Citi · 3 days ago
Security Incident Management Lead
Wonder how qualified you are to the job?
BankingFinance
Insider Connection @Citi
Responsibilities
Work as part of a best in class ‘follow the sun’ security incident response team.
Lead and manage incident response activities to ensure that requisite triage, containment, and eradication are completed within targeted timeframes.
Ensure that the security incident record is complete, accurate and fit for purpose.
Collect and analyze evidence including investigative findings and prepare to coordinate with internal and external compliance and audit personnel.
Execute incident response meetings and communicate complex security topics; exhibit good judgment and discretion when initiating escalations to all levels of the organization.
Ensure that controls are utilized daily and that non-compliance remediation is addressed by appropriate selection.
Provide IS consulting services, including interpreting and/or clarifying information security policy, procedures, standards or concepts.
Assist with defining and implementing information security standards to align procedures and practices in pursuit of compliance with Citigroup standards.
Validate compliance with information security policies, practices, and procedures, and resolve a variety of information security related issues in coordination with the relevant business(es).
Assume both informal and formal mentorship roles within the team, and assist with coaching and training of new team members.
Act as an authority for cyber security incidents, with the ability to reliably identify and escalate threats with appropriate urgency.
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Relevant professional certifications issued by GIAC, AWS, etc., preferably GCCC, GCIH, CEH, ECSA.
General Industry knowledge of reporting obligations pertaining to local and national laws and regulatory bodies such as OCC, SEC, ECB, MAS
Working knowledge of common security models (Defense-in-Depth) and frameworks (MITRE Attack, Cyber Kill Chain, STIX)
Working knowledge of VERIS taxonomy
Working knowledge of OSI model
Working knowledge of security and/or incident response in cloud environments
Working knowledge of software development best practices, including agile methods
Familiar with Atlassian tools
Previous experience working in highly regulated environment
Previous experience in a fusion center and/or exposure to large scale incident response
Prior experience with information technology and/or information security in the financial services industry
Prior experience with cloud environments (e.g. AWS, GCP, Azure)
Working knowledge of how computer applications, systems, and networks are managed and secured.
Working knowledge of common security threats and vulnerabilities, attack vectors, and adversary tactics, techniques, and procedures (TTP's)
Proficient threat intelligence supported by a clear understanding of Cyber Adversarial levels , their motives and capabilities.
Must have flexibility to work outside of normal business hours when necessary
Bachelor’s degree in Computer Science, Computer Engineering, Information Security, Digital Forensics Sciences, or other IT related field however Master's is preferred.
5+ years of professional experience in cybersecurity and/or information security, or demonstrated equivalent capability
Previous experience with cyber investigations and/or incident response
Working Knowledge of CIS Top 18, NIST 800-53 and NIST 800-61
Proven experience of enterprise wide stakeholder interaction and management
Benefits
Medical, dental & vision coverage
401(k)
Life, accident, and disability insurance
Wellness programs
Paid time off packages including vacation, sick leave, and paid holidays
Company
Citi
Citi's mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress.
H1B Sponsorship
Citi has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Trends of Total Sponsorships
2023 (1014)
2022 (1194)
2021 (958)
2020 (960)
Funding
Current Stage
Late StageLeadership Team
Recent News
2024-05-14
2024-05-13
2024-05-13
Company data provided by crunchbase