We will champion a set of practical solutions for Information Security
We will act as a gatekeeper for remediation requests from IS teams – and ensure:
the accuracy of tracking,
the timely closure of false positives,
pushing back against the unnecessary proliferation of CAPs
We will make sure that Checkmarx issues and Blackduck issues are appropriately prioritised according to the actual risk presented to the firm, and do not jump the queue
We will help developers to onboard to lightweight, effective security tooling both pre-commit and in the CI pipeline
We will ensure that response times and reliability for security systems and data are of an acceptable standard
We will smooth infrastructure processes
We will take care of Firewall requests and make sure that they are managed in a predictable fashion
We will be ready to work with unix and wintel SAs, DBAs and other infrastructure teams to implement individual requests, and to improve the quality of service overall
We will establish SLAs with infrastructure teams, and ensure that they are tracked
We will challenge processes that make developers unproductive without compromising security – for example restricted access to UAT, awkward workflow and multiple requests for powerbroker in production
We will make it easier to order servers, and easier to go to cloud
We will drive improvements in tooling
We will help our colleagues in CTI, developer tools and GIDA to improve and automate their own internal processes
We will participate in automation of painful manual processes (for example, raising WAIS tickets)
We will monitor the uptime of key services such as bitbucket, artifactory, JRA, Confluence, uDeploy, and we will be empowered to drive improvements
We will help our partners in CTI to provide performant tools including but not limited to:
Confluence
ServiceNow
JIRA
Artifactory
Bitbucket
We will take care of safe, consistent onboarding to Citi approved identity management solutions, and teach developers how to work with these systems
Qualifications:
5-8 years of relevant experience
Experience in systems analysis, software development and development pipeline.
Ability to work under pressure and manage deadlines or unexpected changes in expectations or requirements
Education:
Bachelor’s degree/University degree or equivalent experience
Applications DevelopmentFull timePlease see the requirements listed above.
Other Relevant Skills
For complementary skills, please see above and/or contact the recruiter.