The Information Security Operations (ISO) Sr Manager is a senior management level position responsible for accomplishing results through the management of a team or department in an effort to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.
Responsibilities: Support the implementation of Information Security (IS) Training Plan, by verifying training participants completed the training and understand IS requirementsCoordinate with cross-functional Operations and Technology (O&T) counterparts and teams to improve O&T risk oversightAttend and participate in internal/external IS forums and risk committees when necessary and provide IS updates to the businessEnsure stakeholders are held accountable for IS controls, and understand responsibilities in risk mitigation and remediationImprove processes, remove IS deficiencies and enhance current tools that reduce an overall risk profileEnsure security practices and standards compliance to reduce the likelihood of audit, regulatory and legal liabilities and reduce security risks by enhancing controls and minimizing weaknesses in Citi's applications portfolioEnsure non-compliant items are addressed through coordination with Business Manager and business staffSupport the Global Information Security (GIS) policies, standards, and initiatives development and implementationProvide guidance on IS aspects of projects in support of business initiativesEstablish communication channels with cross-sector ISOs to efficiently tackle security issues that span multiple businessesManage project deadlines, deliverables, planning, budgeting and policy formulation for the team, including short-term resource planningAppropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards. Qualifications: 6-10 years of relevant experienceKnowledge of Scripting and Programming Languages preferredDemonstrated ability to interpret and apply information security policies, standards and proceduresConsistently demonstrates clear and concise written and verbal communicationProven influencing and relationship management skillsProven analytical skills Education: Bachelor's degree/University degree or equivalent experienceMaster's degree preferred
This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
Specialized Application Security Architect Main requirements English Advance Domain, fluently speaking and writing.Communication skills to explain security controls required for the solutions in a clear and concise manner to non-technology stakeholders.Project coordination, give track end to end to all the approval and presentation process.Correct comprehension technical and business requirements of the solutions to be explained in IS Global Committees.Proven Experience in Issue & Risk Management.On time results focusedInformation Security or Cybersecurity certifications preferred.Deep Knowledge and proven experience in: Cloud SecurityNetwork SecuritySoftware DevelopmentSecurity OperationsIdentity and Access ManagementCommand sequence Language (code writing in Python and Powershell)Operation Systems (Windows, Linux, Mac, IOS, Android, etc.)Risk identificationIssue and Risk Management Security AssessmentsCybersecurity industry policiesSkills CollaborationMentoring and TrainingExcellent written and verbal communicationProject managementHigh IntegrityHigh pressure resistanceProblem solvingAbility to: Design organization security architectureIdentify potential vulnerabilities and risksDefine security policiesSelect appropriate security technologiesAssess security risks and determine how to minimize them.Supervise the correct implementation of cybersecurity solutions.Train employees on security best practices and how to identify potential threats.
#J-18808-Ljbffr
