First Citizens Bank

Principal Information Security Engineer - Threat Intelligence

First Citizens Bank  •  Bengaluru, IN (Hybrid)  •  4 hours ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

FC Global Services India LLP (First Citizens India), a part of First Citizens BancShares, Inc., a top 20 U.S. financial institution, is a global capability center (GCC) based in Bengaluru. Our India-based teams benefit from the company’s over 125-year legacy of strength and stability. First Citizens India is responsible for delivering value and managing risks for our lines of business. We are particularly proud of our strong, relationship-driven culture and our long-term approach, which are deeply ingrained in our talented workforce. This is evident across all key areas of our operations, including Technology, Enterprise Operations, Finance, Cybersecurity, Risk Management, and Credit Administration. We are seeking talented individuals to join us in our mission of providing solutions fit for our clients’ greatest ambitions.

Value Proposition

Be part of a forward-looking cybersecurity team that transforms threat intelligence into actionable defense strategies. This role enables proactive risk reduction by delivering timely, relevant, and intelligence-driven insights to protect the organization against evolving cyber threats.

Position Title: Principal Information Security Engineer – Threat Intelligence
Career Level: P4
Job Category: Assistant Vice President
Role Type: Hybrid
Job Location: Bangalore

About the Team:

The Cybersecurity Threat Intelligence team is responsible for identifying, analyzing, and operationalizing intelligence on emerging threats targeting the organization. The team leverages internal telemetry, external intelligence sources, and advanced analytics to provide insights that enhance detection, prevention, and response capabilities across enterprise environments.

Impact:

This role is critical in strengthening the organization’s cyber defense posture by transforming raw threat intelligence into actionable insights. The engineer will lead intelligence analysis, provide strategic threat context, and enable proactive security measures. The role combines deep analytical expertise with operational alignment to improve detection coverage, reduce dwell time, and anticipate adversary behavior.

Key Deliverables (Duties and Responsibilities)

  • Collect, analyze, and operationalize cyber threat intelligence from internal and external sources to identify threats relevant to the organization’s technology landscape and business operations.
  • Continuously monitor emerging cyber threats, threat actor activity, malware campaigns, and industry-specific threat trends to provide actionable intelligence and risk insights.
  • Assess, prioritize, and coordinate response activities for critical vulnerabilities, including zero-day vulnerabilities, ensuring timely communication and remediation across stakeholder teams.
  • Conduct vulnerability intelligence analysis by correlating threat intelligence, exploit availability, asset exposure, and business impact to support risk-based remediation decisions.
  • Track and manage enterprise vulnerability remediation activities by working closely with infrastructure, application, cloud, and platform teams until identified security gaps are fully resolved.
  • Analyze nation-state and financially motivated threat actor tactics, techniques, and procedures (TTPs) to assess organizational exposure and recommend appropriate defensive measures.
  • Perform malware risk assessments and provide intelligence-driven guidance on prevention, detection, containment, and mitigation strategies.
  • Produce actionable threat intelligence reports, threat advisories, executive briefings, and strategic assessments to support operational and leadership decision-making.
  • Collaborate with Detection Engineering, SOC, Incident Response, Red Team, and Vulnerability Management teams to operationalize threat intelligence into preventive and detective controls.
  • Establish and maintain intelligence requirements, collection priorities, and intelligence-sharing processes to ensure continuous improvement of the threat intelligence program.
  • Correlate threat intelligence with asset inventory, software inventory, vulnerability data, and exposure management information to identify high-risk assets and potential attack paths.
  • Lead intelligence-driven investigations related to emerging threats, active exploitation campaigns, and critical security incidents.
  • Automate intelligence collection, enrichment, prioritization, and dissemination workflows to improve efficiency and reduce operational overhead.
  • Monitor security advisories, software vulnerability disclosures, exploit developments, and threat research publications to provide timely recommendations to technical and business stakeholders.
  • Maintain intelligence documentation, knowledge repositories, and threat profiles to support operational readiness and enterprise security awareness.
  • Ensure adherence to security policies, regulatory requirements, audit standards, and governance processes, including evidence collection and reporting.
  • Contribute to the continuous evolution of the organization’s Threat Intelligence program by evaluating emerging technologies, intelligence sources, and industry best practices.

Skills and Qualification

Functional Skills:

  • Strong expertise in cyber threat intelligence lifecycle and methodologies.
  • Ability to convert intelligence insights into actionable security controls and strategies.
  • Experience in stakeholder communication, including executive-level reporting.
  • Strong analytical and critical thinking skills to assess complex threat scenarios.
  • Ability to work across teams and influence security strategy and operations.

Technical/Business Skills:

  • 10+ years of experience in cybersecurity, with significant focus on threat intelligence.
  • Experience of AI/ML-driven threat detection and adversarial trends.
  • Experience in Developing intelligence-driven indicators, watchlists, and threat-hunting hypotheses to improve detection, monitoring, and incident response capabilities.
  • Strong understanding of threat intelligence frameworks (MITRE ATT&CK, Cyber Kill Chain).
  • Experience with Threat Intelligence Platforms (TIPs) and tools (e.g., Anomali, Recorded Future, Crowdstrike, Flexera Software Vulnerability Research).
  • Knowledge of malware analysis, attack techniques, and adversary behavior.

Leadership Qualities

  • Demonstrates strong ownership of the organization’s threat intelligence program.
  • Acts as a subject matter expert on adversary behavior and emerging threats.
  • Drives intelligence-led security strategies and proactive defense initiatives.
  • Mentors team members and promotes knowledge sharing across functions.
  • Continuously improves intelligence processes, tools, and capabilities.

Relationships & Collaboration

  • Collaborates closely with SOC, Detection Engineering, Incident Response, and Red Team teams.
  • Partners with leadership and business stakeholders to communicate threat risks and implications.
  • Engages with external intelligence vendors and industry forums for intelligence sharing.
  • Works with risk, compliance, and audit teams to align intelligence processes with governance frameworks.
  • Builds strong cross-functional relationships to enhance overall security posture.

Accessibility Needs

We are committed to providing an inclusive and accessible hiring process. If you require accommodations at any stage (application, interviews, or onboarding), we will work with you to ensure a seamless experience.

Equal Employment Opportunity

FC Global Services India LLP (First Citizens India) is an Equal Employment Opportunity Employer. We are committed to fostering an inclusive and accessible environment and prohibit all forms of discrimination on the basis of gender, religion, caste, disability, sexual orientation, economic status or any other characteristics protected by the law. We strive to foster a safe and respectful environment in which all individuals are treated with respect and dignity. Our EEO policy ensures fairness throughout the employee life cycle.

First Citizens Bank

About First Citizens Bank

First Citizens Bank helps personal, business, commercial and wealth clients build financial strength that lasts. Headquartered in Raleigh, N.C., First Citizens has built a unique legacy of strength, stability and long-term thinking that has spanned generations. First Citizens offers an array of general banking services including a network of more than 500 branches and offices in 30 states; commercial banking expertise delivering best-in-class lending, leasing and other financial services coast to coast; innovation banking serving businesses at every stage; and a nationwide direct bank. Parent company First Citizens BancShares, Inc. (NASDAQ: FCNCA) is a top 20 U.S. financial institution with more than $200 billion in assets.

Visit firstcitizens.com or call toll-free 1.888.FC DIRECT (1.888.323.4732). First Citizens Bank. Forever First®. Member FDIC. Equal Housing Lender.

Social Media Terms of Use: https://www.firstcitizens.com/socialterms

Industry
Finance & Insurance
Company Size
10,000+ employees
Headquarters
Raleigh, North Carolina
Year Founded
Unknown
Social Media