Cyber Fusion Analyst:

Drawing high-quality, appropriate and objective conclusions from cyber security related information in a timely fashion This includes the ability to assess risk; approach information creatively; identify the lynchpin arguments that support analytic conclusions; identify data points that, if changed, would change or undermine key arguments; contrast and compare new information with previously acquired information; and make use of limited, ambiguous, unreliable, and deceptive information

Adequately representing and defending a view point of a multitude on security topics, emphasizing enterprise decisions to prevent, detect, or alert information security professionals while considering business cases supporting and contrasting the view point

Actively monitor and research cyber threats with a direct or indirect impact to the Citi brand, region business operations, technology infrastructure and client trust in the APAC region

Present ongoing and upcoming significant events in the APAC region virtually during the daily CSFC briefs

Maintaining a constant awareness of CSFC team actions, significant internal and external information security incidents, and changes in Citi information security policy, procedure or technology, and events that indicate change to material risk at Citi

Identifying all areas in which the work of CSFC Teams have touch points, whether through analytic research or incident and accurately translating them into situation or analytic reports

Driving CSFC analytic products based on the current cyber threat landscape

Work daily with CSFC teams to develop Cyber situational awareness and trends

Editing Global CSFC communications for products such as daily and weekly Cyber Reports, Monthly Technical Reports, ad-hoc Situation Reports, Fusion Tracker summaries and internal publications

Identify incidents of significance through fusion of current and historic threat data; determine impact, urgency and audience to whom prevention, detection, mitigation and remediation guidance would be most beneficial, particularly in the APAC region

Triage, process, analyze, and disseminate alerts, reports, and briefings

Briefing internal and external audiences on the CSFC mission, current cyber threat landscape, and CSFC team actions, particularly in the event of a significant cyber incident

Qualifications

Exceptional written and oral communication skills essential Writing samples will be required

Proven ability to understand, collate and explain complex information to a variety of audiences

Bachelor’s degree preferred in various technology and analytics fields

However a solid mix of experience and recognized qualification shall also be acceptable for this very diverse role

Ability to think critically about topics and offer creative conclusions

A sound understanding of cyber security topics, the internet, and security with a passionate desire to learn more

Experience working in a security operations, network operations, intelligence assessment or cyber fusion center environments preferred, but not obligatory

Experience formatting and editing Word, Power Point and PDF documents

Demonstrated ability to collaborate on Cyber Security related topics with multiple teams

Ability to quickly review information to determine its significance, validate its accuracy and assess its reliability and present findings to both technical and non-technical audiences

Driven, self-motivated and able to work independently with little oversight

Demonstrated capability to produce written products on a reoccurring basis incorporating findings from cross-functional and cross-enterprise teams

A basic understanding of the tools and sources available to conduct cyber security alerting, analysis, and enhanced situational awareness

Ability to juggle change in priorities frequently and remain productive and effective

An attitude to continually learn and grow in an ever changing environment that challenges you to produce above and beyond results