Citi Group Cybersecurity Third Party Affiliate Privacy Lead 

Poland, Masovian Voivodeship, Warsaw 

402854952

CISO Governance, Risk & Control, and Policyis responsible for providing governance, oversight, risk management, and strategic planning for CISO; as well as Third Party Information Security Assessments (TPISA). The team is also responsible for CISO Program and Performance Management including oversight of CISO’s book of work, maintaining a CISO strategy aligned with industry and regulatory requirements, and CISO’s performance management processes to ensure key IS metrics are in place to determine compliance with Citi’s standards. In addition, the team is responsible for the governance and oversight of Risk Management programs across CISO.

This is a people management role that will lead Cyber Third Party, Affiliate and Privacy programs for CISO. This role is responsible for ensuring CISO adherence to Citi Privacy Policy and Third Party Management Policies as well as applicable regulatory requirements globally. This role partners closely with Citi TPM, Data Privacy Office and ICRM to ensure CISO fulfils all relevant requirements and effectively manages our internal and external third parties as well as provides support to CISO business and functions during data privacy reviews and cross border activities. This role requires a broad and comprehensive understanding of regulatory requirements related to third party management, outsourcing and data privacy as well as strong knowledge of relevant policies. The successful candidate will have demonstrated success and be highly adept at: leading global programs and engineering change efforts; managing risk and execution of global programs by aligning resources and tactical/strategic decisions; and driving transformation across a complex enterprise to support cybersecurity goals.

Job Responsibilities:

• Ensures CISO adherence to Citi Third Party Management Policy, provides governance and guidance to CISO Business Activity Owners and Third Party Officers.

• Monitors critical metrics to ensure CISO third party suppliers follow all requirements of the third party management lifecycle. Participates in Third Party Management committees and provides relevant updates to CISO Leadership team.

• Manages CISO services in the Inter-Affiliate Service Catalogue and acts as the Service Provider contact for CISO services.

• Provides guidance and governance for the CISO Service Recipient contacts. Ensures CISO adherence to all Inter-Affiliate Standard requirements.

• Provides expert guidance on Privacy regulations and ensures CISO’s compliance with Citi Data Privacy policy and standard as well as timely completion of required privacy assessments.

• Leads initiatives and manages high-impact project work streams with a results-driven focus to deliver solutions, including coordinating the implementation of new regulatory requirements.

• Works with information security officer, functional owner, ICRM and legal as needed to support CISO projects for Cross Border clearance.

• Partnering with other ICRM teams and global functions, including Legal, Risk, Operations and Technology, and HR to prevent and detect non-compliance issues and promote risk culture.

• Responsible for managing and supporting multiple risk and control programs for the team including defining the strategy, approach, processes, and reporting.

Qualifications:

• 10+ years of experience in third party risk management, compliance, privacy, or other control-related functions in the financial services industry.

• Ability to identify, measure, and manage key risks and controls.

• Ability to see the big pictures with high attention to critical details.

• Develop and implement strategy and process improvement initiatives.

• Comprehensive knowledge of Citi’s businesses and functions and their risk profiles.

• Developing new ideas and improving current processes to proactively mitigate risks.

• Expert understanding of compliance laws, rules, regulations, and best practices.

• Deep understanding of Citi’s Policies, Standards, and Procedures.

• Strong leadership, decision-making, and problem-solving skills.

• Strong analytical skills to evaluate complex risk and control activities and processes.

Education:

Bachelor's/University degree, Master's degree preferred

We Offer:

By joining Citi Solutions Center Poland, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (which is annually reviewed) and enjoy a whole host of additional benefits such as:

• Private Medical Care Program

• Life Insurance Program

• Pension Plan contribution (PPE Program)

• Employee Assistance Program

• Paid Parental Leave Program (maternity and paternity leave)

• Sport Card

• Holidays Allowance

• Sport and team recreation activities

• Special offers and discounts for employees

• Access to an array of learning and development resources

• A discretional annual performance related bonus

• A chance to make a difference with various affinity networks and charity initiatives

Time Type: