Cyber Security Operations Analyst, AVP (C12)

About Citi:Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management. As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients’ best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services. Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We’ll enable growth and progress together.

The Role:

The Cyber Security Ops Analyst is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

The position will support solutions and applications that better align to the Security Operations Center (SOC), Fusion Center, Intelligence Center, and other areas. The primary focus will be on technology operations and delivery of services for the applications in scope of the domain. This role will function as L3 Support.

This is a critical role to support Citi’s Security Operations Center. The ideal candidate must understand the high-level principles around software development lifecycle (SDLC) and must be able to capture and articulate plan and progress clearly. This is technical position that requires deep knowledge of security/network tools, as well as being able to manage key deliverables with tight timelines to meet business SLA.

Responsibilities:

• Troubleshoot the infrastructure
• Develop and support monitoring tools
• Engage with business to understand issues and work around the clock to deliver according to Service Level Agreements
• Collaborate with Program Manager and cross-functional teams to develop comprehensive project plans, obtain business/technology resource commitment and define/document business requirements
• Develop user acceptance test (UAT) plans and coordinate their execution
• Complete tasks to project deadlines and deliverables, including performing data analysis and trending reports
• Report significant variances and develop corrective action plans
• Ensure data quality throughout the lifecycle of assigned projects
• Coach and train new team members as needed
• Has the ability to operate with a limited level of direct supervision.
• Exercise independence of judgement and autonomy
• Serve as an SME to senior stakeholders and other team members
• Appropriately assess risk when business decisions are made
• Demonstrate appropriate consideration for the firm's reputation and safeguarding Citigroup, its clients, and assets by driving compliance with applicable laws, regulations, and Citi Policy
• Apply sound ethical judgment regarding personal behavior, conduct and business practices, while escalating, managing and reporting control issues with transparency

Qualifications:

• 3-5+ years' relevant experience
• Experience with the Vulnerability and Threat Management lifecycle
• Knowledge on network protocols, Operating Systems (Windows and Linux), scripting, troubleshooting, big data platforms and management of large-scale application clusters
• Experience with Technology Operations to support end to end services
• Must have strong Linux skills to be able to troubleshoot and support our internal applications
• Scripting (Bash or Python) is required
• Advanced Proficiency with Microsoft Office
• Consistently demonstrates clear and concise written and verbal communication
• Proven analytical skills
• Must be a self-starter and be able to manage their time against deliverables and ensure SLA is met
• Hands on knowledge on Big data tools (Splunk) is strongly preferred
• Knowledge on products such as Dtex, Demisto, Splunk or similar are a big plus

Education:

• Bachelor’s degree/University degree or equivalent experience
• Linux (RHEL) certification is a plus
• CISSP certification is a plus
• 1 relevant certification or willingness to attain within 12 months of joining strongly preferred

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

-------------------------------------------------

Job Family Group:

Technology

-------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting

-----------------------------

Effective November 1, 2021, Citi requires that all successful applicants for positions located in the United States or Puerto Rico be fully vaccinated against COVID-19 as a condition of employment and provide proof of such vaccination prior to commencement of employment.