CrawlJobs Logo
Citi Logo Citi · IT - Administration

Cyber Defense Analyst

Mexico, Ciudad De Mexico · Job Posted March 04, 2026
Apply Position
Job Link Share

Job Description

The Cyber Defense Analyst is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks for the Services business.

Job Responsibility

  • Perform regular security assessments to ensure compliance with the Bank requirements
  • Assist Security Incident Response Teams with incident investigations and aid in technical risk assessments
  • Monitor vulnerability assessments and ethical hacks, ensuring that issues are addressed for the applications that they support
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

Requirements

  • 5-8 years of relevant experience
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor’s degree/University degree or equivalent experience
Citi - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cyber Defense Analyst

8 matching positions

Cyber Defense Analyst

The cyber defense analyst for Services within the Business, Functions and Techno...
Location
Location
Mexico , Ciudad De Mexico
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Ensure business and technology remain within risk tolerance for all applicable Cybersecurity risk appetites and sustain it with the consistent operating model
  • Enhance current vulnerability management (VTM) operating model in line with BFT Risk Governance organization with Path-to-appetite and reporting
  • Timely escalate to CISO Leadership and Businesses and ensure VTM risk treatment responses are entered in a timely fashion
  • Support Vulnerability Organization to improve the quality and integrity of VTM/GEM reports
  • Continue supporting vulnerability management Uplift Program activities and reduce risk while reducing stakeholders’ pain-points (data/reporting, false positives, processes)
  • Perform root cause analysis of VA Issues and identification of repeated offenders for high risk vulnerabilities
  • Conduct security reviews to check for security compliance to Bank’s requirements
  • Identify areas of repeating SIRT incidents, related trending and work with technology team and ISO contacts in reducing repeat volume instances
  • Identify opportunities for improving SIRT workflow efficiencies and developing reporting which better reports on root causes for bringing down repeat instance volumes
  • Work with SIM and ISO community to facilitate the adherence of SIRT reporting timelines as per defined within SIRT standard, as well as identify deviations and its cause
Job Responsibility
Job Responsibility
  • Ensure business and technology remain within risk tolerance for all applicable Cybersecurity risk appetites and sustain it with the consistent operating model
  • Enhance current vulnerability management (VTM) operating model in line with BFT Risk Governance organization with Path-to-appetite and reporting
  • Timely escalate to CISO Leadership and Businesses and ensure VTM risk treatment responses are entered in a timely fashion
  • Support Vulnerability Organization to improve the quality and integrity of VTM/GEM reports
  • Continue supporting vulnerability management Uplift Program activities and reduce risk while reducing stakeholders’ pain-points (data/reporting, false positives, processes)
  • Perform root cause analysis of VA Issues and identification of repeated offenders for high risk vulnerabilities
  • Conduct security reviews to check for security compliance to Bank’s requirements
  • Identify areas of repeating SIRT incidents, related trending and work with technology team and ISO contacts in reducing repeat volume instances
  • Identify opportunities for improving SIRT workflow efficiencies and developing reporting which better reports on root causes for bringing down repeat instance volumes
  • Work with SIM and ISO community to facilitate the adherence of SIRT reporting timelines as per defined within SIRT standard, as well as identify deviations and its cause
  • Fulltime
Read More
Arrow Right

Cyber Defense Operations Center Analyst III

The Cyber Defense Operations Center (CDOC) Analyst III proactively monitors the ...
Location
Location
United States , Los Angeles
Salary
Salary:
121056.00 - 199742.00 USD / Year
lacare.org Logo
L.A. Care Health Plan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree (or equivalent education/experience)
  • At least 6 years of direct, operational experience in comparable information security or technology teams
  • Operational experience configuring and managing a Security Information and Event Management (SIEM) platform
  • Experience responding to crises, incidents, and investigations
  • Demonstrated experience performing threat analysis and managing security-monitoring toolsets
  • Operational experience working in a regulated environment (e.g., classified networks, healthcare, finance, banking, etc.)
  • Exceptional attention to detail executing and developing procedures in security operations center environments
  • Strong understanding of networking and communication protocols (such as TCP/IP, UDP, SSL/TLS, IPSEC, HTTP/S, etc.)
  • Strong background in Windows Server and Linux administration
  • Strong verbal and written communication skills
Job Responsibility
Job Responsibility
  • Evaluates events, detects threats and anomalies in the environment, and reacts to potential incidents utilizing incident response playbooks
  • Performs incident analysis, investigation and response
  • Conducts penetration tests in support of risk assessment/analysis activities
  • Performs daily defensive operational activities
  • Develops and maintains CDOC documentation and runbooks
  • Conducts enterprise-wide threat hunting
  • Carries out CDOC efforts during incident and breach responses
  • Facilitates cross-organizational collaboration in a dynamic team environment in response to security incidents
  • Responds to alerts and notifications from the MSSP
  • Processes tickets to and from the MSSP and ensures they are resolved in a timely manner
What we offer
What we offer
  • Paid Time Off (PTO)
  • Tuition Reimbursement
  • Retirement Plans
  • Medical, Dental and Vision
  • Wellness Program
  • Volunteer Time Off (VTO)
  • Fulltime
Read More
Arrow Right

Security Operation Center (SOC) Cyber Fraud and Web Application Defense Analyst

This is an intermediate level position responsible for leading efforts to preven...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience in SOC
  • Relevant experience in cyber fraud is a plus
  • Following Certifications will be considered a plus: [CISSP, GWAPT and CFE]
  • Bachelor's degree/University degree or equivalent experience
  • Strong knowledge of current Digital Fraud trends including common Account Takeover techniques
  • Deep understanding of Application Layer Protocols (HTTP) and OWASP Top 10, including detection of common web application vulnerabilities
  • Knowledge of cutting-edge threats and technologies affecting Web Applications
  • Experience with vulnerability assessment as well as penetration testing
  • Experience with any scripting language and Splunk
  • Understanding of various operating systems (Windows/UNIX), and web technologies (focusing on Internet security)
Job Responsibility
Job Responsibility
  • Actively monitoring, researching, and assessing security events to identify and analyze web application attacks and digital fraud
  • Specialized in detecting and responding to threats such as Account Takeovers (ATO), Distributed Denial of Service (DDoS) attacks, common web application vulnerabilities (e.g., Cross-Site Scripting, SQL injection, command injection), and anomalies in financial transactions
  • Follow pre-defined actions to handle BAU and high severity issues including escalating to other support groups
  • Execute daily ad hoc tasks or lead small projects as needed
  • Perform assessment as well as troubleshooting to help isolate technical issues with the integration of fraud monitoring technologies
  • Identify areas for tuning use cases to enhance monitoring value
  • Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention, and mitigation of detected fraudulent activities
  • Fulltime
Read More
Arrow Right

Security Operation Center Cyber Fraud and Web Application Defense Analyst

This is an intermediate level position responsible for leading efforts to preven...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience in SOC
  • Relevant experience in cyber fraud is a plus
  • Following Certifications will be considered a plus: [CISSP, GWAPT and CFE]
  • Bachelor’s degree/University degree or equivalent experience
  • Strong knowledge of current Digital Fraud trends including common Account Takeover techniques
  • Deep understanding of Application Layer Protocols (HTTP) and OWASP Top 10, including detection of common web application vulnerabilities
  • Knowledge of cutting-edge threats and technologies affecting Web Applications
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven strong analytical skills
Job Responsibility
Job Responsibility
  • Actively monitoring, researching, and assessing security events to identify and analyze web application attacks and digital fraud
  • Specialized in detecting and responding to threats such as Account Takeovers (ATO), Distributed Denial of Service (DDoS) attacks, common web application vulnerabilities (e.g., Cross-Site Scripting, SQL injection, command injection), and anomalies in financial transactions
  • Follow pre-defined actions to handle BAU and high severity issues including escalating to other support groups
  • Execute daily ad hoc tasks or lead small projects as needed
  • Perform assessment as well as troubleshooting to help isolate technical issues with the integration of fraud monitoring technologies
  • Identify areas for tuning use cases to enhance monitoring value
  • Engage with Fraud Policy, Operations, Strategy and other teams for early detection, prevention, and mitigation of detected fraudulent activities
  • Fulltime
Read More
Arrow Right

