The information security operations (iso) lead analyst is a senior level professional responsible for driving efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of information security directives and activities in alignment with citi's data security policy.
responsibilities: support the implementation of the is training plan, by verifying training participants completed the training and understand is requirementscoordinate with cross-functional operations and technology (o&t) counterparts and teams to improve o&t risk oversightprovide recommendations on is aspects of projects and assess/report corrective action plans to improve is programs and initiativesescalate significant risks to the regional/sector is leadership for information or required actionsattend and participate in internal/external is forums and risk committees when necessaryimprove processes, by removing deficiencies and enhancing current tools that reduce an overall risk profileensure security practices/standards compliance and reduce security risks through enhancing controls and minimizing weaknesses in citi's applications portfolioensure audits are passed with a satisfactory audit rating for all is topicsensure non-compliant items are resolved through coordination with business manager and business staffsupport the global information security (gis) policies, standards, and initiatives development and implementationincrease communication efficiency with cross-sector isos to resolve security issues that span multiple businessesoperate with a limited level of direct supervision and exercise independence of judgement and autonomyact as sme to senior stakeholders and/or other team membersappropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparencyqualifications: 6-10 years of relevant experienceproficient in interpreting and applying policies, standards and proceduresconsistently demonstrates clear and concise written and verbal communicationproven influencing and relationship management skillsproven analytical skillseducation: bachelor's degree/university degree or equivalent experience
knowledge of information security and/or cybersecurity
experienced in risk & control / mca
knowledge of mexican regulations and compliance (in the field of information security - cnbv and banxico) – (desirable)
experience in the preparation of executive reports and metrics aimed at senior management
professional certifications on information security, risk, or related programs, such as cissp, cism, cisa, etc. (desirable)
job family group: technology
job family: information security
time type: full time
citi is an equal opportunity and affirmative action employer. Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#j-18808-ljbffr