JobsEQ by Chmura Logo

Info Security Ops Group Mgr

Citigroup Inc
Location: Tampa, Florida
Type: Non-Remote
Posted on: February 26, 2021
This job is no longer available from the source.
The Info Security Ops Group Mgr is a senior level position responsible for accomplishing results through the management of technical initiatives and activities in an effort to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security standards and activities to ensure compliance with Citi's data security policy. This is a technical role.
Job Description
The Info Security Ops Group Mgr is a senior level position responsible for Information Security (IS) concerns for Global Functions - Corporate Center globally. This role is accountable for ensuring all Information Security initiatives, applications, systems and processes related to the supported organizations meet Citi’s Information Security standards. This position partners with technology stakeholders, other Information Security Officer (ISO), senior CTI management and Risk & Control management to bring awareness, communicate and assist with management of IS risks of current and emerging threats and cyberattacks. The candidate in this position will be highly skilled in information security domains and services and serve as a SME in current and emerging Information Security technologies. This person will possess excellent interpersonal skills, strong business acumen, keen leadership qualities and the ability to continue to advance the IS programs and processes. This role executes the goals and objectives across Information Security Services and will lead or actively contribute to technical projects, initiatives, assessments and reviews. This is a technical role.
Responsibilities:
• Identify opportunities to automate and standardize information security controls for the supported groups
• Resolve all vulnerabilities or issues detected in an application or infrastructure
• Review and validate automated testing results and prioritize actions that resolve issues based on overall risk
• Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions
• Perform risk based reviews using threat modeling tools
• Perform Cloud assessments
• Direct the development and delivery of secure solutions by coordinating with business and technical contacts
• Develop and execute Information Security strategy to proactively identify risk and drive remediation
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency
• Develop and manage program metrics and performance through tracking/reporting and active engagement with stakeholders for continuous service improvement
• Provide oversight and governance to engineering and operating processes
• Implement security improvements by assessing baseline, evaluating trends, and anticipating requirements
• Act as point of contact to executive leadership for dimensioning, managing and driving remediation of information security risk within the context of legacy assets
• Develop horizontal view of risk posture across multiple technology domains
• Improve the efficiency of information security processes and advance the effectiveness of the information security controls of the operating model
• Work with various risk and information security teams in presenting recommendations for improvement to technology subject matter experts and management Engage with cross sector, global and risk teams in the review and reengineering of key controls and processes to effectively and efficiently manage IS issues
• Provide technical support to ISO’s
• Additional ad-hoc IS & Risk related initiatives and projects
Technical:
• Technical background in Windows/Unix Operating systems, security technologies, and network
architectures.
• Knowledge of complex query for data analysis
• Knowledge of security assessment methodology and risk management process
• Knowledge of SQL and other business analytics software is a plus
• Professional Certifications Required or will be expected to acquire, such as CISSP, CISA, CISM, CCSP or ECH
• Strong knowledge of industry standards as they relate to information security management
• Strong knowledge of encryption standards
Qualifications:
• 6-10 years of relevant experience in information security or information technology management.
• Advanced proficiency with Microsoft Office tools and software
• Consistently demonstrates clear and concise written and verbal communication
• Proven influencing and relationship management skills
• Proven analytical skills
• Excellent problem solving abilities and analytical skills. Ability to see the big picture with high attention to critical details
• Strong work ethic, excellent use of discretion and judgment
• Results oriented, is able to achieve desired outcomes independently and at appropriate priority levels
• Well organized with follow-up abilities; has a track record of effectively managing multiple tasks in a dynamic environment
• Ability to work under pressure, meet challenging deadlines
• Demonstrated ability to work effectively as part of a team, as well as, independently
• Effective communicator; has excellent writing and verbal skills
• The ability to influence others and shape/obtain desired outcome in areas outside of direct control
• Demonstrated ability to develop and implement process improvement initiatives
Education:
• Bachelor’s degree/University degree or equivalent experience
• Master’s degree preferred
-------------------------------------------------
Job Family Group:
Technology
-------------------------------------------------
Job Family:
Information Security
------------------------------------------------------
Time Type:
------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi .
View the " EEO is the Law " poster. View the EEO is the Law Supplement .
View the EEO Policy Statement .
View the Pay Transparency Posting