About Citi
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management. Our core activities are safeguarding assets, lending money, making payments and accessing the capital markets on behalf of our clients.
Citixplains what we do and explain how we do it. Our mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. We strive to earn and maintain our clientsd the publicrust by constantly adhering to the highest ethical standards and making a positive impact on the communities we serve. Our Leadership Standards is a common set of skills and expected behaviors that illustrate how our employees should work every day to be successful and strengthens our ability to execute against our strategic priorities.
Diversity is a key business imperative and a source of strength at Citi. We serve clients from every walk of life, every background and every origin. Our goal is to have our workforce reflect this same diversity at all levels. Citi has made it a priority to foster a culture where the best people want to work, where individuals are promoted based on merit, where we value and demand respect for others and where opportunities to develop to are widely available to all.
The Vulnerability and Threat Management Business Data Analyst will be responsible for overseeing information system security in a financial services space. The incumbent will work with program stakeholders, audit and senior management executives to ensure appropriate and up-to-date communication regarding vulnerability management strategy and governance. This role reports to the Head of Vulnerability Threat Management and is responsible for helping to set the strategy and governance of appropriate vulnerability management standards, processes and communications and assisting with the prioritization and remediation of the identified vulnerabilities utilizing operational best practices.
This role is a key business enabler to provide information security risk analysis and strategic recommendations for the ongoing improvement of Information Security within Operations and Technology (O&T).
Job Duties & Responsibilities Interfaces with senior management, business units and IT stakeholders to identify and understand vulnerability monitoring and response requirements
Interfaces with business units and IT stakeholders to identify and understand vulnerability management requirements and design solutions to meet business unit and IT stakeholder needs
Maintains an up-to-date understanding of emerging cyber threats facing financial institutions
Applies new techniques and trends that are in line with overall information security objectives and risk tolerance
Works with Risk and Controls to provide expertise to support business audit monitoring activities and manage communication responses to regulators.
Builds effective relationships with key stakeholders who own and support IT infrastructure, applications, processes, and operations
Gains commitment from stakeholders to implement recommended and agreed information security controls
Qualifications Skills & Qualifications BA/BS in Information Systems or a related technical field
Minimum 5+ yearsperience working in an information security, information technology, or information risk management related field
Demonstrated experience building and managing vulnerability management programs
Ability to brief technical risks and issues to executives and business leaders
Demonstrated ability to lead the development of specific proactive procedures for the detection of security breaches across a large enterprise network
Demonstrated experience working with senior management on highly sensitive projects that require the utmost discretion and maintaining strict confidentiality on all data, records, and tasks as required
Possession of industry certifications highly preferred. Including, but not limited to, Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC).
Tags: Information systems, risk management, leadership, security, financial services, vulnerability management, CISA, CISSP, CISM, GIAC
