Citi Group SVP - Technology Risk Compliance Group Manager Hybrid Taguig 

Philippines, Taguig 

601487260

Whether you’re at the start of your career or looking to discover your next adventure, your story begins here. AtCiti, you’ll have the opportunity to expand your skills and make a difference at one of the world’s most global banks. We’re fully committed to supporting your growth and development from the start with extensive on-the-job training and exposure to senior leaders, as well as more traditional learning. You’ll also have the chance to give back and make a positive impact where we live and work through volunteerism.

Citi’sorganization oversees risk-taking activities and assesses risks and issues independently of the front line units. We establish and maintain the enterprise risk management framework that ensures the ability to consistently identify, measure, monitor, control and report material aggregate risks.

Shape your Career with Citi

We’re currently looking for a high caliber professional to join our team as
Senior Vice President, Technology Risk and Compliance Group Manager – Hybrid(Internal Job Title: Cyber Tech/LOD Group Manager C14) based in Taguig City, Manila.Being part of our team means that we’ll provide you with the resources to meet your unique needs, empower you to make healthy decision and manage your financial well-being to help plan for your future. For instance:

• Citi provides programs and services for your physical and mental well-being including access to telehealth options, health advocates, confidential counseling and more. Coverage varies by country.
• We believe all parents deserve time to adjust to parenthood and bond with the newest members of their families. That’s why in early 2020 we began rolling out our expanded Paid Parental Leave Policy to include Citi employees around the world.
• We empower our employees to manage their financial well-being and help them plan for the future.
• Citi provides access to an array of learning and development resources to help broaden and deepen your skills and knowledge as your career progresses.
• We have a variety of programs that help employees balance their work and life, including generous paid time off packages.
• We offer our employees resources and tools to volunteer in the communities in which they live and work. In 2019, Citi employee volunteers contributed more than 1 million volunteer hours around the world.

Responsibilities:

• Managerial responsibility of a team including management of people, budget and planning, to include performance evaluations, compensation, hiring, disciplinary actions, terminations and budget approval.
• Accountable for internal projects on threat issues that support a variety of participants and stakeholders measuring the effectiveness and comprehensiveness of Citi’s first line defenses.
• Establishes and oversees the application of compliance and technology policies and procedures, technology and tools, and governance processes to provide credible challenge for minimizing losses from technology risks.
• Independently assesses technology risks and drive actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices.
• Leads independent assurance activities to assess areas of concern including substantive and controls testing.
• Monitors, evaluates, and challenges Key Risks and associated Key Risk Indicators triggers and thresholds. Also lead discussions with Key Indicator owners on breaches and action steps to correct breaches.
• Serves as the substantive analytical authority for potential risks associated with program/project delivery on a technical and detailed level.
• Leads various second line of defense technology assessments including risk assessments, control assessments, maturity assessments etc.
• Assesses technology risks associated with new initiatives and programs being proposed for implementation.
• Leads challenges to the design, adequacy and strength of the control environment associated to technology and cyber and recommends actions to ensure the operational risk profile is in line with the technology risk appetite.
• Manages the execution of ad-hoc activities for the TCCORO organization, including but not limited to: researching and producing materials for presentations of deep dives into selected topics, coordinating deliverables related to audits and examinations, and maintaining associated data for executive reporting.
• Appropriately assesses risk when business decisions are made, demonstrating knowledge for the firm's reputation and safeguarding Citigroup, its clients, and assets, by driving compliance with applicable laws, rules, and regulations, adhering to Policy, and applying sound ethical judgment.

As a successful candidate, you’d ideally have the following skills and exposure:

• Minimum of 15+ years relevant experience and experience managing a team of professionals
• Experience in assessing, reviewing or auditing IT governance, IT risk management, IT general controls and application controls, including cloud controls, covering relevant technology regulations.
• Experience in managing risk with respect to cloud technology services, including knowledge of industry standard cloud computing frameworks (i.e., Cloud Security Alliance’s CCM).
• Subject matter expert in one or more industry standard risk management frameworks (including COBIT, ISO27001, TOGAF and CRI for example), and an in-depth understanding of technology and cyber risk mitigation strategies.
• Deep knowledge of products within the technology infrastructure and cloud services coverage area, including a technical understanding of current and emerging trends as well as the ability to apply in-depth understanding of the business impacts of technical contributions.
• Experience in technology risk assessments, metrics, enterprise technology services, risks, and controls within globally complex, dispersed, and diverse organizations.
• In-depth knowledge of technology risks and controls across various information system architecture and engineering domains including asset and inventory management, configuration management, technical architecture, availability and capacity management, incident management; preferred expertise in cloud architecture.
• Excellent written and verbal communication skills.
• Outstanding communication and influencing skills through all levels of the organization and with external partners and vendors. Exceptional relationship management skills; must be able to address and resolve conflict while maintaining relationships.
• Ability to effectively communicate complex topics to a broad audience.
• Strong analytical skills, including the ability to filter, prioritize and validate potentially complex material from multiple sources.
• Proven ability to deal with complex and variable issues with substantial potential impact, where development of an approach/taking of an action involves weighing various alternatives and balancing potentially conflicting needs.

Education:

• Bachelor’s/University degree, Master’s degree preferred
• Relevant certifications (in CISM, CRISC, CISSP, CISA, or PMP) a plus

Time Type: