10 days old

Cyber Security Lead Analyst

Citigroup
Fort Lauderdale, FL 33313
As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our **Enterprise Operations & Technology** teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do. We keep the bank safe and provide the technical tools our workers need to be successful. We design our digital architecture and ensure our platforms provide a first-class customer experience. Our operations teams manage risk, resources, and program management. We focus on enterprise resiliency and business continuity. We develop, coordinate, and execute strategic operational plans. Essentially, Enterprise Operations & Technology re-engineers client and partner processes to deliver excellence through secure, reliable, and controlled services.


Trust is part of our DNA at Citi. As such, we take safeguarding our customer data very seriously. The Chief Information Security Office (CISO) is made up of deeply dedicated and talented colleagues who work together to ensure the safety of Citis and our clients assets and information. We manage information security as an end-to-end program one with a clear mandate and accountability. Our mission is to continually execute and enhance a global security program that is fully anchored to modern control and security frameworks, fully aligned with the technology of the firm, threat-focused and data-driven, and deeply integrated across all Citi businesses globally.


Being talent-driven, we are focused on attracting, developing, and retaining diverse and inclusive talent with a high technical skill level. As a member of our team we will provide you with career development opportunities at all stages of your career. Our employees model a passion for protecting Citi and our clients and believe in treating others with dignity and respect.


Our commitment to diversity includes a workforce that represents the clients we serve globally from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. Well enable growth and progress together.


**Job Description** **:**


The successful candidate will demonstrate technical training and experience, especially regarding application architecture and infrastructure across various channels, as well as a good understanding of Information Security practices and method related to data privacy/classifications, authentication, biometrics and various data protection methods. Candidate should have a strong track record of developing strong business relationships, with strong presentation and communication skills to converse and breakdown an application into its core functionalities and processes. The individual should be detailed oriented, with excellent follow-up skills. This role reports to the Global Program Owner, and is expected to interface across the entire Citi IT environment (including development, infrastructure/engineering, and risk management).


**Role/Responsibilities** **:**


Support Federal Financial Institutions Examinations Council (FFIEC) compliance projects as required including managing projects, interacting with application managers, ISOs and LOBs to communicate requirements, perform application risk assessments and track compliance.


Work in a cross-functional role to communicate status, track issues and provide ASM reporting.


Drive application security assessments by analyzing the current application architecture to determine the nature of risk and requirements for onboarding authentication tools.


Based on the assessment advice the application team on the controls necessary to achieve compliance.


As SME provide input for resolution of technical issues during authentication assessment and onboarding of in-scope applications.


Responsible for audit related deliverables and work towards governing the Standards and Process documents.


Possess knowledge of cloud-based architecture to do security assessments for the applications based on Cloud.


Needs to be well versed with various authentication methods used in the financial industry and can adapt to the evolving technologies of authentication.


Coordinate with various teams to be clarify or review for additional clarification or updated status;


Enforce program policies on scoping parameters, testing requirements and remediation timeframes.


Improve data quality end-to-end within the ASM process by identifying and spearheading areas of improvement (i.e. automation opportunities, documentation requirements, consolidating inventories).


Prioritize program deliverables and manage day-to-day team workflow.


Select and tailor approaches, methods and tools to support the program and related sub-projects.


Work on Monthly Metrics, Reports for Senior Management. Prepare slides/MIS for the Committee reviews as well as for audit or regulatory reviews;


Knowledge of Archer - Extensive use to manage status of compliance, actions, deliverables and to manager the queue for follow-up tasks;


Other ad-hoc projects as needed.


**Qualifications** **:**


Bachelor's degree (in Computer Technology or related field). or equivalent work experience


6+ years of experience in IT Risk Management/Information Security especially performing IT risk assessments for web applications/infrastructure


3+ years of experience in IT Program and Security Management


2+ years of experience in management reporting and metrics


Understanding of Software Development Lifecycle (SDLC) including Agile Methodology and Cloud sourcing


Understanding of FFIEC (Authentication in an Internet Banking Environment) guideline


Financial services experience is strongly preferred; including familiarity with FFIEC guidelines (Authentication in an Internet Banking Environment)


Strong MS Excel and PowerPoint skills.


Financial services experience strongly preferred


Certification preferred e.g. CISSP, CISM, CISA


Knowledge in APIs/Micro Services preferred


Experience in the use of Archer skills preferred


Bilingual in Spanish preferred


A confident, dynamic individual capable of defining, building, and matrix managing a global program across technology and business organizations in a constantly evolving global enterprise.


**About Citi**


Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.


Additional information may be found at www.citigroup.com | Twitter: @Citi (http://www.twitter.com/citi) | YouTube: www.youtube.com/citi | Blog: http://blog.citigroup.com | Facebook: www.facebook.com/citi | LinkedIn: www.linkedin.com/company/citi


-------------------------------------------------


**Job Family Group:**


Technology

-------------------------------------------------


**Job Family:**


Information Security

------------------------------------------------------


**Time Type:**


------------------------------------------------------


Citi is an equal opportunity and affirmative action employer.


Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.


Citigroup Inc. and its subsidiaries ("Citi) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review **Accessibility at Citi (https://www.citigroup.com/citi/accessibility/application-accessibility.htm)** .


View the "EEO is the Law (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/eeopost.pdf) " poster. View the EEO is the Law Supplement (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/OFCCP\_EEO\_Supplement\_Final\_JRF\_QA\_508c.pdf) .


View the EEO Policy Statement (http://citi.com/citi/diversity/assets/pdf/eeo\_aa\_policy.pdf) .


View the Pay Transparency Posting (https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp\_%20English\_formattedESQA508c.pdf)


-----------------------------


Effective November 1, 2021, Citi requires that all successful applicants for positions located in the United States or Puerto Rico be fully vaccinated against COVID-19 as a condition of employment and provide proof of such vaccination prior to commencement of employment.
Citi is an equal opportunity and affirmative action employer.
Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.

Categories

Posted: 2022-05-13 Expires: 2022-06-12

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Cyber Security Lead Analyst

Citigroup
Fort Lauderdale, FL 33313

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast