.The Citi Cyber Intelligence Center (CIC) is part of the Global Information Security organization and is responsible for analyzing cyber threat information designed to increase Citi's cyber threat awareness and protection levels. By providing awareness, indications, warnings, and operational readiness, the CIC protects the Citi brand, global business operations, technology infrastructure and client trust against cyber threats worldwide.The Intelligence Lead Analyst is an individual contributor, senior-level analyst role responsible for driving efforts to prevent, monitor, and respond to cyber-attacks and information/data breaches. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.**Responsibilities**:- Triage tactical and/or technical reporting in real time to determine its accuracy and identify threats of potential interest and impact to Citi and its clients.- Deliver concise, actionable intelligence assessments on those threats.- Analyze cyber threat data and correlate with existing understanding of cyber threats impacting the Citi franchise.- Develop threat actor profiles, to include MITRE ATT&CK matrices, on threat adversaries of concern to Citi.- Actively monitor and research cyber threats with a direct or indirect impact to the Citi brand, business operations, infrastructure, and client trust.- Regularly provide intelligence briefs to technical, non-technical, and senior-level audiences.- Provide real-time and local intelligence support to other operational teams from inside a Fusion Center environment.- Maintain good general situational awareness of the cyber threat environment.- Regularly support, involve, and liaise with other CIC Threat Intelligence Teams.**Requirements**:- 6+ years of relevant experience- Understanding of one or more of following concepts: MITRE ATT&CK, Advanced Persistent Threats, Third Party Risks, Cybercrime, Hacktivism, Various Cyber Attack Types, Fraud, Malware and Ransomware, Mobile Threats, Social Engineering, Insider Threats, SOC function, Incident Management, Networks and Encryption.- Consistently demonstrates clear and concise written and verbal communication- Proven influencing and relationship management skills- Proven analytical skills**Preferred Qualifications**:- 2+ years in an intelligence (defense/law enforcement/private sector) and/or information security role- Knowledge of software and hardware vulnerabilities- Experience with analyzing malware samples to determine adversary attribution and/or functionality- Graduate degree in one of the following areas: cybersecurity, information security, information technology, or computer science- Additional technical certifications- **Job Family Group**:Technology- **Job Family**:Information Security- **Time Type**:Full time- Citi is an equal opportunity and affirmative action employer