Citi Group Cybersecurity Regulatory Governance - Project Delivery Analyst VP C13 

United States, Texas, Irving 

7870392

The Role:

Theis responsible for designing, developing, and delivering information security regulatory programs and practices for Citi's CISO (Chief Information Security Office). The overall objective of this role is to facilitate and help lead regulatory analysis and program activities. This role requires a broad and comprehensive understanding of the different regulatory laws relevant to information security and other related areas of the organization. The successful candidate will have demonstrated success and be highly adept at leading global programs and engineering change efforts, managing risk and execution of global programs by aligning resources and tactical/strategic decisions, and driving transformation across a complex enterprise to support cybersecurity goals.

Responsibilities

• Serve as a subject matter expert on Citi’s regulatory programs and frameworks including GLBA, NYDFS, and PCIDSS
• Be accountable for the quality, completeness, and accuracy of the implementation of the regulatory governance control analysis, remediation, applicability and mapping Framework
• Provide expert guidance on Information Security & Cybersecurity regulations to manage risks including guidance on completing regulatory assessments to ultimately review and sign off assessments' completeness and accuracy
• Drive initiatives and manage high-impact project workstreams with a results-driven focus to deliver solutions, including coordinating the implementation of new regulatory requirements
• Work with information security officer (ISO), functional owner, ICRM and legal as needed to determine projects meet regulatory requirements
• Partner with other ICRM teams and global functions, including Legal, Risk, Operations and Technology, and HR to prevent and detect non-compliance issues and promote a culture of compliance
• Determine the needs of policy updates, identifying opportunities driving process and control standardization (MCA) enhancements, and the development of improved monitoring controls and compliance metrics
• Assist leadership in exercising control over Regulatory Operational and Compliance Risks in accordance with established Policy requirements
• Assist management in guiding and influencing standards and procedures that conform to enterprise requirements and support sound operational and compliance risk management
• Analyze and identify overlapping control initiatives to resolve duplication of effort
• Execute risk control coverage strategy, ensure appropriate risk mitigation actions are in place and escalate to senior management where appropriate
• Responsible for managing and supporting multiple risk and control programs for the team including defining the strategy, approach, processes, and reporting
• Examine procedures for consistency and gaps relative to regulations in addition to impacts on security controls

Qualifications

• 5+ years' prior experience working directly in Information Security and Banking Regulations, or similar analysis
• Direct experience with at least one or more financial regulations including GLBA, NYDFS, FFIEC, OCC and FDIC cybersecurity regulations is highly preferred
• Advanced analytical skills, with the ability to identify root causes and trends and anticipate horizon issues
• Ability to recognize emerging risks, including compliance and technology risks
• Expert in risk analysis and risk management processes for one or more function or area
• Ability to manage projects, expectations and maintain key relationships with senior stakeholders
• Proficient in Microsoft Office (Word, Excel, and PowerPoint)
• Proven ability to build and maintain relationships and exert influence without direct authority
• Consistently clear written and verbal communication skills with the expert ability to communicate clearly and concisely to audiences of varying levels of seniority
• Function as an SME to stakeholders and team members with the ability to operate autonomously exercising independence of judgement
• Excellent problem-solving skills and the ability to see the big pictures with high attention to critical details

Education

• Bachelor’s/University degree or equivalent experience
• Master's degree is a plus

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Anticipated Posting Close Date:

View the " " poster. View the .

View the .

View the