Developer Experience & Governance Analyst - (AVP) at Citi

Job Overview

The Department

Developer Enablement is a key part of the CTO organisation. Our mission is simple but ambitious: to make it fast, safe, and satisfying for 40,000 engineers across the bank to write code and ship it to production. We focus on enabling modern ways-of-working, by codifying controls, upgrading the developer toolchain, reducing toil, and embedding compliance invisibly into the development lifecycle - without slowing anyone down. We believe that governance and productivity can, and must, go hand-in-hand.

We work across global regions, engineering disciplines, and risk functions to define the future of how software is built, governed, and released at scale.

The Role

We are looking for a Developer Experience and Governance Analyst to help set the direction for our SDLC policies, engage with senior stakeholders across first and second lines of defence, and represent the needs of thousands of developers across the firm.

This role requires balancing two seemingly opposing forces: engineering velocity and regulatory control. You will lead the creation of intelligent, automated guardrails that developers love – because they make compliance seamless and improve how they work. You will work with engineers, auditors, risk partners and regulators to ensure that our controls are strong, evidence-backed, and invisible where possible.

If you are excited by enterprise-scale impact, and want to shape how one of the world’s largest banks builds software – this role offers that opportunity. We are at the forefront of modern software development and have introduced new AI developer tooling at a scale that is unmatched in our industry.

Responsibilities

• Lead the strategy and execution for global SDLC policy and standards across 40,000+ developers
• Drive a governance approach rooted in automation, developer empathy, and continuous delivery principles
• Codify controls into the development toolchain – think policies as code, automated quality gates, and self-service approval workflows
• Act as the point person for Technology governance engagements with risk, audit, and regulators globally
• Collaborate closely with engineering squads, platform teams, and DevSecOps to make security and compliance a built-in experience
• Champion the developer voice in forums, steering groups and transformation initiatives – ensure policies and tooling help, not hinder
• Define and track KPIs across compliance, risk posture, and developer productivity – and drive improvement based on the data
• Stay ahead of regulatory expectations, engineering trends, and emerging technologies that affect the SDLC
• Represent the firm in internal and external forums, including regulatory meetings, control design reviews, and engineering councils

Characteristics

• Technically grounded, with the ability to go deep when needed – especially around modern SDLC, CI/CD, and DevSecOps
• Empathetic to developers and passionate about improving how they build and release software
• Constantly curious – whether about AI-assisted development, automated compliance, or platform engineering trends

Experience

• Hands-on experience with modern SDLC practices, CI/CD tooling, secure software delivery, and inner loop productivity
• Understanding of development risk, audit, and regulatory expectations – ideally with prior engagement in audits, regulator meetings, or enterprise compliance programmes
• Previously engaged across engineering, compliance, risk, and legal functions
• Understanding of backend/frontend engineering, infrastructure, cloud, and security tooling
• Degree in Computer Science or related field preferred