Senior Security Engineer

Job Description

This role is an Insider Threat Program Analyst working in the Data Protection and Security Program. The Program Analyst is responsible for supporting, developing, and enhancing the insider threat program. The colleague will engage with Business Units across the organization, produce metrics and documentation, and implement tools and analytic methods to mitigate insider risks. A successful candidate will:

• Assess existing Insider Threat capabilities, identify gaps, and develop technical and non-technical indicators
• Assist in evaluating and implementing tools to mitigate insider threats
• Partner with other groups within the organization to identify, implement, and document processes to mitigate insider risk
• Assist in collecting, analyzing, and interpreting data from multiple sources to improve the ability to prevent, detect, and respond to insider risks
• Discern patterns of complex threat actor behavior, communicate an understanding of current and developing Cyber threats to key stakeholders, and stay current with emerging trends and threats in the field of insider threat
• Collaborate with internal departments to ensure that tools developed for colleague use include adequate data streams to support fraud detection and reporting capabilities
• Interpret findings from fraud detection reports to identify and escalate potential incidents of internal fraud, theft, or misconduct
• Create and maintain insider fraud detection reports derived from various internal and external data sources
• Experience in collaborating with internal departments to ensure tools developed for colleague use include adequate data streams for fraud detection
• Ability to interpret findings from fraud detection reports to identify potential incidents of internal fraud, theft, or misconduct
• Experience in creating and maintaining insider fraud detection reports

Required Qualifications:

• Understanding of information security concepts, best practices, and regulations related to insider threat
• Understanding of enterprise security and networking technology and how the technology relates to the prevention, detection, and response of insider threats
• Advanced understanding of the Microsoft Office suite (e.g., Outlook, Word, Excel, PowerPoint, etc)
• Excellent verbal and written communication skills (including but not limited to: correct English usage, grammar, spelling, punctuation, vocabulary, etc.).
• Ability to execute work independently and as a team member with good interpersonal skills.

Preferred Qualifications:

• Experience as a security consultant
• Knowledge of machine learning and its applications in information security
• Familiarity with the Financial Services Industry
• Experience performing security event and incident detection and handling in a large corporate environment, gathering and analysis of threat intelligence, and computer network surveillance/monitoring
• Experience configuring and using user and/or entity behavior analytics (UBA/UEBA) products
• Advanced knowledge of statistics and modeling, both for anomaly identification and alert tuning
• Experience in collaborating with internal departments to ensure tools developed for colleague use include adequate data streams for fraud detection
• Ability to interpret findings from fraud detection reports to identify potential incidents of internal fraud, theft, or misconduct
• Experience in creating and maintaining insider fraud detection reports
• Experience with SQL and Python
• Certifications: Associate of (ISC)^2, or similar.

Required Education:

• Bachelor's degree in Information Security, Computer Science or a related field + 1 years relevant experience

Preferred Education:

Bachelor's degree Bachelor's degree in Information Security, Computer Science, Criminal Justice or a related field + 3 years experience

Schedule: M-F 8:00 AM - 5:00 PM

Hours: 40 hours per week

About Us

Equal Employment Opportunity

Citizens, its parent, subsidiaries, and related companies (Citizens) provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, ancestry, color, citizenship, physical or mental disability, perceived disability or history or record of a disability, ethnicity, gender, gender identity or expression, genetic information, genetic characteristic, marital or domestic partner status, victim of domestic violence, family statparenthood, medical condition, military or veteran status, national origin, pregnancy/childbirth/lactation, colleague's or a dependent's reproductive health decision making, race, religion, sex, sexual orientation, or any other category protected by federal, state and/or local laws. At Citizens, we are committed to fostering an inclusive culture that enables all colleagues to bring their best selves to work every day and everyone is expected to be treated with respect and professionalism. Employment decisions are based solely on merit, qualifications, performance and capability.

Equal Employment and Opportunity Employer

Job Applicant Data Privacy Policy

Background Check

Any offer of employment is conditioned upon the candidate successfully passing a background check, which may include initial credit, motor vehicle record, public record, prior employment verification, and criminal background checks. Results of the background check are individually reviewed based upon legal requirements imposed by our regulators and with consideration of the nature and gravity of the background history and the job offered. Any offer of employment will include further information.