APAC Head of Security Operations Center (Director)

About Citi:

Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.

As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients’ best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services.

Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We’ll enable growth and progress together.

This position requires strong leadership and prior management experience in operating a full-featured Security Operations Center (SOC) using a wide variety of security tools for monitoring a large-scale global enterprise environment. The successful candidate reports to the managing director and the Global Head of Security Operations Center.

This role requires a highly motivated candidate who possesses a strong leadership background and the ability to manage a diverse team of cyber security analysts in a 24x7x365 SOC, responsible for ensuring the security of a large-scale network. This individual must be able to act as the SOC incident commander in 24x7 bases and must be able to ensure that the SOC is performing all required tasks in accordance with defined policies, standards, and security best practices.

This role requires the candidate to provide appropriate updates to his/her management regarding security event handling, trends, analysis, incident response resolutions and lessons learned. In order to be considered as a successful candidate this person must be able to demonstrate the proper knowledge and leadership skill to support the role.

Most importantly this individual must have very good communication skills, including the ability to write and verbally articulate industry terminology to successfully brief management staff. To best perform this role the candidate will be required to stay up to date with current vulnerabilities, attacks, and countermeasures, along with staying current with all security related news and developments. 

The ideal candidate will be a technically experienced and innovative security professional who has the ability and experience to lead a team of security professionals and execute broad security goals within a global team. Candidates should be experience in coaching team members at all levels (analyst, team lead, manager).

High level responsibilities:

• Act as the SOC incident commander in major cyber events and security incidents.
• Collaborate with other incident response functions such as Citi Security Investigative Services (CSIS) and Security Incident Management (SIM).
• Oversee implementation of new technologies within SOC.
• Execute security operations processes, identify and measure critical security operations metrics and continually improve the efficiency and effectiveness of all core services in scope. Oversee the development and maintenance of standard procedures related to the SOC.
• Work closely with Security Leadership to identify implement process changes, improvements and efficiencies and ensure solid security practices.
• Provide security expertise to the SOC team leveraging industry leading practices.

Desired Skills and Experience:

• Global financial institution Security Operations Center experience in mid to senior level management is required.
• 10+ years of experience in information security or security engineering or operations.
• Certifications: CISSP, CISM, GCIA, GWAPT, GCIH, GSEC, OSCP, OSCE, OSCP, or similar certification preferable.
• Experience with the selection, implementation, and management of enterprise security technologies, including SIEM, anti-virus, anti-malware, DLP, IDS/ IPS, vulnerability scanners, configuration management, and encryption.
• Experience with performing management of 24x7 Security Operation Center services, ensuring SOC SLAs are met.
• Experience with leading the development, implementation, and management of processes that ensure security countermeasures and monitoring are effective and sustained on all applicable systems.
• Experience with leading the development, implementation, and management of incident response plans and response activities.
• Experience working with log management, security monitoring, vulnerability management and security incident/event management tools
• Proven leadership, communication, issue resolution and performance management skills
• Travel requirements ~15% that would include team offsite meetings, training and presentations.
• Candidate should have strong communication skills and exhibit a professional demeanor. 
• Ability and willingness to think outside of the box to find creative and innovative solutions to reduce costs with a minimal impact on reliability. 
• Excellent project management skills, ability to work in a fast-paced and hectic work environment, ability to prioritize tasks effectively; and an ability to work seamlessly across organizational boundaries. 
• Must be flexible in outlook and attitude. 
• Excellent Presentation skills and ability to present to senior management. 
• Excellent planning/time management skills. 
• Excellent client-facing skills. 
• Very good understanding of the compromises between reliability, efficiency and cost. 

Educational Requirement:

• Bachelor’s degree or equivalent program in Computer Science, Computer Engineering, Electrical Engineering, Network Security, Information Security or Information Technology, (or equivalent work experience).

-------------------------------------------------

Job Family Group:

Technology

-------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting