Tech Risk - Global Cyber Defense & Intelligence - Cyber Threat Analysis - Associate

WHO WE ARE

Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA.

Within Technology Risk, the Global Cyber Defense & Intelligence (GCDI) identifies malicious activity, manage the lifecycle of vulnerabilities within GS technologies, and investigates and manages threats across the firm. We are a team of security, software, and product engineers that allow the firm to respond appropriately to firm risks through the use of detection models, security architecture, and cutting-edge cyber threat analysis to manage internal and external threats against the firm. The Cyber Threat Analysis (CTA) team within GCDI performs one of the most critical security and risk functions at the firm - detecting vulnerabilities in our technology and ensuring their remediation before they can be exploited by malicious hackers.

Goldman Sachs has one of the most progressive Technology Risk teams in the industry and is continuing to push the development of risk in preference to security within technology and the business. Year on year success has led the team to work deeper into the organization and gain valuable insights into how technology needs to function, what its risk really is and how this impacts the business.

YOUR IMPACT

You will be a key addition to the Cyber Threat Analysis team, which continuously strives to contribute to the betterment of the overall security posture of the organization. This role will offer you a great platform to apply your knowledge and skills as well as an opportunity to engage with key stakeholders within and external to the organization to consistently improve the program through various activities such as threat modeling, risk assessment, and industry engagement.

HOW YOU WILL FULFILL YOUR POTENTIAL

In this role, you will part of a well-established threat intelligence team and conduct analysis by using a combination of standard intelligence methods and business processes to uncover advanced threat actors. You will conduct a combination of tactical, operational, and strategic threat intelligence tasks to identify cyber risk and inform mitigation strategies.

The ideal candidate should be able to clearly convey complicated technical or behavioral analysis to senior management via threat reporting, models, analyses, presentations, or recommendations. Demonstrated experience needed with threat modeling and cyber-attack methodologies such as MITRE ATT&CK.

RESPONSIBILITIES

• Decipher attack motivations and techniques by correlating threat data from various sources to complete a comprehensive risk assessment of potential cyber attacks.
• Enable a world-class cyber defense program by working closely with other technical, vulnerability management, incident management, and forensic personnel to develop a fuller understanding of the intent, objectives, and activity of cyber threat actors.
• Research and evaluate technical and all-source cyber intelligence to develop in-depth assessments of threats and risks to Goldman Sachs networks, systems, users, and data.
• Develop unique ways to conduct complex cyber intelligence analysis and awareness through collaboration with other Goldman Sachs divisions and trusted outside organizations.

BASIC QUALIFICATIONS

• Strong English verbal and written communication skills required.
• Excellent presentation skills.
• Ability to multitask and prioritize work effectively.
• Highly motivated self-starter.
• Responsive to challenging tasking.
• Attention to detail.
• Ability to write and communicate complex cyber threats to both technical and non-technical stakeholders, including executive leadership.
• Strong sense of ownership and driven to manage tasks to completion.

Preferred Experience / Qualifications

• Bachelor's degree or higher preferred.
• Coursework or experience in computer science, computer security, computer networking, system design, system integration, software development, and emerging technologies preferred.
• Experience working as part of a global team.
• Active participation and contributions to industry-wide working groups.
• Previous experience in the financial sector.

#TechRiskCybersecurity

ABOUT GOLDMAN SACHS

At Goldman Sachs, we commit our people, capital, and ideas to help our clients, shareholders, and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities, and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers. We're committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html

The Goldman Sachs Group, Inc., 2024. All rights reserved. Goldman Sachs is an equal opportunity employer and does not discriminate on the basis of race, color, religion, sex, national origin, age, veterans status, disability, or any other characteristic protected by applicable law.