The Info Sec Tech Lead Analyst is a senior level professional position responsible for driving efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

Responsibilities:

• Identify opportunities to automate and standardize information security controls and for the supported groups
• Resolve any vulnerabilities or issues detected in an application or infrastructure
• Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
• Review and validate automated testing results and prioritize actions that resolve issues based on overall risk
• Scan and analyze applications with automated tools, and perform manual testing if necessary
• Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions
• Direct the development and delivery of secure solutions by coordinating with business and technical contacts
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

Qualifications:

• 6-10 years of relevant experience
• Advanced proficiency with Microsoft Office tools and software
• Consistently demonstrates clear and concise written and verbal communication
• Proven influencing and relationship management skills
• Proven analytical skills

Education:

• Bachelor's degree/University degree or equivalent experience
• Master's degree preferred

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

Job Description:

Within Citi, the Security Analytics Services Team focus on technology operations and end to end services for the applications to deliver best in class tools and services to the Security Operations Center.

In this role, you will design, support, engineer solutions that better align to Security Operations Center, Fusion Center and Intelligence Center following Citi standards and delivering according to the business requirements. You will work on multiple Operating Systems (windows and Linux), scripting, packaging, big data platforms and management of large scape application clusters. Key area of focus is Splunk.

Responsibilities:

• Primary responsibility will be on technology operations, end to end services including product certification, engineering, design, following internal Citi standards
• Troubleshooting of the infrastructure, develop and support monitoring tools, Vulnerability and Threat Management lifecycle, engage with business to understand use cases, develop and deploy dashboards and product integration
• Prepare documentation of processes and procedures.
• Follow the Technology Development Life Cycle in the development of all security tools.
• Ensure security product(s) meet or exceed Citi internal and regulatory requirements.
• Create automation scripts to reduce manual reporting tasks.

Qualifications:

• 6+ years experience in similar Splunk engineering role
• Must have strong Linux skills to be able to troubleshoot and support our internal applications
• Scripting in Bash or Python is required
• Be able to write and troubleshoot complex Regular Expressions (Regex)
• Experience building Splunk applications
• Good understanding of automation tools such as Ansible
• Proven experience on deployment and maintaining large Splunk clusters
• Splunk admin or Architect certification are strong recommended. It will be required after joining the team
• Linux (RHEL) certification is a plus
• CISSP certification is a plus.
• Must be a self-starter and be able to manage their time against deliverables
• Proficient with Microsoft Office products including Visio, Word and Excel Advanced written and verbal communication skills

Job Family Group:
Technology

Job Family:
Information Security

Time Type:
Full time

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting

Effective November 1, 2021, Citi requires that all successful applicants for positions located in the United States or Puerto Rico be fully vaccinated against COVID-19 as a condition of employment and provide proof of such vaccination prior to commencement of employment.