Middleware, Database, Cloud Security Specialist
Responsibilities:
- Provide a single point of contact for all Citi Technology Infrastructure units on Information Security.
- Provide technical security guidance to Middleware, Cloud, Virtualization, Web Hosting and Database engineering/operations staff to help meet information security requirements.
- Provide oversight of information security issues and associated remediation activities
- Manage and support the completion of regular business unit IS actions, including Enterprise Entitlement Review System, Third Party security assessments, and Infrastructure Product Security Assessments.
- Support technology units with their disclosure, recognition of control issues, including the review of all evidence to ensure that issues are managed to consistently high standards.
- Apply knowledge of security standards, best practices, position papers and general process areas to coordinate the effective security review of the entities operating processes and technologies commensurate with published risk methodologies and business strategies.
- Work with various risk teams in presenting recommendations for improvement to technology subject matter experts and management.
- Interface and engage with external parties reviewing the entities seeking external certifications or undergoing audits
- Engage with cross sector, global and risk teams in the review and reengineering of key controls and processes to effectively and efficiently manage IS issues.
- Contribute to, interpret and disseminate IS policy, standards and awareness throughout the business units.
- Contribute to Merger Acquisition Due Diligence activities
- Additional ad-hoc IS Risk related initiatives and projects
Requirements:
- Bachelor's degree in a technical discipline (Computer Engineering, Computer Science, or related discipline)
- Certifications (CISSP, CISA, CISM, CEH)
- Technical expertise and hands-on experience (5-10 years) such as Middleware, Cloud, Virtualization, Web hosting and Database
- Thorough understanding of network architectures and protocols
- Experience with vulnerability assessments and/or penetration testing of web applications and/or infrastructure
- In-depth knowledge and understanding of Windows and Unix server operating systems.
- Knowledge and understanding of emerging risk areas, e.g. mobile remote access, wireless technologies, DLP, cloud computing, etc.
- Experience of working with ITIL, ISO 27001 and/or CoBIT processes and procedures, including document control
- Audit experience and exposure is essential
- Strong risk management background in a multi-national financial organization
- High level of proficiency with all MS Office products
- Excellent interpersonal and written skill
- Team leader and contributor
- Strong work ethic and excellent use of discretion and judgment
- Strong organizational ability
- Proven leadership skill
- Ability to build strong relationships between businesses and across countries
- Strong oral and written communicator
- Ability to analyze complex issues and present findings and potential solutions in plain-English to various levels of management
At Citi, we groom the leaders of today and tomorrow. Take the opportunity to embark on a challenging, fulfilling and rewarding career with one of the world's most respected financial institutions now.
To apply, please visit http://careers.citigroup.com and search for Job ID 13027268.
Leave a Reply
You must be logged in to post a comment.