View All Jobs 139994

SOC Insider Threat Hunter Operations Analyst

Proactively hunt insider threats by analyzing large datasets and security tools
Hungary
Mid-Level
23 hours agoBe an early applicant
Citigroup

Citigroup

A global financial services corporation offering a range of banking, investment, and financial products to consumers and businesses.
127 Similar Jobs at Citigroup

SOC Insider Threat Hunter Operations Analyst

The Insider Threat Cyber Ops (ITCO) team sits in the SOC actively monitoring Citi's network against malicious attempts to harm the organization utilizing cybersecurity tools and trend analysis.

The SOC Insider Threat Hunter Operations Analyst is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

Responsibilities:

  • Monitor and analyze logs and alerts on a variety of different technologies across multiple platforms to identify security incidents
  • Proactively hunt for insider threat utilizing large datasets, tools, and detections
  • Continually assess and refine insider threat detections
  • Execute analysis of email-based threats to include understanding of email communications, platforms, headers, transactions, and identification of malicious tactics, techniques, and procedures
  • Utilize a variety of security tools and technologies to analyze potential threats to determine impact, scope, and recovery.
  • Leverage network security tools and capabilities to support Cyber Threat Monitoring activities
  • Assist Security Incident Response Teams with incident investigations and aid in technical risk assessments
  • Identify and develop new and improved technical procedures and process control manuals
  • Identify significant IS threats and vulnerabilities
  • Perform regular assessments based on changes in the threat landscape as needed
  • Appropriately assess and prioritize risk
  • Demonstrate appropriate consideration for the firm's reputation and safeguarding Citigroup, its clients, and assets by driving compliance with applicable laws, regulations, and Citi Policy
  • Most have a strong analytical and problem-solving skills to detect and respond to insider threats effectively.
  • Proficiency in cybersecurity tools and technologies, as well as knowledge of data loss prevention (DLP) and user behavior analytics (UBA) tools.
  • Maintaining a strong code of ethics and respecting privacy while investigating insider Threat related incidents is essential.

Requirements:

  • 3+ years' hands-on relevant experience
  • Cybersecurity experience is an absolute requirement
  • Experience working with DLP tools, UEBA, and SIEM technologies (i.e., Splunk, CrowdStrike)
  • Strong proficiency with threat analysis tools
  • Consistently demonstrates clear and concise written and verbal communication
  • Strong working knowledge of Threat Monitoring Procedures
  • Knowledge and exposure in creating use cases.
  • Direct experience working with large datasets.
  • Direct experience in threat hunting in a corporate environment
  • Ability to work cohesively in a team setting with minimal supervision
  • Proven analytical skills

Additional/Preferred Skills:

  • Knowledge and exposure to SOAR technology
  • Scripting/coding is a plus
  • Previous experience as an insider threat analyst and/or threat hunter.
  • Certifications: CISA, CISSP, ITPM (Insider Threat Program Manager), SANs

What we can offer you:

By joining Citi Hungary, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive compensation package and enjoy a whole host of additional benefits that support you (and your family) to be well, live well and save well:

  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Socially active employee communities with diverse networking opportunities

Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self every day. We want the best talent around the world to be energized to join us, motivated to stay, and empowered to thrive.

Sounds like Citi has everything you need?

Then apply to discover the true extent of your capabilities.

+ Show Original Job Post
Suggest a correction
























SOC Insider Threat Hunter Operations Analyst
Hungary
Human Resources
Apply to job
About Citigroup
A global financial services corporation offering a range of banking, investment, and financial products to consumers and businesses.