Citi Group Cybersecurity Infrastructure Vulnerability Governance Analyst AVP C12 

United States, Florida, Tampa 

140016852

Cybersecurity Infrastructure Vulnerability Governance Analyst

The role is an opportunity to be part of a highly visible, critical team function engaging with senior leadership throughout Citi's CISO. This person should be a proactive problem solver with excellent interpersonal and communication skills that align to most or all of the required qualifications listed below.

Responsibilities

• Drive stakeholders and enforce accountability on governance remediation efforts ensuring timely remediation in adherence to compliance and regulatory requirements
• Design, build and analyze complex Cybersecurity Risk metrics to effectively drive informed decision making directly with senior leadership and executive management teams
• Utilize actionable metrics and data-enriched reporting to further enhance theinformed decision makingprocess
• Collect and track stakeholders' feedback and approvals to ensure comprehensive governance documentation
• Facilitate ongoing updates of documentation around governance processes
• Help lead forums, track program performance, and communicate updates
• Support program improvement initiatives working closely with wider Vulnerability Assessment (VA) colleagues to collate and drive requirements
• Partner with business stakeholders to communicate governance status and associated potential risks
• Manage corrective actions for documented issues and identify new ones as needed
• Mature our security risk processes by working with a broad range of technical and non-technical stakeholders

Qualifications

• 3+ years' experience in Technology Governance or Technology Risk in an enterprise environment
• Proven ability to manage conflict, provide leadership, and make decisions
• Excellent presentation skills with the ability to effectively convey technical risks to both technical and non-technical stakeholders including senior and executive business stakeholders
• Knowledge of security assessment methodology and risk management processes
• Knowledge of industry standards as they relate to Information Security management
• Experience in vulnerability management and familiarity with pen-testing concepts
• Capable of integrating deep technical knowledge with governance expertise to drive effective risk management
• Advanced proficiency with Excel and manipulating data
• Familiarity with Vulnerability Assessment concepts
• Proficiency in writing and executing data queries, with a strong understanding of metrics and data analysis techniques
• Commitment to high standards of confidentiality and integrity
• Excellent attention to detail and strong organizational skills
• Working knowledge of business intelligence and analytics software is a plus (e.g., Tableau, Power BI, etc.)

Education

• Bachelor's Degree in Computer Science/University Degree or equivalent experience
• Industry certifications such as CISA, CISSP, CISM, or GIAC are highly preferred

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Anticipated Posting Close Date: