Advanced Cyber Defense Analyst

The Advanced Cyber Defense (ACD) team is a group inside the Citi Security Operations Center (SOC).  The ACD is a full-time threat hunt team that focuses on advanced threat analysis, custom threat detection techniques, process improvement and evaluation of new security tools and technology.  ACD team members are subject matter experts in multiple cyber security disciplines including threat hunting, content creation, network and end-point log analysis, malware analysis, Windows/Linux/Unix command line and scripting. 

ACD team member duties include but not limited to development of new SOC processes and procedures to enhance operations, research in emerging cyber security threats, participation and contribution as a Subject Matter Expert (SME) in major security events and provide guidance to SOC Tier 1 and SOC Tier 2 analysts.

Qualified candidates should have strong analytical skills, a proven network security background with knowledge of associated tools, and the ability to conduct analysis against samples of malicious files in a lab environment.

Principle Responsibilities:

• Projects:

  • Conduct research on new technology offerings and determine applicability in Citibank’s SOC.

  • Evaluate and advise on the implementation and effectiveness of the cybersecurity safeguards to ensure that they provide the intended level of protection.

  • Development of new tools, processes and procedures to enhance SOC monitoring and analysis capabilities

• Process Improvement:

  • Perform risk assessments and threat modelling to identify gaps in SOC monitoring capabilities and devise strategies to minimize the risk

  • Conduct online research of the latest cyber threats and ensure those can be detected by existing in-house technologies

• Automation:

  • Identify redundant tasks and automate them to increase efficiency of the SOC team

  • Utilize SOAR to develop playbooks for automating complex use cases

Requirements:

• Security Operations Center / Threat Hunting / Incident Response experience and should be able to perform the SOC analyst Tier 3 duties in addition to having the following experience and advanced threat analysis skills:

• 4-6 years working in the security & operations fields

• Possessing strong fundamental knowledge of networks (TCP/IP) and operating systems (Windows/Linux)

• Hands-on experience with cyber security solutions; SIEM, AV, NIDS, EDR etc.

• Ability to investigate network traffic, read and interpret logs and packet captures, investigate email threats

• Experience with cyber security incident response, web/shell programming as well as being familiar with malware and memory analysis techniques are advantageous

• Fluency in English

• Bachelor's Degree or higher preferred

Desired Personal skills:

• Critical thinking and analytical skills

• Good written and oral communications skills

• Team player with the ability to work independently

What we can offer you:

By joining Citi Hungary, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive compensation package and enjoy a whole host of additional benefits that support you (and your family) to be well, live well and save well:

• Cafeteria Program

• Home Office Allowance (for colleagues working in hybrid work models)

• Paid Parental Leave Program (maternity and paternity leave)

• Private Medical Care Program and onsite medical rooms at our offices

• Pension Plan Contribution to voluntary pension fund

• Group Life Insurance

• Employee Assistance Program

• Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed

• Flexible work arrangements to support you in managing work - life balance

• Career progression opportunities across geographies and business lines

• Socially active employee communities with diverse networking opportunities

Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self every day.  We want the best talent around the world to be energized to join us, motivated to stay, and empowered to thrive. 

Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities. 

#LI-OD1

------------------------------------------------------

Job Family Group:

------------------------------------------------------

Job Family:

------------------------------------------------------

Time Type:

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting