Security Incident Sr. Analyst - VP

The Security Incident Sr. Analyst - VP is an intermediate level position responsible for driving efforts to manage and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

Responsibilities:

• Mitigate risk by analyzing the root cause of issues, impacts to business, and required corrective actions and develop security solutions.
• Ensure IS compliance and seek opportunities to enhance the efficiency of IS policies and procedures Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
• Review and analyze Information Security Incidents to identify those that pose a significant risk to the Citigroup franchise and its affiliates and escalating those IS Incidents in accordance with Citigroup policy and procedures.
• Review the details of all reported incidents to determine whether they constitute an IS Incident.
• Review and verifying the accuracy of the reported severity level of an incident.
• Provide technical subject matter expertise to mitigating risk to impacted parties throughout an incident. Work with internal and external constituents to minimize risks associated with IS Incidents, including convening appropriate Subject Matter Experts to assist investigations and ensuring that all relevant facts of the IS Incident are properly communicated and reflected in the SIM Application.
• Track follow-up documentation related to an IS Incident, including Root Cause Analyses (RCAs), Lessons Learned and SIRT Remediation Plans throughout the incident lifecycle till closure.
• Present metrics and thematic analysis to stakeholders and senior management.

Qualifications:

• 6-10 years of relevant experience
• Additional technical certifications are preferred. i.e. CISSP, CISA, CISM, GCIH
• Demonstrated ability to research and apply current information regarding the IS field.
• Consistently demonstrates clear and concise written and verbal communication.
• Proven influencing and relationship management skills.
• Proven analytical skills.

Critical Competencies: Bi-lingual English/Spanish. Portuguese is a plus.

-------------------------------------------------

Job Family Group:

Technology

-------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting