3 days old

Infrastructure Defense Service and Product Management - Risk and Control Oversight - AVP

Citigroup
Irving, TX 75062
**About Citi:**


Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.


As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services.


Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. Well enable growth and progress together.


The Service and Product Management (SPM) team manages business operations support and tracks the overall lifecycle and health of cyber security services delivered to Citi businesses. This includes ensuring that products and services are procured, deployed and enabled in a manner that maximizes the return on the business investment, provides protection against the Citi global estate and is in-line with overall service strategy. SPM ensures alignment between the combined people, processes and technology that make up various security service offerings, working as a bridge between internal business customers, engineering and operations. The SPM organization is part of the Chief Information Security Office (CISO) an organization that collectively administers the Information Security program for Citi. Our SPM service managers are aligned to support Cyber Security Operations and Services, including: Security Operation Center, Vulnerability Assessments, Cyber Security Innovation Center, Infrastructure Defense, Cloud Security, Data Security Services, and Authentication and Mobile Security.


The Service Manager for Infrastructure Defense and Data Security is responsible for designing and driving large scale projects to meet client, IS, and regulatory requirements and needs to work closely with different IS sector champions to achieve targeted goals. The primary responsibility for this role is to serve as the core contact and contributor for holistic risk and control oversight for their security functions.


**Responsibilities** :


+ Manage performance risk-related functions, including but not limited to: Business Activity Owner for Third Party Risk, Managers Control Assessments (MCA), Vulnerability Assessment Scheduling and Reporting, Citi Application Manager Portal, (CAMP), application inventory maintenance activities, and more.

+ Oversee, track and report on the resolution any vulnerabilities or issues detected in an application or infrastructure, ensuring that issues are addressed for the applications that they support.

+ Manage oversight and creation of Control Issues and Corrective Action Plans with program owners, engineers, and operational managers to ensure all control gaps and risks are properly documented per Citis policy and are progressing toward resolution.

+ Assist with governance of process control manuals to ensure compliance with internal IT & IS standards and policies, local and cross border regulations, privacy laws, and various information security frameworks.

+ Responsible for oversight of the internal control environment through reporting, analysis, and strategic planning.

+ Assist with risk & control repository maturity across target security areas and peer security areas, improving the scalability of risk & control oversight across the larger organization

+ Serve as primary representative to internal audit (IA), external auditors, regulatory examiners, partners and clients on behalf of their target security areas.

+ Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

+ Coordinate with system development and infrastructure units to identify Information Security (IS) risks and the appropriate controls for development, day-to-day operation, and emerging technologies


**Qualifications:**


+ 2-4 years om a Risk Management role for a global enterprise is required

+ Intermediate or Advanced knowledge/experience in the following Information Security (IS) technology frameworks is required: ITIL Service Management, COBIT and NIST Frameworks.

+ Intermediate knowledge of typical IS laws and regulations is required.

+ Intermediate knowledge/experience in the following Information Security (IS)

+ technologies is required: security operations centers (SOC), firewalls, proxies, antivirus and other data security products and services.

+ Working knowledge of cybersecurity & networking principles.


**Education:**


+ Bachelors degree/University degree or equivalent experience


-------------------------------------------------


**Job Family Group:**


Technology

-------------------------------------------------


**Job Family:**


Information Security

------------------------------------------------------


**Time Type:**


Full time

------------------------------------------------------


Citi is an equal opportunity and affirmative action employer.


Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.


Citigroup Inc. and its subsidiaries ("Citi) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review **Accessibility at Citi (https://www.citigroup.com/citi/accessibility/application-accessibility.htm)** .


View the "EEO is the Law (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/eeopost.pdf) " poster. View the EEO is the Law Supplement (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/OFCCP\_EEO\_Supplement\_Final\_JRF\_QA\_508c.pdf) .


View the EEO Policy Statement (http://citi.com/citi/diversity/assets/pdf/eeo\_aa\_policy.pdf) .


View the Pay Transparency Posting (https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp\_%20English\_formattedESQA508c.pdf)


-----------------------------


Effective November 1, 2021, Citi requires that all successful applicants for positions located in the United States or Puerto Rico be fully vaccinated against COVID-19 as a condition of employment and provide proof of such vaccination prior to commencement of employment.
Citi is an equal opportunity and affirmative action employer.
Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.

Categories

Posted: 2022-05-13 Expires: 2022-06-12

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Infrastructure Defense Service and Product Management - Risk and Control Oversight - AVP

Citigroup
Irving, TX 75062

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast