
• Intelligence and investigations experience with detailed knowledge in data analytics, cyber security protocols, cyber threat intelligence, and cyber-fraud investigations.
• Experience supporting client matters while meeting tight deadlines and customer requirements.
• Experience in one or more cybersecurity functions such as Cyber Threat Intelligence, Threat Hunting, System Administration, Intrusion Detection / Prevention, Monitoring, Incident Response, or Digital Forensics.
• Familiarity with the NIST Cybersecurity Framework, Center for Internet Security Critical Security Controls.
• Preferred education: Bachelor's degree in IT, Computer Science, Intelligence, or equivalent experience.
Benefits
• Medical, dental & vision coverage
• 401(k)
• Life, accident, and disability insurance
• Wellness programs
• Paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays