Information Security Senior Analyst

This position resides in the Chief Information Security Office area which services German entities including CGME, CEP Germany, Citibank NA Frankfurt Branch.

The Information Security Program analyst is an intermediate level professional responsible for driving efforts to support governance, risk and compliance for CISO at Citi. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's cyber and information security policy. The role is part of the Global Cyber Risk & Issue Management and Reviews Team.

Your responsibilities will be:

• Production of monthly IS metrics for multiple legal entities and regional governance bodies.

• Preparing periodic IS reports for senior management summarizing the risk posture for the business.

• Providing guidance preparing for audits, resolving audit findings and ensuring closure.

• Assisting with the strengthening of controls and process to pass audits with a satisfactory audit rating for all IS topics with no major IS issues.

• Preparing and managing responses to regulatory bodies on behalf of the CISO regional leadership.

• Supporting governance of risk exceptions, issues, and corrective action plans.

• Ensuring that approvals and reviews are executed when needed.

• Proactively engaging with counterparts (in different disciplines) and teams to enhance risk oversight.

• Establishing communication channels with cross-sector ISOs with an aim of strengthening relationships to efficiently tackle security issues that span multiple businesses.

• Focusing on process improvements, removing deficiencies and enhancing current tools for reducing overall risk profile.

• Attending and participating in internal/external forums and risk committees where appropriate.

• Managing audits in line with CISO expectations and in partnership with peers from other product lines.

• Supporting the CISO policies, standards, and initiatives development and implementation.

Qualifications we need:

• Extensive and solid experience in Risk and Controls, Information Security field

• Proficient in interpreting and applying policies, standards and procedures.

• Fluency in English

• Proven influencing and relationship management skills

• Proven analytical and presentations skills.

• Eager to learn

Education:

• Bachelor’s degree/University degree or equivalent experience

• Master’s degree preferred.

Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities. 

#LI -01

------------------------------------------------------

Job Family Group:

------------------------------------------------------

Job Family:

------------------------------------------------------

Time Type:

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting