Details: Office Location / Address: Regular Education Level: NAM-USA-NY-New York Shift: Full-time Employee Status: Other Citi, the leading global financial services company, has some 200 million customer accounts and does business in more than 100 countries, providing consumers, corporations, governments and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, and wealth management. Additional information may be found at www.citigroup.com or www.citi.com. A Technology Control Officer is required to assist in implementing / maintaining a cohesive, effective, efficient, coordinated, and consolidated controls governance model in support of Global Markets Technology.The Technology Control Officer has strong technical acumen and established relationships with information security officers, project managers and other disciplines within the Application Technology units. The TCO is a focal point for ensuring that there is a strong general control environment as well as ensuring that applications deployed in support of a business provide a level of protection appropriate to the class of information managed in those systems.Reporting and Analysis:• Compile data and prepare reports for management• Perform and report on trend analysis• Analysis and identification of potential non-compliance issues• Design reports to track corrective actions• Lead and /or contribute to ad-hoc requests and projects as requiredAudit:• Assist in preparation and tracking of information for internal and external audits and regulatory reviews.Risk Management and Governance Responsibilities:• Facilitate the effective management of technology risk• Awareness and execution of the Risk and Control Self Assessment (RCSA) process• Monitor risk mitigation process and risk oversight• Monitor progress of corrective action plansCompliance and Oversight:• Facilitate departmental compliance with policies, standards and regulations (Record Management, Sarbanes Oxley (Sox-404), Operational Risk, Cross-border data, Export licensing, etc.)• Facilitate compliance to Citigroup Information Technology Management Policies (covering Architecture, Change Management, Continuity of Business, Vendor Management, Information Security, Internet Management, Problem Management, Project Management, Resource Management, and Software Management)• Identify and record non-compliant issues (through self-testing, general analysis, control initiatives, etc.)• Monitor progress of corrective action plans and risk acceptances.Process Definition and Documentation:• Define and document processes for the various CITMP areas in line with corporate policies where appropriate• Identify opportunities for process improvement• Facilitate compliance to defined standards and assist in tool development
No comments:
Post a Comment