Job Purpose The ICE Cyberfraud Engineer is a hybrid role merging traditional financial anti-fraud experience with Cybersecurity datasets, analysis tools, threat intelligence, and controls. The role
The ICE Cyberfraud Engineer is a hybrid role merging traditional financial anti-fraud experience with Cybersecurity datasets, analysis tools, threat intelligence, and controls. The role formally sits within Global Intelligence team, but works closely with Finance and Treasury teams, as well as other teams within Information Security, including Blue Team, Red Team, AppSec and GRC.
Threat Modeling and Fraud Intelligence
- Studies open and closed source reporting and liaises directly with compromised financial providers to understand TTPs of institutional fraud, model scenarios, inform red-teaming, and update education and controls. As a member of Intelligence team, candidate is expected to build and support strategic, tactical and operational intelligence workflows.
Payment Security Architecture
– Works with global Finance teams to identify payment channels and tools and advises on architecture, security controls, and fraud prevention.
Payment Data Analytics
- Collects data and builds analytical models to detect and prevent anomalous transactions or precursors.
Profiles acceptable payment flow and implements whitelist rules and related controls to prohibit unnecessary payment capabilities.
Portal Administration and Segregation of Duties
- Maintains an inventory of payment platforms, ensures required security features are provided, and serves as a portal access and entitlement reviewer and/or administrator as appropriate.
- Contributes fraud-specific use-cases to the insider threat program.
Seniority is determined by experience and demonstration of exceptional competencies including:
and effectively publishing technology guidance and repeatable processes
peers in groups and individually
processes and introducing superior technology
to learn business goals, liaise with other departments, and identify ways to increase productivity in other ICE groups and offices
Serving as a responsible
Subject Matter Expert (SME)
on one or more tools or technologies via learning, testing, implementing, enhancing, and educating
Knowledge and Experience
University degree in Engineering, MIS, CIS, or related discipline
Experience with scripting / programming
Experience with automating intelligence workflows
Experience supporting an advanced software development organization
Experience in an exchange, trading facility, or financial services
Hands-on experience with statistical analysis and behavioral systems
Specific Technologies: SWIFT, Fedwire, ACH, Bitcoin, Cryptocurrency, Analytics, Payment Controls, Insider Threat, Python, Threat Intelligence Platforms (TIP), STIX/TAXII, MISP.