Citigroup CYBERSECURITY FRAMEWORK / PROJECT MANAGEMENT LEAD in Irving, Texas
CYBERSECURITY FRAMEWORK / PROJECT MANAGEMENT LEAD (C13-VP)
This role involves producing working in the IS Metrics group in the Chief Information Security Office (CISO) working with broad IS topics and metrics and industry IS frameworks and project managing various associated activities.
In Chief Information Security Office / Strategy, Planning and Governance / Metrics Program, our mission is to:
To provide Information Security (IS) metrics to Citi Executive Management, CISO senior management, ISROC, CIO Council, regulators, Audit, and the IS Community on a timely basis
To provide a platform to define and measure IS risk, process, threat and operational indicators
To provide IS Monthly Reports and ad-hoc reports to stakeholders
To define, develop, socialize, get approval, and operational new IS metrics
To provide IS Metrics and interactive Analytics in near real-time via CISO Business View application to stakeholders and practitioners
To provide details of IS issues to the Information Security practitioners
To manage enhancements and changes in the IS Reports and CISO Business View in collaboration with IS Program Owners
To maintain historic IS Risk data
Skills needed for this role:
Understanding of NIST Cybersecurity Framework (CSF) / Financial Services Sector Profile / FFIEC Cybersecurity Assessment Tool (CAT).
Understanding of Info Security / Cybersecurity metrics in the context of CSF / CAT / Financial services industry.
Industry Info Security certifications (CISSP) are a plus.
Prior experience in IT Risk Management and / or Information Security is a must have requirement.
Project management skills and organization skills are a must; being able to run various meetings and keeping track of project plans, agendas, milestones, follow-ups, etc.
Designing and developing Information Security metrics.
Understanding general Information Security and understand Info Sec metrics in particular
Good communication and organization skills are highly prized in our group.
Be able to present materials in a format that facilitates senior management decision making.
Adept at multitasking and time management with the ability to remain calm under pressure and meet deadlines Undergraduate degree required; Masters in Cybersecurity or a related discipline preferred.
Be proficient in Microsoft Office products such as Excel, Access, PowerPoint, and Word.
Have good presentation skills and produce precise and well-crafted presentations.
Be able to put Excel and Access to use in the analysis.
Required soft skills:
Crisp and clear written communication style
Crisp and clear verbal communication skills
Able to communicate with senior management
Be able to work in collaborative and team environment
Be able to work effectively with colleagues working in other locations
Have influencing skills to get things done smoothly, able to negotiate and persuade others
Must have a sense of ownership and commitment to produce the best quality work
Possess high degree of organizational skills
Time management / awareness of deliverables
Motivated / self-initiating
Flexible (rapidly changing priorities and tasks)
Able to work under challenging deadlines / SLAs
Bachelor’s degree required; Masters in Cybersecurity or related field preferred.
Minimum 8 years working in Information Security, preferably focused in Financial Services industry.
Excellent communication, interpersonal and presentation skills to senior management and business users
Being attentive to details, customer-oriented, resourceful and enthusiastic.
Focused on considering business enablement while reaching balanced information risk judgments.
This role has the following key responsibilities:
Lead metrics definition and modelling in the context of NIST Cybersecurity Framework (CSF) / Financial Services Sector Profile / FFIEC Cybersecurity Assessment Tool (CAT)
Manage data dealing with NIST framework, tolerance statements, metrics
Manage projects in developing IS metrics and data feeds etc.
Prepare presentations for senior stakeholders in clear and easily understood format in Excel, PowerPoint, Word or PDF documents.
Run meetings with various stakeholders and capture notes / action items / follow-ups / etc. and communicate them
Perform data analysis using Excel and Access
Work in the Reporting team on various IS Metrics development / reporting / project management / related tasks
Lead and coach other on aspects of IS Metrics measuring adherence to NIST Cybersecurity Framework (CSF) / Financial Services Sector Profile / FFIEC Cybersecurity Assessment Tool (CAT)
Education Level: Bachelor's Degree
Primary Location: NAM-USA-TX-Irving
Job Category: Technology
Shift: Day Job
Employee Status: Regular
Travel: Occasional travel is required
Salary Grade: C13
Job Family Group:
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi (https://www.citigroup.com/citi/accessibility/application-accessibility.htm) .
View the "EEO is the Law (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/eeopost.pdf) " poster. View the EEO is the Law Supplement (https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf) .
View the EEO Policy Statement (http://citi.com/citi/diversity/assets/pdf/eeo_aa_policy.pdf) .
View the Pay Transparency Posting (https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf)
Citi is an equal opportunity and affirmative action employer. Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.
- Citigroup Jobs