Cyber Risk Threat and Crisis Management SVP (Hybrid)
Background / Context:
This individual contributor role sits in Citi’s second line of defense (2LoD) – Risk \ Operational Risk Management (ORM) \ Technical Cyber Risk Office \ Enterprise Technical Cyber Risk Team \ Cyber Risk Threat and Crisis Management Team (CRTCM).
ORM consists of experienced professionals who provide subject matter expertise (SME) to objectively evaluate, independently oversee, and constructively advise first line of defense (1LoD) teams, governance, processes, and controls.
Focusing on the operational / “run” aspects of 1LoD operations, CRTCM serves as an authoritative body for providing independent review and assurance of 1LoD security operations, including threat intelligence, cyber / technical incident and crisis management, insider threat operations, cyber exercising / awareness. In collaboration with sister teams focused on the architecture and engineering / “build” aspects of 1LoD operations, CRTCM informs security architecture / engineering / dev ops.
Our mission is to drive comprehensive, consistent, efficient, and effective practices that identify, measure, monitor, report, and manage operational risks across the cyber domains. CRTCM recommends remediation of root causes and contributing factors to mitigate operational losses as well as to shift from people led- to process driven-programs.
This role will support an expansion of existing, 2LoD cyber incident defense and response assessment and advancement activities. Doing so will enhance Citi’s efforts to mitigate client harm as well as impact to its reputation, operations, and regulatory / legal / financial standing, in line with Citi leadership and regulatory intent.
Key responsibilities:
- Deliver as an individual contributor for independent, 2LoD reviews of 1LoD activities, requiring planning, interviewing, documentary and metric review, thematic analysis, risk-based prioritization, report drafting, editing, briefing, negotiation and stakeholder engagement, and self-management
- Serve as ORM’s embedded officer within the 1LoD Cyber Security Fusion Center and Fraud Fusion Center, assessing threat intelligence, active incident reporting, active incident responses, and training / exercises to escalate your risk-prioritized, SME considerations to ORM leadership
- Build and deliver data analytics of 1LoD qualitative and quantitative reporting (e.g., threat intelligence, cyber SIRTs, technology MIMs, fraud and loss capture system reports, etc.), identifying risks and documenting SME recommendations
- Monitor and provide assurance of risks and controls in line with Citi’s risk appetite statements and risk management framework via Citi’s Manager’s Control Assessment (MCA) process
- Assess metric / key indicator definitions and their effectiveness to identify cyber / technical risk themes, systemic security risks, insufficient controls, and gaps
- Build, nurture, and leverage personal relationships across the three lines of defense
- Influence 1LoD remediation plan designs and assure their thorough implementations
- Provide input into ORM’s methodology and deliverables to strengthen our approach and impact (ex., internal governance documentation, cross-functional engagement management, etc.)
- Provide inputs to and/or draft regulatory responses and internal reporting
- Assess changes to the regulatory, emerging technology, and threat landscapes, communicating assessments to leadership through briefings, threat bulletins, or position papers
- Provide and engage 360 feedback
Desired Experience:
- Diverse experience (8+ years) with cyber and technology operations (ex., CISO / SOC, on prem / cloud operations, incident management, red team, vulnerability assessment, cyber exercises, data loss prevention, etc.)
- 2+ years of fraud operations (preferred)
- Mix of financial services sector and consultancy experience (preferred)
- Relevant certifications (CISSP, CISM, or equivalent) (preferred)
- Risk assessments, controls design and testing, as well as corrective action planning
- Experience working with industry standards and regulations (Financial Services Sector Cybersecurity Profile, ATT&CK, ISO, NIST, PCI-DSS, etc.)
- Experiencing writing for, interfacing with, and influencing senior stakeholders
Technical proficiency in MS Office
-------------------------------------------------
Job Family Group:
Risk Management-------------------------------------------------
Job Family:
Operational Risk------------------------------------------------------
Time Type:
Full time------------------------------------------------------
Primary Location:
New York New York United States------------------------------------------------------
Primary Location Salary Range:
$170,880.00 - $256,320.00------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.
View the "EEO is the Law" poster. View the EEO is the Law Supplement.
View the EEO Policy Statement.
View the Pay Transparency Posting