Responsibilities: Vulnerability and incident analysis: intrusion detection & prevention, attack pattern analysis and remediation options, network security and encryption Problem management: root cause analysis across security incident, malware infection and breach cross domains Design automation workflows for cross domains security scenario Threat Intelligence: work with the respective cyber intelligence teams to gather, analyse and disseminate actionable threat intelligence related to cyber threats, fraud schemes, physical security risks, insider threats, and client protection issues. Conduct thematic assessments by identifying recurring patterns, trends, and systemic issues, potential risk to the organisation reviewing digital security events across cyber threat indicators, fraud patterns, physical security events, and insider threat activities Data Analysis: Acquire data from primary or secondary data sources and socialise data lineage. Identify, analyse, and interpret trends or patterns in complex data sets. Filter and 'clean' data by reviewing dataset, reports, and data performance indicators to locate challenges and propose options for their remediation. Locate and define new data process improvement opportunities Stay abreast with the latest cybersecurity tools, technologies, and methodologies to enhance fusion analysis capabilities. Being Client Focus: Ensuring the user cases are written with minimal ambiguity, and proposed solutions, achieve the customers' goals Gathering, analysing, documenting uses cases questioning, challenging and proposing innovative, automated solutions where necessary. Collaboration: champion collaboration and information sharing between different security domains, including cyber, fraud, physical security, and client protection teams, to facilitate proactive threat identification and response. Engage with stakeholders of various seniority and background in technology, operations, risk and business teams. Risk culture: In collaboration with various risk experts, conduct comprehensive risk assessments across multiple security domains, ensuring regulatory compliance and adherence to industry best practices. Acting as point of contact for Fusion's queries Active member of the Agile Scrum teams Key Stakeholders: Financial Crime teams Fraud teams Digital client channels teams Cyber Defence Centre teams Group Threat Management teams Production support and Operations teams Other SME in different domains Architecture teams Vendors Developers Testers Users Application owner Scrum masters and chief Scrum masters KNOWLEDGE, SKILLS AND EXPERIENCE Must HAVE: Strong experience (5+ years) in the cybersecurity field, with specific expertise in cyber threat intelligence, fraud prevention, physical security, insider threat management, and client protection. Hands on experience in intrusion detection & prevention, attack pattern analysis and remediation options, network security and encryption, Strong experience (5+ years) in Information technology Incident Management in a Security Operation Centre (SOC) for financial services including managing incidents escalation at L2/ L3 Strong experience (5+ years) with security technologies including EDR, IDS/IPS, Firewalls & Log Analysis, SIEM, Anti-Virus, Malware Protection, Network Packet Analyzer. Knowledge of Splunk/DataBricks/ Scripting knowledge (bash / Python / SQL DB's / API's). Strong analytical skills with the ability to collect, organize, analyse, and disseminate significant amounts of information with attention to detail and accuracy Excellent problem-solving skills with a good standard of English (written and spoken) producing timely & accurate documents using the relevant business and industry specific technical language Ability to work proactively, independently when necessary and displays strong initiative Experience in working in multicultural teams Preferred: Relevant certifications, such as CISSP, CISM, CRISC, CEH, or related credentials Strong knowledge of cybersecurity frameworks, industry standards, and best practices, such as NIST Cybersecurity Framework, ISO 27001, and PCI DSS. End to end experience in delivering Cyber Defence tools
