What’s It Like to Work in Cybercrime? An Inside Look with Jen Hicks of Chainalysis
Do you know how terrorist attacks are stopped?
Military intervention is certainly one way, but Jen Hicks prefers another.
"I really, really believe that the key to preventing terrorist attacks is by cutting off their finances," explains Jen, a senior cybercrime investigator at cryptocurrency compliance and investigation firm Chainalysis.
Growing up in a military family and serving in the Navy herself, Jen has lost friends to war and considers it her life's work to help develop a more humane way of stopping attacks and stemming the growing wave of cybercrime. "I like to think that at least in my small corner, it's making a difference," she says. "That if we're able to stop things from happening without violence, then that's all the better."
We sat down with the veteran, blockchain expert, and steampunk enthusiast to unpack her role at Chainalysis, her personal interest in investigating and stopping crime, and why it's so vital that women continue to join and lead the rapidly growing fields of cybercrime and cryptocurrency.
Falling in love with financial intelligence
Jen was born in Okinawa, Japan to an Okinawan mom and Black American dad and raised between Okinawa Island and Miyako Island. Following in her dad's footsteps and joining the military wasn't her original plan.
"As a high-achieving military brat, doing ROTC and becoming an army officer felt like something I was expected to do," she explains. "But I never took a moment to do any self reflection."
When she did, around age 18, Jen realized she had political reservations about the U.S.'s involvement in the Middle East and decided against enlisting in ROTC. That was an early example of Jen breaking out from other people's expectations for her and building her own path, but it wouldn't be the last.
When she did go into the military a couple of years later, it was because she realized she couldn't afford college and didn't want her parents to go into significant debt to help her pay for it. Inspired by her Marine father, she decided to pursue a more cerebral position and became a linguist, studying Mandarin at the Defense Language Institute.
After working for a few years as a hybrid translator/cyber analyst, looking at sensitive data and combing it for intel, Jen wanted to stay in the Navy and work as an instructor, but didn't get those orders.
She decided to leave the military and look for a civilian job. Not everyone agreed with her decision, but Jen was sure of it. "I knew I'd figure it out on my own. I said, 'I know what I don't want to do, and it's this,'" she remembers.
After being recruited by Booz Allen Hamilton and working as a critical infrastructure analyst, Jen became a threat finance analyst at Leidos, where she got to combine her long-standing loves of cryptocurrency and intelligence.
"I fell in love with it," says Jen. "I saw how financial intelligence is crucial to national security—money laundering, trafficking, terrorist financing, all of that. I thought those were fascinating. So I soaked everything up like a sponge."
Jen had been following cryptocurrency as a hobby ever since she read Satoshi Nakamoto's Bitcoin whitepaper when it was published shortly after Jen graduated from high school. "I can't say that I understood every single thing at the time, but from then on, I was hooked on this idea of peer-to-peer digital currency that was, like, very cyber punkish," she says. She kept her early interest to herself because "it was such an obscure, nerdy topic," she says. But once she realized that she could work in a security capacity, investigating the dark side of cryptocurrency, from the darknet to hacks and scams and more, Jen decided to lean into her interests.
"I made it my life's mission to map how terrorists and violent extremist organizations were using cryptocurrency around the world," she says. But that mission wasn't a business priority for the company where she worked at the time, so Jen started looking for a company where it would be.
That's how she found Chainalysis.
A colleague of hers suggested she apply to the blockchain investigation firm, but Jen wasn't sure she qualified. "I had such a high opinion of them, like 'Oh my god, they're all super smart, they probably talk in Bitcoin addresses,'" she says. "But as it turns out, they really wanted me on board, so I was hired and now I get to indulge in my 19-year-old fantasies of exploring illicit activity as a job."
Jen splits her time doing investigations tied to business priorities—from looking into exchanges targeted by malicious cyber actors to investigating how someone could avoid compliance regulations and launder cryptocurrency to identifying who's phished millions out of people's accounts—and doing the work she considers her "moral responsibility."
That second set of projects includes looking into things like child sexual abuse and terrorist financing. "The spectrum is vast, and it's super, super exciting. In between these cases, I have the freedom to pursue the research that I've been wanting to for the past couple of years now," says Jen. "It's really gratifying."
Some of those leads come from her team's research; others come from law enforcement. Her team has relationships with different agencies, from local to federal. "We provide them with data to track people down and make arrests," explains Jen.
Other leads come from individuals in the community who find people like Jen via LinkedIn or Chainalysis's contact form and ask for help. "People will come and say, 'I was scammed out of thousands of dollars,'" says Jen. "It's almost always part of a larger phishing campaign. So we take that, ingest it into our database, and absorb that information into our research to see if we can find where the money went."
It's that open-ended puzzle-solving that Jen loves so much about her job.
"It's the ultimate puzzle to be solved every time you're given one of these cases," says Jen. They'll start with an address and an initial transaction and will follow transitions in and out of different cryptocurrencies, building a graph of transactions and understanding of what is happening.
Jen has two goals for her work: first, to make cryptocurrency more accessible and safer, and second, to help educate people on how it works to empower them to participate in crypto.
Now is the time to get involved
Financial crimes are here to stay, says Jen, even for people who aren't in traditional finance.
"Let's say you're a social worker or a mental health counselor or provider of some sort, right. And you have an elderly patient who just happens to mention that they've struck up a long-distance friendship online. You're going to have to know what the red flags are for possible scam attempts," says Jen.
And cybercrimes often exploit social vulnerabilities, not just technical ones. Look at the 2016 election, says Jen: "They're able to exploit deep fissures that we've always had here and do some considerable damage." On a smaller scale, criminals are sending phishing emails that look like crowdfunding campaigns which people are less likely to look closely at in their rush to help. "It's a new flavor of social engineering that malicious actors are latching onto," says Jen.
With cybercrime already impacting so many aspects of our lives and soon to impact more—"targeting IOT devices, medical technologies, self-driving cars, NFTs"—it's a prime time to shift into the field, and Jen believes that there's no one 'right' way to make that pivot. You don't have to come from traditional IT or finance backgrounds to make an impact in this space, and if you come from an underrepresented background, that's especially true.
"It's easy to build up that psychological barrier of entry to the crypto community when you see that these huge online communities might be filled with trolls saying derogatory things that are either racist or sexist, or that conversations surrounding cryptocurrencies are being dominated by certain personalities on Twitter, or there are men around you who try to confidently tell you the most contradictory things about investing in crypto. To me, all of that is just noise and you have to block it out," says Jen.
"What I want women who are interested in this stuff to do is just be hands-on with the technology itself," says Jen, who suggests starting by creating a private wallet, understanding how privacy coins work, and learning about centralized versus decentralized systems.
If you're a woman interested in the field, reach out to others! Jen is happy to talk to anyone interested, she says. "People in the field are way, way too happy to talk to you for hours about how it works or how they got there," she says. "Chainalysis is doing a fantastic job of hiring women as investigators, and our director is a woman, and it's really cool seeing the empowerment there and knowing that we're considered the best of the best. But we always want more! So feel free to reach out."
2019 Best Online Coding Bootcamps
Watch Our Virtual Seminar with RSA (the security division of Dell Technologies)
PowerToFly was thrilled to partner with RSA (the security division of Dell Technologies) to present a virtual seminar for women in cybersecurity, tech sales and marketing on October 18th. Over a hundred women were able to watch the seminar live and share real time questions for our amazing panelists.
The panel of RSA leaders, which was moderated by PowerToFly's CoFounder Katharine Zaleski, included:
- Nicole Kenny, Director of Inside Sales
- Amy Blackshaw, Director of Product Marketing
- Rashmi Vikram, Global Alliances Executive
- Mita Majethia, RSA Advisory Sales Engineer
Both RSA and Dell are hiring. Check out their page on PowerToFly to learn more about their open roles.
Virtual Seminar with a Group of RSA Security's Women Leaders
This is a great event for women working in cybersecurity, IT Sales and Marketing and as Account Executives, Sales Engineers, Engineers, Consultants, Technical Support and Product Managers. If you would like to be considered for an invitation, please email hi@powertofly.com with your information.
RSA (the security division of Dell Technologies) and PowerToFly invite you to an exclusive virtual seminar for women in cybersecurity, tech sales and marketing. Our panel of RSA's women security leaders are looking forward to taking your questions.
The invite-only virtual seminar will take place on Thursday October 18th from 12pm to 1pm ET.
The panel of RSA's leaders will include:
- Nicole Kenny, Director of Inside Sales
- Amy Blackshaw, Director of Product Marketing
- Rashmi Vikram, Global Alliances Executive
- Mita Majethia, RSA Advisory Sales Engineer
About RSA & Dell: RSA and Dell believes that diversity - of thought, culture, background, gender, age, sexual orientation, race and language - is crucial to innovation. Dell has been included on DiversityInc's list of Top 50 Companies for seven years in a row. Their competitive benefits include a work from home program, caregiver support, adoption assistance and their 'Women in Action' Employee Resource Group.
About our webinars: All RSVP'd attendees are welcome, regardless of race, color, religion, national origin, gender identity, pregnancy, physical or mental disability, or age.
