Vulnerability Reporting Lead

Within CISO, the Vulnerability Operations Team is responsible for managing and improving the Vulnerability Management Process globally, providing oversight and coordination for the highest criticality vulnerabilities (GEMs), and for managing the vulnerability lifecycle for technology products owned within the Chief Information Security Office (CISO).

The Vulnerability Operations team was recently formed to lead the operational response to the most critical cybersecurity vulnerabilities, known as GEMs, and to drive tactical and strategic improvements to the Vulnerability and Threat Management Process. Operational response efforts include end-to-end oversight of the data flow and GEMs/potential GEMS, escalations for past due vulnerabilities and providing stakeholders with actionable data and dashboarding to aide in the visualization of risk and remediation efforts needed.

Responsibilities:

• Drive vulnerability reporting and engagement program enhancements

• Rationalize tooling and initiatives for vulnerability lifecycle management and reporting

• Develop relationships with sectors to resolve aging critical vulnerabilities on assets within Citi.

• Prioritize various business requirements for enhancements to vulnerability management program

• Analyze data to identify trends, opportunities and deliver audit/regulatory deliverables

• Work with vulnerability lifecycle managers, Asia and Europe-based operations and application support teams to analyze requirements, design and develop specs and manage data which supplies information to all vulnerability threat reporting and analysis.

• Lead Europe-based level one support team, responsible for basic troubleshooting and providing clarity to data consumers on steps required for vulnerability remediation

• Implement identified process improvements.

Qualifications:

• 5+ years in vulnerability management or information security reporting functions

• Strong project management skills

• Familiar with management of development items in Jira

• Strong communication skills.  Must be able to interact with senior management from both business and technical perspectives.

• Familiarity with:

  • Vulnerability Assessment tools, e.g., Nessus, Qualys, etc.

  • OS Security, e.g., Unix, Linux, Windows, Cisco, etc.

  • Web application infrastructure, e.g., Application Servers, Web Servers, Databases

  • Web development and programming languages i.e., Python, Perl, Ruby, Java, and/or .Net

  • Business Intelligence tools

  • SQL scripting and advanced Excel skills

• Strong work ethic and a proactive mindset with ability to think “outside of the box” to solve problems.

• Fluency in English.

• Experience solving complex data flow challenges.

• Advanced knowledge of complex queries for data analysis.

• Experience with at least one coding language (PowerShell, Python, C#, etc.).

• Experience in automation and optimization of repetitive processes and reporting.

Education:

• Bachelor’s degree/University degree or equivalent experience

What we can offer you:

By joining Citi Hungary, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive compensation package and enjoy a whole host of additional benefits that support you (and your family) to be well, live well and save well:

• Cafeteria Program

• Home Office Allowance (for colleagues working in hybrid work models)

• Paid Parental Leave Program (maternity and paternity leave)

• Private Medical Care Program and onsite medical rooms at our offices

• Pension Plan Contribution to voluntary pension fund

• Group Life Insurance

• Employee Assistance Program

• Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed

• Flexible work arrangements to support you in managing work - life balance

• Career progression opportunities across geographies and business lines

• Socially active employee communities with diverse networking opportunities

Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self every day.  We want the best talent around the world to be energized to join us, motivated to stay, and empowered to thrive. 

Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities. 

#LI-OD1

------------------------------------------------------

Job Family Group:

------------------------------------------------------

Job Family:

------------------------------------------------------

Time Type:

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting