Overview

Discover your future at CitiWorking at Citi is far more than just a job. A career with us means joining a team of more than 230,000 dedicated people from around the globe. At Citi, you’ll have the opportunity to grow your career, give back to your community and make a real impact.Job Overview

Engineer the future of global finance. At Citi, our Tech team doesn’t just support finance – we are helping to redefine it. Every day, $5 trillion crosses through our network. We do business in 180+ countries operating at a scale few can match. From deploying advanced AI to helping shape global markets, we build systems that matter. Look to join a team where your work helps influence economies, your ideas can drive innovation and outcomes, and your growth is backed by mentorship, continuous learning and flexibility with potential hybrid work opportunities. Help solve real-world challenges that touch millions and get the opportunity to build the future of finance with Citi Tech.Description

The position is a cross-functional role that will be responsible for various Application Security program initiatives. The position reports directly to the Application Security Program Director. The successful candidate must be an individual who understands modern software development trends, understands engineering-led software security practices, and keeps up with the evolving cyber security threat landscape.Key Responsibilities

Establish/manage multiple security programs that support the security testing requirements at the bankForging and maintaining strong working relationships with development functions/teams, product delivery teams, project management, third party management, enterprise architecture, audit teams, etc.Participate in security and technology strategic planning to ensure identified risk governance is incorporated into the CISO enterprise strategy.In partnership with business sectors, run delegate action groups to provide recommendations to strengthen development processes and security testingAppropriately assess risk and provide software security advice when business decisions are madeInterface with Application Security Program Team to oversee Program Projects and Initiatives and make strategic recommendations to senior manager on standards and policy changesQualifications

Experience or deep knowledge of key activities within software security group such Threat Modeling / Application Risk Assessment, Vulnerability Assessments, Governance and Metrics, Training, etc.Pre-requisites for this position are a Bachelor\''s Degree with 4 - 6 years\'' experience in web application development or application code reviewExperience must include experience as a technical lead or managerKnowledge of cloud computing concepts and DevOps tools (OpenShift, Kubernetes, Docker, Chef, etc)Experience using or testing cloud platforms (AWS, Google, Azure, etc) and security in/of the cloudUnderstanding of security, web-based and infrastructure vulnerabilities is requiredExperience in source code management,build and deployment technologies such as RLM, Ueploy, Jenkins, Artifactory, Maven, GitHub, etcExperience conducting vulnerability assessments and articulating security issues to technical and non-technical audience.Understanding of Snyk, Checkmarx, CDXGen, Dependency Track, Fortify, GitHub Adcance Security, Sonatype or Black Duck platform is a plus.Knowledge of tools and processes used to expose common vulnerabilities and implement countermeasures is expected.Excellent communication skills (written and verbal) and the ability to communicate with all levels of staff and management are also essential.Demonstrated knowledge of recognized security industry standards and leading practices (e.g., FFIEC, NIST, C2M2, ISO)Relevant professional certifications: GIAC, CISA, CISM, CRISC, CISSP or equivalent desiredEducation

Bachelor’s degree/University degree or equivalent experienceMaster’s degree preferredWhat we’ll provide you

By joining Citi London, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (which is annually reviewed), and enjoy a whole host of additional benefits such as:27 days annual leave (plus bank holidays)A discretionary annual performance related bonusPrivate Medical Care and Life InsuranceEmployee Assistance ProgramPension PlanPaid Parental LeaveSpecial discounts for employees, family, and friendsAccess to an array of learning and development resourcesVisit our Global Benefits page to learn more.Alongside these benefits Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self, every day. We want the best talent around the world to be energized to join us, motivated to stay and empowered to thrive.Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi. View Citi’s EEO Policy Statement and the Know Your Rights poster.

#J-18808-Ljbffr