• Competitive
  • Singapore
  • Permanent, Full time
  • Citibank NA
  • 21 Nov 17

Security Operations Center (SOC) Advance Cyber Defense (ACD) Analyst

Security Operations Center (SOC) Advance Cyber Defense (ACD) Analyst

  • Primary Location: Singapore,Singapore,Singapore
  • Education: Bachelor's Degree
  • Job Function: Technology
  • Schedule: Full-time
  • Shift: Day Job
  • Employee Status: Regular
  • Travel Time: No
  • Job ID: 17050868


Description

The Advanced Cyber Defense (ACD) team is a group inside the Citi Security Operations Center (SOC). 
The ACD team focuses on advanced threat analysis, custom threat detection techniques, SOC process improvement and assisting in new security tools and technology evaluation.  ACD team members need experience in multiple security disciplines including; IDS signature creation, log analysis, malware analysis, Linux/Unix command line and scripting. 

Principle Responsibilities:
•Enhance the value of the current deployment of commercial tools used by Security Operations Center.
•Evaluate new technologies and participate in Proof of Concept (POC) projects
•Research and identify the new areas of risk and exposure where SOC should focus. 
•Conducts threat research on threat intelligence received from either external vendors or internal groups
•Participate in SOC internal projects such as SOC tools development, data analytics and SOC lab expansion.
•Participate in major security events as subject matter expert.

Qualifications

      •4+ years working in the security and operations fields
        •Bachelor's Degree or higher preferred
          •Excellent knowledge of Intrusion Detection (deep TCP/IP knowledge, and Cyber security), various operating systems (Windows/UNIX), and web technologies (focusing on Internet security)
            •Ability to read and understand packet level data. Intrusion detection and prevention and Network Security Products (IDS/IPS, firewalls, etc.) Host Security Products (HIPS, AV, scanners, etc.) 
              •Knowledge of cutting edge threats and technologies effecting Web Application vulnerabilities and recent internet threats
                •Exposure on Vulnerability assessment as well as penetration testing or forensic analysis fields are an advantage

                Certifications from EC-Council, GIAC, (ISC)² are preferred [CISSP, C|EH, GCIA, CCNA]

                *LI-SG