Citi Group Windows Security Endpoint Privilege Management Engineer 

United States, Texas, Houston 

454523243

Responsibilities:

• Develop and implement comprehensive security strategies for Windows environments.
• Lead the evaluation and integration of new security technologies and tools.
• Monitor and manage privileged access, ensuring compliance with least privilege principles.
• Serve as a technology subject matter expert for internal and external stakeholders and provide direction for all firm mandated controls and compliance initiatives, all projects within the group and in creating a technology domain roadmap.
• Ensure that all integration of functions meet business goals.
• Define necessary system enhancements to deploy new products and process enhancements.
• Recommend product customization for system integration.
• Identify problem causality, business impact and root causes.
• Exhibit knowledge of how own specialty area contributes to the business and apply knowledge of competitors, products, and services.
• Advise or mentor junior team members.
• Impact the engineering function by influencing decisions through advice, counsel or facilitating services.

Qualifications:

• 6-10 years of experience in Windows security engineering or a similar role.
• Strong knowledge of Windows Server and Workstation operating systems and their native / embedded security controls (e.g., group policy, Bitlocker, Windows Defender, ASR, Credential Guard, AppLocker, etc.).
• Scripting skills (e.g., PowerShell) for automation and security tasks.
• Proficiency in security frameworks and standards (e.g., NIST, CIS Benchmarks).
• Experience with CyberArk Endpoint Privilege Management, including deployment, configuration, and management.
• Effective leadership and project management skills.
• Excellent problem-solving and analytical skills.
• Strong analytical, communication, and documentation abilities.
• Ability to communicate complex security concepts to technical and non-technical stakeholders.

Education:

• Bachelor’s degree or equivalent experience in Computer Science, Information Technology, Cybersecurity, or related field.
• Relevant certifications (e.g., CISSP, CEH, CompTIA Security+, AZ-500, SC-100, CyberArk Defender) are preferred.

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Anticipated Posting Close Date:

View the " " poster. View the .

View the .

View the