Security Incident Management Lead, VP - Citigroup Inc

Citi, a premier global bank, serves around 200 million customer accounts across over 160 countries and jurisdictions. We offer a diverse array of financial products and services to consumers, corporations, governments, and institutions, including consumer banking, corporate and investment banking, securities brokerage, transaction services, and wealth management.

As a bank that values both intellect and integrity, Citi generates economic value that is responsible and aligned with our clients' interests. Our Enterprise Operations & Technology teams are tasked with a mission comparable to that of major tech firms, focusing on safeguarding the bank, managing global resources, and enhancing our digital architecture for an exceptional customer experience. We strive to innovate client and partner interactions, delivering secure and efficient services.

We are committed to diversity, fostering a workforce that reflects the varied backgrounds of our clients. We create an environment where top talent thrives, promoting respect, merit-based advancement, and broad opportunities for personal growth. We seek innovators who bring their authentic selves to work and contribute to our results-driven culture. If you are a passionate problem solver, we invite you to join us in driving growth and progress together.

About Our Team:

The Chief Information Security Office (CISO) comprises talented professionals dedicated to protecting Citi's clients, revenue, employees, and proprietary data. We manage information security as a comprehensive program with clear accountability, fully aligned with the firm's enterprise architecture.

The Security Incident Management Lead is an intermediate-level role focused on preventing, monitoring, and responding to information breaches and cyber-attacks. This position ensures the execution of Information Security directives in line with Citi's data security policy.

Citigroup's Security Operations Center is looking for a skilled Security Incident Management Lead to support vital initiatives aimed at safeguarding Citigroup's infrastructure, assets, clients, and stakeholders. This challenging role offers enterprise-wide exposure and responsibility, serving as both a subject matter expert and an ambassador for the security incident management team. You will collaborate with a team of security specialists to address data breaches and security incidents, influencing security decisions across the organization and enhancing Citigroup's cyber defense capabilities.

Responsibilities

As a Security Incident Management Lead, your main responsibility is to manage risk throughout the security incident lifecycle, including:

• Collaborating with a top-tier 'follow the sun' security incident response team.
• Leading incident response activities to ensure timely triage, containment, and eradication.
• Maintaining complete and accurate security incident records.
• Collecting and analyzing evidence, coordinating with compliance and audit personnel.
• Conducting incident response meetings and communicating complex security topics effectively.
• Ensuring daily compliance with security controls and addressing non-compliance issues.
• Providing consulting services on information security policies and standards.
• Assisting in defining and implementing information security standards for compliance.
• Validating compliance with security policies and resolving related issues.
• Mentoring team members and assisting in their training.
• Acting as an authority on cyber security incidents, identifying and escalating threats appropriately.
• Assessing risk in business decisions, prioritizing the firm's reputation and compliance with laws and regulations.

Qualifications

Success in this role requires:

• Staying updated on cyber threat activities and best practices.
• Working independently with minimal oversight.
• Adapting to fast-paced, changing requirements.
• Multitasking and meeting deadlines under pressure.
• Identifying opportunities for process improvement.
• Being a reliable team player and practicing mutual respect.
• Building trust and strong partnerships.
• Resolving conflicts constructively to enhance team unity.
• Prioritizing collective success over individual ambition.
• Communicating effectively and establishing clear narratives.
• Motivating colleagues and influencing at all organizational levels.

Requirements

• Relevant professional certifications (e.g., GIAC, AWS) such as GCCC, GCIH, CEH, ECSA.
• Knowledge of reporting obligations for regulatory bodies (e.g., OCC, SEC).
• Familiarity with security models and frameworks (e.g., MITRE Attack, Cyber Kill Chain).
• Understanding of OSI model and security in cloud environments.
• Experience with software development best practices, including agile methods.
• Familiarity with Atlassian tools.
• Experience in regulated environments and large-scale incident response.
• Background in information technology/security in financial services.
• Knowledge of common security threats and vulnerabilities.
• Flexibility to work outside normal hours when necessary.

Education and Experience

• Bachelor's degree in Computer Science, Information Security, or related field; Master's preferred.
• 6+ years of experience in cybersecurity or information security.
• Experience with cyber investigations and incident response.
• Knowledge of CIS Top 18, NIST 800-53, and NIST 800-61.
• Proven experience in stakeholder interaction and management.

Job Family Group:
Technology

Job Family:
Information Security

Time Type:
Full time

Primary Location:
Irving, Texas, United States

Primary Location Full Time Salary Range:
$125,760.00 - $188,640.00

In addition to salary, Citi offers competitive employee benefits, including medical, dental, and vision coverage; 401(k); life and disability insurance; and wellness programs. Paid time off includes vacation, sick leave, and holidays. For more information on benefits, visit citibenefits.com. Offerings may vary by jurisdiction and job level.

Anticipated Posting Close Date:
Nov 11, 2024

Citi is an equal opportunity employer.

Qualified applicants will be considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Citigroup Inc. invites all qualified applicants to apply for career opportunities. If you need reasonable accommodation to use our search tools or apply, please review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting.