.the information security operations (iso) sr. Analyst is an intermediate level position responsible for leading efforts to prevent, monitor and respond to information/data breaches and cyber-attacks.
the overall objective of this role is to ensure the execution of information security directives and activities in alignment with citi's data security policy.
*responsibilities*:- address security issues identified in the various information security programs- review and address issues identified within various information security (is) programs and ensure all is issues related to internal audit, and external auditors are closed by their original target date- improve the efficacy of governance processes by identifying risks, monitoring controls, and remediating issues- establish cross-sector working relationships and complete weekly awareness discussions with local team to efficiently tackle security issues- ensure risk exceptions are raised, registered and closed on a timely basis and communicate updates and changes to the global standards- complete risk assessment process, including completing accurate inventory reporting, data classification, threat analysis, and action plans- test and validate that the business complies with applicable is requirements; develop and implement is policies and procedures- determine and validate appropriate level of controls are being implemented to safeguard sensitive data- develop corrective action plans for all information security-related gaps and approve all closures through reviewing evidence to ensure each closure meets citi requirements- assume informal/formal mentorship role within teams and assist with the coaching and training of new team members- has the ability to operate with a limited level of direct supervision.- can exercise independence of judgement and autonomy.- acts as sme to senior stakeholders and /or other team members.
*qualifications*:- 5-8 years of relevant experience- consistently demonstrates clear and concise written and verbal communication- proven influencing and relationship management skills- proven analytical skills*education*:- bachelor's degree/university degree or equivalent experiencethis job description provides a high-level review of the types of work performed.
other job-related duties may be assigned as required.- 5+ years' experience in is and at least 3 is programs including, but not limited to, audit reviews, risk assessment, awareness & training, identity access & management, data protection, incident management, vulnerability assessment.
knowledge of key government regulations and local laws.- project management experience.- other risk management activities should be as sector or business is sme or some risk management role.- excellent consulting and problem solving skills.- in depth knowledge of is programs.- advanced presentation skills, program management, and relationship management skills