Information Security Lead Analyst (Vice President)

As part of Citi Infrastructure Defense team, the analyst position will participate and be responsible for analysis, design, support of system and network security application troubleshooting. The ideal candidate shall have ability to gather requirements, specifications, and document the technical requirements. Candidate must have demonstrated broad technical knowledge on skill sets below, be able to perform off-hours support, and work independently. Successful candidate will be results oriented, work well in a fast paced, highly collaborative team environment, and be able to multi-task and reprioritize tasks as needed. Candidate will regularly interact with internal customers and adjacent teams. As such, candidates must possess solid verbal and written communication skills, strong personal initiative and expert problem solving abilities

• Identify opportunities to automate and standardize information security controls and for the supported groups
• Resolve any vulnerabilities or issues detected in an application or infrastructure
• Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
• Review and validate automated testing results and prioritize actions that resolve issues based on overall risk
• Scan and analyze applications with automated tools, and perform manual testing if necessary
• Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions
• Direct the development and delivery of secure solutions by coordinating with business and technical contacts
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

• 8+ years of experience with multiple security disciplines and strong understanding of layered defense concepts.
• Deep understanding of TCP / IP technologies and knowledge of network routing protocols
• Experience defining enterprise security strategy and ecosystem across diverse products
• Strong hands on experience with firewall and proxy technologies (Bluecoat, Squid, NGINX
• Large Scale Network and Security design experience is essential
• Work with and understand regulatory and risk management requirements
• Strong unix / linux experience
• Scripting (Python / Perl / Bash)
• University / College degree in any STEM area or equivalent industry / technology knowledge

• Opportunity to work on the internal security posture for a large financial and thus shaping the industry overall
• Exposure to a broad range of investment technology businesses and products
• Access to our word class testing lab with physical hands on using hundreds of devices in the IT security ecosystem

#LI-Hybrid

Job Family Group: Technology

Job Family: Information Security

Time Type: Full time