Senior Network Defense Analyst

Assurit is currently seeking an experienced Senior Network Defense Analyst to su...
Location
Location
United States , Linthicum
Salary
Salary:
Not provided
assurit.com Logo
Assurit
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have and maintain an Active Top Secret/SCI clearance
  • Master’s degree with at least 10 years of experience
  • Minimum of 8 years of experience in cybersecurity, with a focus on network defense and threat analysis
  • Strong analytical skills with the ability to analyze large datasets and identify patterns of malicious activity
  • Possesses deep understanding of cloud security architecture, including secure infrastructure design, access controls, data protection, and threat detection
  • Experience with performing cybersecurity analysis including incident response and management, forensic media analysis, malware analysis, reverse-engineering, cyber threat intelligence analysis, and security engineering
  • Comprehensive understanding of network and application protocols, cyber vulnerabilities and exploitation techniques, and cyber threat methodologies and tactics
  • Analyze and interpret diverse network data (Netflow, PCAP, custom logs) to identify threats and support investigations. Utilize virtual and physical sensors to strengthen defensive cyber posture
  • Demonstrated experience in AI & ML technologies, with practical experience applying them to cybersecurity challenges
  • Experience conducting all-source intelligence research and producing intelligence assessments
Job Responsibility
Job Responsibility
  • Proactively safeguard networks by analyzing network appliance data, identifying and prioritizing threats before they strike, and recommending effective mitigation strategies
  • Serve as a technical lead in cyber intelligence and all-source intelligence research, focusing on network operations
  • Analyze data from deployed network appliances, security events, and artifacts by leveraging AI and ML algorithms for anomaly detection and pattern recognition
  • Develop presentations, papers, and recommendations summarizing threat assessments and proposing effective countermeasures
  • Leverage classified data, open-source research, and net flow analysis, combined with AI and ML, to produce intelligence assessments, technical information papers, and cyber threat profiles of current events, enabling predictive analysis and proactive risk management
  • Craft data-driven reports and briefings for government leaders, leveraging AI and ML-generated insights and recommendations to inform critical decision-making
What we offer
What we offer
  • medical and dental coverage
  • paid time off
  • Fulltime
Read More
Arrow Right

Computer Network Defense Analyst Mid-Level

ITC is a Woman Owned Small Business delivering exceptional consultation to the U...
Location
Location
United States , Saratoga Springs
Salary
Salary:
100000.00 - 200000.00 USD / Year
seekintegrity.com Logo
Integrity Technology Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • TS/SCI with CI or FS Poly Required
  • 18 semester hours of military training/coursework in networking, computer science, or cyber topics is equivalent to an Associate's degree (applicable to Level 1 - Level 4)
  • With an Associate's Degree, at least 7 years demonstrated experience related to job description
  • With a Bachelor's Degree, at least 5 years demonstrated experience related to job description
  • With a Master's Degree, at least 3 years demonstrated experience related to job description
  • With a Doctorate Degree, at least 2 years demonstrated experience related to job description
Job Responsibility
Job Responsibility
  • The Computer Network Defense Analyst will use information collected from a variety of computer network defense resources (including, but not limited to, intrusion detection system alerts, firewall and network traffic logs, and host system logs) to identify, analyze, and report events that occur or might occur within their environment
What we offer
What we offer
  • 401K plan with company contributions (safe harbor and profit sharing)
  • 11 Federal holidays, 21 Days PTO
  • Medical, Dental, & Vision with substantial company contributions
  • Company provided Life, LTD and STD Insurance
  • Health Savings Accounts/ Flexible Spending Accounts
  • Referral Bonuses
  • Performance Bonuses
  • Tuition Assistance for Education, Training, and Professional certifications
  • Career Development
  • Fulltime
Read More
Arrow Right

Computer Network Defense Analyst Expert Level

ITC is a Woman Owned Small Business delivering exceptional consultation to the U...
Location
Location
United States , Annapolis Junction
Salary
Salary:
Not provided
seekintegrity.com Logo
Integrity Technology Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have TS/SCI with CI or FS Poly
  • 18 semester hours of military training/ coursework in networking, computer science, or cyber topics is equivalent to an Associate's degree (applicable to Level 1 - Level 4).
  • With an Associate's Degree, at least 13 years demonstrated experience related to job description.
  • With a Bachelor's Degree, at least 11 years demonstrated experience related to job description.
  • With a Master's Degree, at least 9 years demonstrated experience related to job description.
  • With a Doctorate Degree, at least 7 years demonstrated experience related to job description.
Job Responsibility
Job Responsibility
  • The Computer Network Defense Analyst will use information collected from a variety of computer network defense resources (including, but not limited to, intrusion detection system alerts, firewall and network traffic logs, and host system logs) to identify, analyze, and report events that occur or might occur within their environment.
What we offer
What we offer
  • 401K plan with company contributions (safe harbor and profit sharing)
  • 11 Federal holidays, 21 Days PTO
  • Medical, Dental, & Vision with substantial company contributions
  • Company provided Life, LTD and STD Insurance
  • Health Savings Accounts/ Flexible Spending Accounts
  • Referral Bonuses
  • Performance Bonuses
  • Tuition Assistance for Education, Training, and Professional certifications
  • Career Development
  • Fulltime
Read More
Arrow Right

Computer Network Defense Analyst Expert Level

ITC is a Woman Owned Small Business delivering exceptional consultation to the U...
Location
Location
United States , Annapolis Junction
Salary
Salary:
Not provided
seekintegrity.com Logo
Integrity Technology Consultants
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must currently possess active TS/SCI with Poly
  • 18 semester hours of military training/coursework in networking, computer science, or cyber topics is equivalent to an Associate's degree
  • With an Associate's Degree, at least 13 years demonstrated experience related to job description
  • With a Bachelor's Degree, at least 11 years demonstrated experience related to job description
  • With a Master's Degree, at least 9 years demonstrated experience related to job description
  • With a Doctorate Degree, at least 7 years demonstrated experience related to job description
  • Relevant experience must be in computer or information systems design/development, programming, information/cyber/network security, vulnerability analysis, penetration testing, computer forensics, information assurance, and/or systems engineering
  • Experience in network or system administration
  • Completion of military training in a relevant area such as JCAC (Joint Cyber Analysis Course), Undergraduate Cyber Training (UCT), Network Warfare Bridge Course (NWBC)/Intermediate Network Warfare Training (INWT), Cyber Defense Operations will be considered towards relevant experience requirement
Job Responsibility
Job Responsibility
  • Use information collected from a variety of computer network defense resources (including, but not limited to, intrusion detection system alerts, firewall and network traffic logs, and host system logs) to identify, analyze, and report events that occur or might occur within their environment
What we offer
What we offer
  • 401K plan with company contributions (safe harbor and profit sharing)
  • 11 Federal holidays, 21 Days PTO
  • Medical, Dental, & Vision with substantial company contributions
  • Company provided Life, LTD and STD Insurance
  • Health Savings Accounts/ Flexible Spending Accounts
  • Referral Bonuses
  • Performance Bonuses
  • Tuition Assistance for Education, Training, and Professional certifications
  • Career Development
Read More
Arrow Right