Vulnerability Reporting Strategic Analyst C13 -VP (Hybrid)

Citigroup Inc. Irving, Texas
analyst management data security operations information security tools ciso team gems technical threat lifecycle
March 26, 2023
Citigroup Inc.
Irving, Texas
About Citi:
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.

As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients' best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services.

Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We'll enable growth and progress together.

Trust is part of our DNA at Citi. As such, we take safeguarding our customer data very seriously. The Chief Information Security Office (CISO) is made up of deeply dedicated and talented colleagues who work together to ensure the safety of Citi's and our clients' assets and information. We manage information security as an end-to-end program - one with a clear mandate and accountability. Our mission is to continually execute and enhance a global security program that is fully anchored to modern control and security frameworks, fully aligned with the technology of the firm, threat-focused and data-driven, and deeply integrated across all Citi businesses globally.

Being talent-driven, we are focused on attracting, developing, and retaining diverse and inclusive talent with a high technical skill level. As a member of our team we will provide you with career development opportunities at all stages of your career. Our employees model a passion for protecting Citi and our clients and believe in treating others with dignity and respect.

Within CISO, the Vulnerability Operations Team is responsible for managing and improving the Vulnerability Management Process globally, providing oversight and coordination for the highest criticality vulnerabilities (GEMs), and for managing the vulnerability lifecycle for technology products owned within the Chief Information Security Office (CISO).

The Vulnerability Operations team was recently formed to lead the operational response to the most critical cybersecurity vulnerabilities, known as GEMs, and to drive tactical and strategic improvements to the Vulnerability and Threat Management Process. Operational response efforts include end-to-end oversight of the data flow and GEMs/potential GEMS, escalations for past due vulnerabilities and providing stakeholders with actionable data and dashboarding to aide in the visualization of risk and remediation efforts needed.

#CISO

Responsibilities:
  • Drive vulnerability reporting and engagement program enhancements
  • Rationalize tooling and initiatives for vulnerability lifecycle management and reporting
  • Develop relationships with sectors to resolve aging critical vulnerabilities on assets within Citi.
  • Prioritize various business requirements for enhancements to vulnerability management program
  • Work with vulnerability lifecycle managers, operations and application support teams and the vulnerability data team to analyze requirements, design and develop specs and manage data which supplies information to all vulnerability threat reporting and analysis.
  • Implement identified process improvements.
  • Work with partnering organizations to automate manual metrics and reporting.
  • Support the Vulnerability Operations Lead with ad-hoc requests


Qualifications:
  • 5+ years in vulnerability management or information security reporting functions
  • Strong project management skills
  • Experience with industry-wide vulnerability reporting tooling
  • Strong communication skills. Must be able to interact with senior management from both business and technical perspectives
  • Excellent attention to detail
  • Familiarity with:
    • Vulnerability Assessment tools, e.g., Nessus, Qualys, etc.
    • OS Security, e.g., Unix, Linux, Windows, Cisco, etc.
    • Web application infrastructure, e.g., Application Servers, Web Servers, Databases
    • Web development and programming languages i.e., Python, Perl, Ruby, Java, and/or .Net
    • Business Intelligence tools
    • SQL scripting and advanced Excel skills
  • Strong work ethic and a proactive mindset with ability to think "outside of the box" to solve problems
  • Experience solving complex data flow challenges
  • Advanced knowledge of complex queries for data analysis
  • Experience with at least one coding language (PowerShell, Python, C#, etc.).
  • Experience in automation and optimization of repetitive processes and reporting


Education:
  • Bachelor's degree/University degree or equivalent experience


Additional information may be found at www.citigroup.com | Twitter: @Citi | YouTube: www.youtube.com/citi | Blog: http://blog.citigroup.com | Facebook: www.facebook.com/citi | LinkedIn: www.linkedin.com/company/citi.

Job Family Group:
Technology

Job Family:
Information Security

Time Type:
Full time

Primary Location:
Irving Texas United States

Primary Location Salary Range:
$121,560.00 - $182,340.00

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting

Report this job

Similar jobs near me

Related articles