Senior SOC Analyst Level 2, VP (C13)

Citigroup-posted about 1 year ago
$125,760 - $188,640/Yr
Full-time • Mid Level
Irving, TX
10,001+ employees
Credit Intermediation and Related Activities
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

The Senior SOC Analyst - Level 2 is responsible for leading efforts to prevent, monitor, and respond to information/data breaches and cyber-attacks. This role ensures the execution of Information Security directives in alignment with Citi's data security policy and involves peer reviewing Level 1 work and escalating cyber threats to other SOC Teams on a 24x7 basis.

  • Identify significant IS threats and vulnerabilities
  • Follow pre-defined actions to handle BAU and high severity issues, including escalating to other support groups
  • Execute daily ad-hoc tasks or lead small projects as needed
  • Create and maintain operational reports for Key Performance Indicators and weekly and monthly metrics
  • Perform assessments and provide troubleshooting to help isolate technical issues based on a dynamic threat landscape
  • Participate in ad-hoc conference calls as needed to manage quality assurance and documentation related tasks
  • Identify areas for tuning use cases to enhance monitoring value
  • Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention and mitigation of detected fraudulent activities
  • Function as part of the Security Incident Response Team with incident investigations and aid in technical risk assessments
  • Coordinate with system development and infrastructure units to identify Information Security (IS) risks and the appropriate controls for development, day-to-day operation, and emerging technologies
  • Monitor vulnerability assessments and ethical hacks, ensuring that issues are addressed for the applications that they support
  • Identify and develop new and improved technical procedures and process control manuals
  • 6+ years' hands-on experience working in a SOC environment
  • Experience with SIEM tools like LogRythm, ArcSight, SumoLogic, Splunk, etc.
  • Experience with EDR tools like SentinelOne, CrowdStrike, Microsoft Defender for Endpoint, etc.
  • Experience working with Email Threat Protection tools such as Proofpoint, Ironscales, Darktrace, etc.
  • Experience with Sandbox analysis tools (e.g., Datadog or comparable tools)
  • Experience with PCAP analysis tools to determine malicious traffic
  • Deep understanding of Intrusion Detection analysis (TCP/IP, packet level analysis) and Application Layer Protocols (HTTP)
  • Advanced understanding of various operating systems (Windows/UNIX), and web technologies focused on Internet security
  • Knowledge of current Cyber Fraud trends including common Account Takeover techniques and banking malware
  • Knowledge of cutting-edge threats and technologies affecting Web Applications
  • Knowledge of how Content Delivering Networks (CDN) work is a plus
  • Understanding of or exposure to vulnerability assessment, penetration testing, or forensic analysis is a big plus
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Certifications from EC-Council, GIAC, (ISC)² are preferred (e.g., CISSP, GCIA, CCNA)
  • Medical, dental & vision coverage
  • 401(k)
  • Life, accident, and disability insurance
  • Wellness programs
  • Paid time off packages including planned time off (vacation), unplanned time off (sick leave), and paid holidays
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service