United States Job Openings

Citi

Security Incident Management Lead, VP

Irving

FULL TIME

November 4, 2024

Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.

As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients’ best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services.

Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We’ll enable growth and progress together.

About Our Team:
The Chief Information Security Office (CISO) is home to deeply talented colleagues that work to ensure the safety of Citi's clients', our revenue, our employees and our proprietary data. We manage information security as one end-to end program – one with a clear mandate and accountability. Our mission is a program that is fully anchored to modern control and architectural frameworks, is fully aligned with the enterprise architecture of the firm and is deeply integrated into the sectors and functions.

The Security Incident Management Lead is an intermediate level position responsible for driving efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

Citigroup's Security Operations Center is seeking a highly skilled Security Incident Management Lead to support critical efforts aimed at protecting Citigroup's infrastructure, assets, clients and stakeholders. This is a demanding role with enterprise-wide exposure and responsibility. You will serve both as a subject matter expert and as an ambassador for the security incident management team. You will be assigned to the Security Incident Management Team, and will collaborate closely with a talented cadre of security specialists as they respond to data breaches and other security incidents that impact Citigroup. Your observations and recommendations will impact security decisions across the organization, and play an important part in maturing Citigroup's defense-in-depth cyber operations.

Responsibilities
As a Security Incident Management Lead, your primary responsibility is to manage risk throughout the security incident lifecycle. Related activities include, but are not limited to:
  • Work as part of a best in class ‘follow the sun’ security incident response team.
  • Lead and manage incident response activities to ensure that requisite triage, containment, and eradication are completed within targeted timeframes.
  • Ensure that the security incident record is complete, accurate and fit for purpose.
  • Collect and analyze evidence including investigative findings and prepare to coordinate with internal and external compliance and audit personnel.
  • Execute incident response meetings and communicate complex security topics; exhibit good judgment and discretion when initiating escalations to all levels of the organization.
  • Ensure that controls are utilized daily and that non-compliance remediation is addressed by appropriate selection.
  • Provide IS consulting services, including interpreting and/or clarifying information security policy, procedures, standards or concepts.
  • Assist with defining and implementing information security standards to align procedures and practices in pursuit of compliance with Citigroup standards.
  • Validate compliance with information security policies, practices, and procedures, and resolve a variety of information security related issues in coordination with the relevant business(es).
  • Assume both informal and formal mentorship roles within the team, and assist with coaching and training of new team members.
  • Act as an authority for cyber security incidents, with the ability to reliably identify and escalate threats with appropriate urgency.
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

Qualifications
Success will depend on your ability to:
  • Stay current with the evolving landscape of cyber threat activities and cybersecurity best practices
  • Work independently with minimal oversight
  • Adapt to changing requirements in a fast paced environment
  • Multitask and meet deadlines despite competing priorities
  • Navigate operational impediments in order to complete time sensitive tasks
  • Identify and document any opportunities for process improvement
  • Be a reliable team player.
  • Practice mutual respect at all times
  • Establish trust and build strong partnerships
  • Resolve conflict in a constructive manner and use as an opportunity to develop team unity
  • Prioritize collective success ahead of individual ambition
  • Strong communicator.
  • Establish clear narratives to describe observations, ideas and recommendations
  • Motivate colleagues and partners to cooperate and support as needed
  • Exert influence, both verbally and in writing, through all levels of the organization

Requirements
  • Relevant professional certifications issued by GIAC, AWS, etc., preferably GCCC, GCIH, CEH, ECSA.
  • General Industry knowledge of reporting obligations pertaining to local and national laws and regulatory bodies such as OCC, SEC, ECB, MAS
  • Working knowledge of common security models (Defense-in-Depth) and frameworks (MITRE Attack, Cyber Kill Chain, STIX)
  • Working knowledge of VERIS taxonomy
  • Working knowledge of OSI model
  • Working knowledge of security and/or incident response in cloud environments
  • Working knowledge of software development best practices, including agile methods
  • Familiar with Atlassian tools
  • Previous experience working in highly regulated environment
  • Previous experience in a fusion center and/or exposure to large scale incident response
  • Prior experience with information technology and/or information security in the financial services industry
  • Prior experience with cloud environments (e.g. AWS, GCP, Azure)
  • Working knowledge of how computer applications, systems, and networks are managed and secured.
  • Working knowledge of common security threats and vulnerabilities, attack vectors, and adversary tactics, techniques, and procedures (TTP's)
  • Proficient threat intelligence supported by a clear understanding of Cyber Adversarial levels , their motives and capabilities.
  • Must have flexibility to work outside of normal business hours when necessary


Education and Experience
  • Bachelor’s degree in Computer Science, Computer Engineering, Information Security, Digital Forensics Sciences, or other IT related field however Master's is preferred.
  • 6+ years of professional experience in cybersecurity and/or information security, or demonstrated equivalent capability
  • Previous experience with cyber investigations and/or incident response
  • Working Knowledge of CIS Top 18, NIST 800-53 and NIST 800-61
  • Proven experience of enterprise wide stakeholder interaction and management

-
Job Family Group:
Technology-
Job Family:
Information Security-
Time Type:
Full time-
Primary Location:
Irving Texas United States-
Primary Location Full Time Salary Range:
$125,760.00 - $188,640.00
In addition to salary, Citi’s offerings may also include, for eligible employees, discretionary and formulaic incentive and retention awards. Citi offers competitive employee benefits, including: medical, dental & vision coverage; 401(k); life, accident, and disability insurance; and wellness programs. Citi also offers paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays. For additional information regarding Citi employee benefits, please visit citibenefits.com. Available offerings may vary by jurisdiction, job level, and date of hire.

-
Anticipated Posting Close Date:
Nov 11, 2024-
Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.
View the EEO Policy Statement.
View the Pay Transparency Posting
New Job Alerts
Carnegie Mellon University

Parking Security Officer - Facilites Management & Campus Services - Parking and Transportation Services

Pittsburgh

FULL TIME

November 14, 2024

View Job Description
Simply Right Inc.

Construction Cleaning Regional Manager

Salt Lake City

FULL TIME

November 14, 2024

View Job Description
Par Pacific

Process Safety Lead

Tacoma

FULL TIME

November 14, 2024

View Job Description
Par Pacific

Process Engineer

Newcastle

FULL TIME

November 14, 2024

View Job Description
Federal Bureau of Investigation

PARALEGAL SPECIALIST CDC

Anchorage

FULL TIME

November 14, 2024

View Job Description
Stellar Virtual

Secondary Teacher, Mathematics (Grades 6-12)

Indianapolis

FULL TIME

November 14, 2024

View Job Description
Uber

Senior Strategic Client Partner, Department of Defense - Uber for Business

Chicago

November 14, 2024

View Job Description
Children’s Hospital of Philadelphia

Clinical Research Coordinator - GI Nutrition

Philadelphia

FULL TIME

November 14, 2024

View Job Description
Ernest

Electrician

Miami

FULL TIME

November 14, 2024

View Job Description
Serco North America

DOL VETS TAP: Employment Facilitator (Part-time) - Fort Wainwright, AK

Fort Wainwright

PART TIME

November 14, 2024

View Job Description
Looking for similar job?
Blackstone Consulting, Inc

Security Officer - Hawaii - Honolulu

Honolulu

FULL TIME

August 23, 2024

View Job Description
First Coast Security

Unarmed Security Officer

Lusby

FULL TIME

August 23, 2024

View Job Description
GLOBAL SECURITY CONSULTING GROUP IN

Airport Security Officer- PDX

Portland

FULL TIME & PART TIME

August 23, 2024

View Job Description
VMD Corp

Airport Security Screener *Part-Time*

Kalispell

PART TIME

August 9, 2024

View Job Description
Security Management of South Carolina LLC

Unarmed Security Officer (11)

Camden

PART TIME

August 26, 2024

View Job Description
Constellis

Security Guard

Florence

FULL TIME & PART TIME

August 9, 2024

View Job Description
See What’s New: Citi Job Opportunities
Citi

Cash Onboarding Manager (Hybrid)

Kuala Lumpur

FULL TIME

November 7, 2024

View Job Description
Citi

Vice President, Operations Core Project Lead Analyst

Kuala Lumpur

FULL TIME

November 7, 2024

View Job Description
Citi

Custody Asset Servicing Senior Analyst ( Hybrid)

Kuala Lumpur

FULL TIME

November 7, 2024

View Job Description
Citi

Officer, AML/KYC : Global Screening Operations Analyst –C09, Hybrid, Malaysia

Kuala Lumpur

FULL TIME

November 6, 2024

View Job Description
Citi

Vietnamese Speaking KYC Operations Analyst

Kuala Lumpur

FULL TIME

October 23, 2024

View Job Description
View More Jobs by Citi
New Job Alerts
Carnegie Mellon University

Parking Security Officer - Facilites Management & Campus Services - Parking and Transportation Services

Pittsburgh

FULL TIME

November 14, 2024

View Job Description
Simply Right Inc.

Construction Cleaning Regional Manager

Salt Lake City

FULL TIME

November 14, 2024

View Job Description
Par Pacific

Process Safety Lead

Tacoma

FULL TIME

November 14, 2024

View Job Description
Par Pacific

Process Engineer

Newcastle

FULL TIME

November 14, 2024

View Job Description
Federal Bureau of Investigation

PARALEGAL SPECIALIST CDC

Anchorage

FULL TIME

November 14, 2024

View Job Description
Stellar Virtual

Secondary Teacher, Mathematics (Grades 6-12)

Indianapolis

FULL TIME

November 14, 2024

View Job Description
Uber

Senior Strategic Client Partner, Department of Defense - Uber for Business

Chicago

November 14, 2024

View Job Description
Children’s Hospital of Philadelphia

Clinical Research Coordinator - GI Nutrition

Philadelphia

FULL TIME

November 14, 2024

View Job Description
Ernest

Electrician

Miami

FULL TIME

November 14, 2024

View Job Description
Serco North America

DOL VETS TAP: Employment Facilitator (Part-time) - Fort Wainwright, AK

Fort Wainwright

PART TIME

November 14, 2024

View Job Description