About the position
Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA. Within Technology Risk, the Global Cyber Defense and Intelligence (GCDI) identifies malicious activity, manage the lifecycle of vulnerabilities within GS technologies, and investigates and manages threats across the firm. We are a team of security, software, and product engineers that allow the firm to respond appropriately to firm risks through the use of detection models, security architecture, and cutting-edge cyber threat analysis to manage internal and external threats against the firm. Goldman Sachs has one of the most progressive Technology Risk teams in the industry and is continuing to push the development of risk in preference to security within technology and the business. Year on year success has led the team to work deeper into the organization and gain valuable insights into how technology needs to function, what its risk really is and how this impacts the business.
Responsibilities
- Build and maintain scalable data pipelines to process high throughput streaming data, ensuring data integrity and reliability.
- Analyze threat data and leverage machine learning models to develop automated threat detection mechanisms.
- Collaborate with cross-divisional teams to develop innovative solutions that stop cybercriminals in their tracks.
- Partner with incident response and security engineering teams to identify gaps in processes and recommend enhancements.
- Leverage SQL and Python to perform advanced data analysis, enabling the identification of anomalies and trends within large-scale log data.
- Help gather and analyze threat data, develop detections to spot cybercrime activity, and collaborate with cross-divisional teams to create innovative solutions that stop cybercriminals in their tracks.
Requirements
- 1-3 years of combined experience (or strong academic background) in cybersecurity, incident response, cyber fraud prevention or related fields.
- Hands-on experience with data analysis techniques including writing complex queries in SQL.
- Familiarity with building data pipelines for large streamlining datasets using tools like Kafka, Apache Spark, or similar technologies.
- Eagerness to learn about cyber fraud detection, bot management, client authentication technologies, and machine learning.
Nice-to-haves
- Bachelor's degree in a technology or analytical field such as Computer Science, Data Science, Mathematics or Operations Research.
- Strong programming skills, particularly in Python, with experience in writing modular, testable, and efficient code.
- Hands-on experience with cloud-based data platforms such as Google BigQuery, or similar tools.
- Proficiency in building and deploying machine learning models in production environments.
- An understanding of common cyber fraud tactics (e.g., phishing, account takeover).
- Strong interpersonal and communication skills—able to work collaboratively across technical and non-technical teams.
- Experience working in cybersecurity, including threat detection and prevention, is a plus but not required.
