Details: Office Location / Address: false Education Level: CTI BISO Shift: 783024 Employee Status: true Citi, the leading global financial services company, has some 200 million customer accounts and does business in more than 100 countries, providing consumers, corporations, governments and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, and wealth management. Additional information may be found at www.citigroup.com or www.citi.com. General Purpose /Expected Results of the Job:To manage and co-ordinate all Information Security activities, programs and initiatives for one or more Citi Technology Infrastructure business units.Information Secuirty is a primary area of focus for Citi. This key position reports to global information security GISO (Group Information Security Officer).This position is a key member of the Citi Technology Infrastructure (CTI) global structure and supports the business to achieve it's shared responsibility for meeting Global Technology Infrastructure strategic goals Key Responsibilities:• Provide a single point of contact on Information Security for one or more Citi Technology Infrastructure business units (Consumer Infrastructure Services and NA Data Center)• Provide technical security advice to Windows, Unix Server, Database, Mainframe and Data Center operations staff to help meet information security requirements.• Provide oversight of business unit issue remediation activities• Manage and support the completion of regular business unit IS actions, including Entitlement Review System, Third Party Security Assessments, and Information Security Risk Assessments.• Support business units with their disclosure, recognition of control issues, including the review of all evidence to ensure that issues are managed to consistently high standards.• Apply knowledge of standards, best practices, position papers and general process areas to coordinate the effective review of the entities operating processes and process control manuals commensurate with published risk methodologies and business strategies.• Work with various risk teams in presenting recommendations for improvement to technology subject matter experts and management.• Interface and engage with external parties reviewing the entities seeking external certifications or undergoing audits.• Engage with cross sector, global and risk teams in the review and reengineering of key controls and processes to effectively and efficiently manage IS issues.• Contribute to, interpret and disseminate IS policy, standards and awareness throughout the business units.• Lead Global IS forums, such as BISO Working Group, Functional ID requirements or other as and when initiatives / programs are assigned by GISO• Additional ad-hoc IS & Risk related initiatives and projects
No comments:
Post a Comment