**About Citi:**
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.
As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services.
Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. Well enable growth and progress together.
**SIM Strategic Analysis Manager**
Citi's Security Operations Center (SOC) Security Incident Management (SIM) Team seeks a highly skilled and experienced strategic analyst to support critical efforts aimed at protecting Citi infrastructure, assets, clients, and stakeholders. This is a demanding role with global exposure and responsibility. You will serve both as a subject matter expert and as an ambassador for the security incident management team. You will be assigned to Citi's SOC and will collaborate closely with a talented cadre of security specialists and incident responders to scrutinize and characterize their findings, and leverage these insights to inform and influence key risk and control improvements. Your observations and recommendations will impact security decisions across the organization and play an important part in maturing Citi's security posture. This position requires strong leadership and prior management experience in driving data interrogation and reporting efforts within a global security incident program. You will lead a group of analysts in identifying and leveraging insights in the security incident record to influence change makers in the organization to improve the risk and control environment. This position will be technically challenging and rewarding, but will also provide ample opportunity to establish partnerships, mentor colleagues and shape team culture. The ideal candidate will be an experienced and influential information security professional with the desire and ability to lead a team of analysts in pursuing ambitious goals within a global organization. Candidates should be adept at coaching junior team members. This position will report to the Global Head of Security Incident Management.
**Responsibilities**
Related activities include but are not limited to:
+ Manage the redesign of a metrics and reporting program for the security incident management team.
+ Establish an analytically rigorous data science function that will leverage statistical methods to explore and characterize data from the organization's security incident case management system(s).
+ Establish and track Key Performance Indicators and Key Risk Indicators for the program.
+ Work with process automation team and others to establish and mature mechanisms for automated report creation.
+ Simplify the reporting program to focus on efficiency and quality, with the goal of creating a finite set of dashboards and reports that convey key actionable insights to interested stakeholder audiences.
+ Create clear and consistent data-driven narratives that communicate observations regarding persistent control gaps and root causes of security incidents, and that seek to improve the organization's risk and control environment.
+ Present your observations and recommendations to stakeholders throughout the organization.
+ Work with process automation team to establish a self-service report framework that enables interested stakeholders to create custom reports on-demand.
+ Manage, grow and develop a team of analysts and other support staff.
+ Partner with peers in security incident management team on program governance activities, including the development and/or maintenance of standards, procedures and training.
+ Collaborate with other information security teams in the organization as needed.
**Qualifications**
You should be all of the following:
A seasoned leader. Success will depend on your ability to:
+ Lead by example.
+ Enable team success by being approachable and available.
+ Innovate and inspire others.
+ Embrace challenges and approach any failures as opportunities for learning and improvement.
A skilled and creative data analyst and storyteller. Success will depend on your ability to:
+ Quickly synthesize information from disparate sources.
+ Scrutinize data thoroughly to identify relationships and draw high-confidence conclusions.
+ Establish defensible working theories to explain observations and findings.
+ Leverage best practices in data analysis and information design to craft clear, compelling and actionable narratives.
A goal oriented individual contributor. Success will depend on your ability to:
+ Stay motivated and work independently with minimal oversight.
+ Adapt to changing requirements in a fast paced environment.
+ Multitask and meet deadlines despite competing priorities.
+ Navigate operational impediments in order to complete time sensitive tasks.
+ Identify and document any opportunities for process improvement.
A reliable team player. Success will depend on your ability to:
+ Practice mutual respect at all times.
+ Establish trust and build strong partnerships.
+ Resolve conflict in a constructive manner and use as an opportunity to develop team unity.
+ Prioritize collective success ahead of individual ambition.
A great communicator. Success will depend on your ability to:
+ Establish clear narratives to describe analytical findings and working theories.
+ Clearly and concisely articulate any recommendations that arise from analysis activities.
+ Motivate colleagues and partners to cooperate and support as needed.
+ Exert influence both verbally and in writing.
**Requirements and Critical Competencies**
**Education and Leadership Experience**
+ **Bachelor's degree from an accredited institution, ideally in a technical domain such as Computer Science, Engineering or other field related to Information Security or equivalent experience.**
+ 10+ years of professional experience in cybersecurity, information security, security engineering or operations, or demonstrated equivalent capability.
+ 5+ years hands-on experience in any information security capacity in medium to large organizations, ideally in a regulated industry such as financial services.
+ Management experience program and/or people in medium to large organizations, ideally in a regulated industry such as financial services.
+ Experience with leading the development, implementation, and management of metrics and reporting activities, ideally within a global information security program and/or a regulated industry such as financial services.
+ Proven leadership, communication, issue resolution and performance management skills.
+ Any GIAC or similar information security certifications.
**Data Analysis and Stakeholder Engagement**
+ **Proficient at analyzing, characterizing and interpreting large data sets**
+ Working knowledge of basic statistical analysis and data science principles.
+ Experience with information and/or user interface design.
+ Practitioners knowledge of any of the following applications: Microsoft Excel (and other Office components), Tableau, ServiceNow, Cognos.
+ Previous experience as a primary or contributing author of technical material such as strategic reporting or governance documentation, ideally in an information security setting.
+ Proven ability to influence decision makers through data-driven narratives and diplomacy.
**Project and Knowledge Management**
+ **Practitioners knowledge of Atlassian (Jira/Confluence/BitBucket) or similar tools, including configuration and system administration.**
+ Experience using agile frameworks (scrum, TDD, Kanban) and familiarity with agile development practices such as continuous integration and continuous delivery.
+ Demonstrable project management experience. Project Management certifications such as PMP preferred.
**Other**
+ **Must have flexibility to work outside of normal business hours when necessary.**
+ Ability to travel up to 15% of the time, for team meetings, training, and presentations.
+ Must be flexible in outlook and attitude.
+ This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
+ Exceptional candidates from non-traditional backgrounds or who otherwise do not meet all of these criteria may be considered for the role provided they demonstrate sufficient skill and experience.
This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
-------------------------------------------------
**Job Family Group:**
Technology
-------------------------------------------------
**Job Family:**
Information Security
------------------------------------------------------
**Time Type:**
Full time
------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review **Accessibility at Citi (https://www.citigroup.com/citi/accessibility/application-accessibility.htm)** .
View the "EEO is the Law (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/eeopost.pdf) " poster. View the EEO is the Law Supplement (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/OFCCP\_EEO\_Supplement\_Final\_JRF\_QA\_508c.pdf) .
View the EEO Policy Statement (http://citi.com/citi/diversity/assets/pdf/eeo\_aa\_policy.pdf) .
View the Pay Transparency Posting (https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp\_%20English\_formattedESQA508c.pdf)
-----------------------------
Effective November 1, 2021, Citi requires that all successful applicants for positions located in the United States or Puerto Rico be fully vaccinated against COVID-19 as a condition of employment and provide proof of such vaccination prior to commencement of employment.
Citi is an equal opportunity and affirmative action employer.
Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.
