LATAM – Security Incident Management Lead
Citigroup Inc
Distrito Federal, MEX
hace 3 días


Info Sec Prof Senior Analyst

Key Responsibilities :

  • Review and analyze Information Security Incidents to identify those that pose a significant risk to the Citigroup franchise and its affiliates, and escalating those IS Incidents in accordance with Citigroup policy and procedures.
  • Review the details of all reported incidents to determine whether they constitute an IS Incident.
  • Review and verifying the accuracy of the reported severity level of an incident.
  • Provide technical subject matter expertise to mitigating risk to impacted parties throughout an incident.
  • Work with internal and external constituents to minimize risks associated with IS Incidents, including convening appropriate Subject Matter Experts to assist investigations and ensuring that all relevant facts of the IS Incident are properly communicated and reflected in the SIM Application.
  • Track follow-up documentation related to an IS Incident, including Root Cause Analyses (RCAs), Lessons Learned and SIRT Remediation Plans throughout the incident lifecycle till closure.
  • Ensuring that SIRT metrics are available to senior management at the business and corporate level.
  • Oversee the quality, availability, and integrity of the data in the Security Incident Management Application (SIM Application)
  • Qualifications

    Knowledge and Experience :

  • Bachelor’s degree in any career is desirable or equivalent work experience of 7+ years.
  • 5+ years working in an Information Security role with experience in incident response, information security incidents, and system / network forensics.
  • Extensive years working in IT / IT security, preferably a 24x7 operational environment, or educational equivalent.
  • Experience in security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience.
  • Understanding of networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection / prevention systems, encryption, load balancing, and other network protocols.
  • Experience with Reverse Engineering malicious code and Web / Network Penetration Testing is a plus.
  • Experience with Databases, SQL knowledge is a plus.
  • Experience writing Perl, Python, scripting, programming, or other languages is a plus.
  • Experience administering and troubleshooting operating systems, including Solaris, Linux, and Microsoft Windows Server is a plus.
  • Certified Information Systems Security Professional (CISSP) certified / qualified or ability to actively work towards obtaining certification.
  • Certified GIAC Certified Incident Handler (GCIH) or demonstrated skills and ability to obtain certification.
  • Excellent communication and presentation skills, analytical ability, strong judgment and leadership skills, and the ability to work effectively with clients and IT management and staffs.
  • Ability to communicate technical issues to technical and non-technical business representatives.
  • Ability to understand strategic objectives and vision, and work towards those goals.
  • Dedicated and self-driven desire to research current information security landscape.
  • Exhibit strong influencing / negotiation skills as well as written / verbal communication skills.
  • Fluent English, 90%
  • Inscribirse
    Añadir a los favoritos
    Elimnar de mis favoritos
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", acepto que neuvoo recolecte y procese mis datos de conformidad con lo establecido en su Política de privacidad . Tengo derecho a darme de baja o retirar mi autorización en cualquier momento.
    Formulario de postulación