Cloud Security Operations Senior Analyst

The Cloud Security Operations team works in a multi-disciplinary team of teams driving cyber security services and solutions to enable Citi to securely adopt private, hybrid, and public cloud platforms. This role is one of the primary security interfaces with development teams, architects, engineers, and operational teams involved in cloud-related projects. Our operating model emphasizes DevSecOps, that is, automation, integration, and agility based on Security as a Service / Security as Code concepts.

Responsibilities:

• Full end to end security assurance activities in GCP including Vulnerability Assessments (preproduction, post-production), Purple Team exercises (Red and Blue team collaboration) to identify areas of risk and ensure any gaps are documented and remediated.

• Provide threat modeling and risk assessment services to characterize the risk and severity posture of various systems and components in the cloud environment.

• Partner with Engineering and Operations teams to create, implement, and apply DevSecOps practices and processes that are consumed by developers across all sectors in Citi.

Qualifications:

• 5+ years of experience in a similar role

• Offensive Security-oriented mindset (threat-modeling, vulnerability assessments, pen testing, etc.).

• Hands-on experience with cloud platforms (GCP) Excellent understanding of cloud security concepts/best practices in various cloud Service Providers (for example: Azure/M365).

• Familiarity with the current threat landscape which GCP exists in. Understanding of recent breaches, APTs and common TTPs used to attack these platforms.

• Familiarity with securing containers and container orchestration frameworks (such as Kubernetes).

• Programming/scripting languages a plus (Python and PowerShell preferred, but not required).

• Ability to deliver presentations to technical and non-technical individuals.

• Fluency in English

Education:

• Bachelor's Degree or equivalent working experience

Nice to haves:

• Cloud security certifications: Azure Security Engineer Associate, Microsoft 365 Certified Security Administrator Associate, AWS Security Specialty, GCP Professional Cloud Security Engineer, etc.

• Container/Kubernetes certifications: CKA, CKAD, CKS, etc.

• Other security certifications: OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, etc.

What we can offer you:

By joining Citi Hungary, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive compensation package and enjoy a whole host of additional benefits that support you (and your family) to be well, live well and save well:

• Cafeteria Program

• Home Office Allowance (for colleagues working in hybrid work models)

• Paid Parental Leave Program (maternity and paternity leave)

• Private Medical Care Program and onsite medical rooms at our offices

• Pension Plan Contribution to voluntary pension fund

• Group Life Insurance

• Employee Assistance Program

• Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed

• Flexible work arrangements to support you in managing work - life balance

• Career progression opportunities across geographies and business lines

• Socially active employee communities with diverse networking opportunities

Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self every day.  We want the best talent around the world to be energized to join us, motivated to stay, and empowered to thrive. 

Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities. 

------------------------------------------------------

Job Family Group:

------------------------------------------------------

Job Family:

------------------------------------------------------

Time Type:

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting