Information Security Professional
Citigroup Inc
Distrito Federal, MEX
hace 38 días

Description

Information Security Professional EO&T Global Information Security Key Responsibilities :

  • Provide security guidance to engineering and operations partners to help them meet Information Security requirements.
  • Proactively engage the businesses to identify, document and drive remediation of excessive risks and non-compliant activities
  • Influence and support corporate IT Information Security policies
  • Create and review security metrics to measure security effectiveness
  • Monitor security violations and driving resolutions to security policy
  • Ensure that appropriate stakeholders are held accountable as to the state of their controls and that they understand their responsibilities regarding risk mitigation and remediation
  • Partnering with IT Teams to ensure that IT systems are managed, operated and designed to minimize risk
  • Escalate significant risks to the Regional / Sector / Global IS Leadership for information or action
  • Facilitate, attend and participate in internal / external meetings and risk committees
  • Provide updates to business groups, partners and senior management through established communication channels
  • Reduce security risks by leveraging controls and minimizing weaknesses in Citi’s Infrastructure portfolio
  • Engage with Business Managers and staff to ensure non-compliant items are addressed in timely fashion
  • Ensure compliance to security practices & standards. Reducing likelihood of audit findings, regulatory & legal liabilities
  • Engage with cross sector, regional, global risk and control teams in the review and reengineering of key controls and processes to effectively and efficiently manage IS issues
  • Contribute to, interpret and disseminate IS policy, standards and awareness throughout the business units
  • Ensure timely engagement and delivery on information security, business and / or technology initiatives and projects
  • Protect the firm by following sound risk management protocols and adhering to regulatory requirements
  • Articulates the value of IS controls and its bottom line impact.
  • Development Value :

  • In-depth knowledge of information security standards, best practices, processes and systems
  • Experience of multi-tasking and prioritisation
  • Exposure to Senior Management and technology Subject Matter Experts
  • Team Management and Leadership activities
  • Influencing without formal authority
  • Exposure to Global Management
  • Working to deadlines
  • Specialize in an Information Security related function and participate in the Global development and rollout of related solutions
  • Knowledge / Experience :

  • General Understanding for Distributed Services as Wintel, Unix, Databases, Middleware, Storage among others.
  • Understanding of IS programs including, but not limited to, Audit Reviews, Risk Assessment, Awareness & Training, Identity Access & Management, Data Protection, Secure SDLC, Incident Management, Vulnerability Assessment, Third Party IS Assessment, Secure Configurations, Patch Management, etc.
  • Experience of working with ITIL, ISO 27001 and / or CoBIT processes and procedures, including document control
  • Audit experience and exposure is essential
  • Strong risk management background in a multi-national financial organization
  • Skills :

  • Bilingual (Spanish-English) mandatory / English : Fluent Advanced.
  • Excellent interpersonal and written skills
  • Ability to build strong relationships between businesses and across countries
  • Strong oral and written communicator
  • Ability to analyse complex issues and present findings and potential solutions in plain-English to various levels of management
  • Qualifications :

  • Bachelor's degree in a technical discipline (Computer Engineering, Computer Science, or related discipline)
  • Minimum : 3 years of Information Technology and / or Security experience
  • Minimum : 1 IS certifications or willingness to earn within 12 months of joining (CISSP, CISM, CISA or Equivalent) desirable
  • Competencies

  • The candidate will need to be a self-motivated, problem solver and decisive.
  • Taking initiative and decision-making will be important to the role.
  • Work will need to be of a consistently high quality, with a focus on timely and accurate delivery of information and reports.
  • Take responsibility for ensuring activities are completed, overcoming obstacles and challenges
  • Ability to influence staff and team members, often based in other countries
  • Proven ability to manage multiple tasks and priorities
  • Ability to manage aggressive time frames and communicate effectively to peers and management
  • Flexibility to adapt to changing demands and priorities
  • Inscribirse
    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", acepto que neuvoo recolecte y procese mis datos de conformidad con lo establecido en su Política de privacidad . Tengo derecho a darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación