Provide expertise and experience to existing and future functions and projects focused on email threats and controls.
Actively monitor and research cyber threats with a direct or indirect impact to the Citi brand
Analyze and provide oversight of analysis of email threats and controls
Provide leadership, solution design, and hands-on development support for email security controls
Develop and manage processes to track identified incidents to resolution
Develop weekly, monthly, quarterly, and annual metrics and reports as needed
Develop written analytical reports and give presentations on findings
Triage information received from vendors and process that information through previously defined internal workflows
Manage third party vendors to ensure proper delivery of services
Manage meetings with internal stakeholders to address open issues and identify process improvements
Actively engage in liaison activities with intelligence communities, industry associations, peer institutions, and information sharing communities
Apply developed communication and diplomacy skills to guide and influence decision makers
Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients, and assets, by driving compliance with applicable laws, rules, and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing, and reporting control issues with transparency
Keep up to date with the ever-changing cyber security landscape to remain relevant and knowledgeable through internal and external certifications
Other responsibilities as needed
Qualifications:
Bachelor’s degree or equivalent work experience; IS Certifications are desired (CISSP, GSEC, GCFA,GREM, Security+, CISA, CISM). Email vendor certifications a plus.
Strong experience with configuration, administering, troubleshooting email routing and filtering in Exchange, Exchange Online, Proofpoint and other enterprise level email security gateways (such as inbound routes, whitelists, email firewall rules, spam/AV, logging/reporting, TAP, TRAP, domain rewrites, secure messaging and recipient verification).
Experience in analyzing domain email activity and deploying SPF, DKIM and DMARC authentication
Experience with enterprise phishing defense concepts and technologies
Minimum 3+ years working in security engineering or security operations role, with a focus on email security
Critical Competencies:
Cross-functional understanding of email operations, security practices and the user experience
Highly technical and analytical expertise, with a proven deep background (preferred 5+ years’ IT experience in addition to cybersecurity) in technology design, implementation, and delivery.
Strong understanding of and demonstrated experience with the tools and sources available to conduct email and threat analysis
Ability to identify and develop new processes to address cross-functional and cross-business requirements and implement
Ability to manage projects and ensure tasks are being met timely. Work with leaders of Cyber Security Operations teams to track, drive and report on strategic initiatives.
Ability to organize and appropriately prioritize multiple, ongoing tasks via efficient time management and forecasting. Project management skills a plus
Ability to work independently, as well as in team situations, to help internal and external customers achieve desired results