Information Security Officer - Vice President at Citi

The Information Security Technology Lead Analyst is a senior level professional position responsible for driving efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

Responsibilities:

• Identify opportunities to automate and standardize information security controls and for the supported groups
• Support technical and business teams to resolve any vulnerabilities or issues detected in an application or infrastructure
• Act as a trusted advisor to business and technology teams, providing pragmatic guidance on cybersecurity risks, controls, and requirements.
• Translate technical security concepts into business-relevant language to inform leadership decisions and drive action.
• Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions
• Direct the development and delivery of secure solutions by coordinating with business and technical contacts
• Participate in information security assessments across applications, infrastructure, and business processes, ensuring that non-compliant items are addressed in coordination with relevant stakeholders.
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
• Contribute to the growth of less technical colleagues through knowledge-sharing, contextual guidance, and translating complex security concepts into practical understanding.

Job Functions:

• The Cyber Information Security Officer is responsible for providing expert Cyber Security support and leadership to the Client organization. 
• This position will provide consistent Cyber Security guidance to various business teams on the Citi Information Security Cyber security policies, procedures, and standards. 
• The Cyber Information Security Officer will provide operational support, intelligence gathering, project and program management, analysis and report development, publishing, and briefing to Senior business leadership and Cyber Security leadership.
• This position will require substantial collaboration with business and Cyber Security professionals ensuring timely and appropriate Cyber security support for your assigned business area. 
• Day-to-Day tasks will be providing direction with business leaders on the requirements for brand protection, email security, project security, application security, vulnerability assessments, and other programs to address regulatory and statutory requirements for Citi and our business partners.  You will be responsible for interactions with partners, third party vendors, employees, and a variety of internal and external stakeholders that require the team’s services.
• Besides managing aspects of the day-to-day function of these programs, you will partner with a variety of cyber and information security teams internal and external to enhance current solutions and find new solutions to stay ahead of the ever-changing cyber threat.

Qualifications:

• Proven relevant experience
• Advanced proficiency with Microsoft Office tools and software
• Consistently demonstrates clear and concise written and verbal communication
• Established influencing and relationship management capabilities that contribute to strategic alignment and execution
• Proven analytical skills and a strong sense of curiosity, with the ability to uncover the root causes and understand the true nature of complex security and risk issues
• Familiarity with enterprise technologies including cloud platforms, APIs, identity management, and data protection practices.
• Demonstrated knowledge of secure design principles and security frameworks.

Education:

• Bachelor’s degree/University degree or equivalent experience
• Master’s degree preferred and/or
• Professional certifications such as CISSP, CISM, CCSP, or SABSA preferred.