Cybersecurity Incident Response Analyst - New York, United States - Citi

Citi

Verified Company

New York, United States

2 weeks ago

Posted by:

Mark Lane

beBee recruiter

Description

About Citi:

Citi is a leading global bank with 200 million customer accounts across 160 countries and jurisdictions.

The bank offers a wide range of financial products and services to consumers, corporations, governments, and institutions including banking, credit, investment banking, securities brokerage, transaction services, and wealth management.

Committed to creating economic value responsibly and in the best interests of clients, Citi is a financial institution that impacts every corner of the world and all sectors of daily life through its Enterprise Operations & Technology teams.

These teams play a crucial role akin to that of leading tech companies in fulfilling the mission of the bank.

From ensuring the bank's security to managing resources globally, providing technical tools for success, designing digital architecture, and delivering top-notch customer experiences, technology solutions form the core of Citi's operations.

The bank strives to enhance client and partner experiences by offering secure, reliable, and efficient services.

About Our Team:

The Chief Information Security Office (CISO) at Citi comprises highly skilled professionals dedicated to safeguarding the bank's clients, revenue, employees, and data.

The team manages information security as a comprehensive program with a clear mandate and accountability.

Aligned with modern control frameworks and the firm's enterprise architecture, the mission of the CISO is deeply integrated into various sectors and functions.

As a
_Cybersecurity Incident Response Analyst_, you will work within the
Cyber Security Fusion Center (CSFC), leading efforts to prepare for, respond to, and recover from cyber threats and attacks across the organization.

This role focuses on ensuring global readiness to tackle cyber incidents arising from technology or cyber-related events.

Responsibilities include actively monitoring emerging incidents, conducting cyber incident exercises, and maintaining procedures and runbooks to enable a smooth response and recovery from cyber events.

The Cybersecurity Incident Response Analyst at CSFC operates a virtual war room and incident management function during events to ensure timely coordination, mitigation, and recovery.

The role serves as a central source of information and oversees incident communication and notifications.

We seek proactive and inquisitive individuals to join our team in running exercises and activities that challenge our senior leaders to uphold the safety of Citi and its customers.

This team comprises full-time employees strategically located in regional offices to provide global coverage.

Responsibilities:

Executes under crisis conditions with a sense of purpose regardless of the audience's seniority
Monitors various information sources such as SIRTS, intelligence updates, major incident channels, and external news to assess events impacting Citi, clients, or third parties
Facilitates coordination, communication, and escalation responses to major cyber incidents affecting businesses, third parties, vendors, and clients
Functions as a liaison between the CISO, Business, and Third-Party oversight teams, ensuring swift escalation of cyber events and simplifying technical details for non-experts
Leads the design, planning, and execution of global cyber incident exercises
Collaborates with country leadership, global business leaders, and internal teams to enhance exercise scope and incorporate innovations
Analyzes and presents team outcomes to senior leadership, regulatory bodies, and internal stakeholders

Qualifications:

6+ years of relevant experience
Extensive experience engaging with Senior Stakeholders
Incident/Crisis management experience, including Ownership, Assessment, Escalation/Notification, Business Impact Analysis, Resolution Tracking, and Senior escalations
Experience in exercise design, planning, and execution
Excellent written and verbal communication skills essential for influencing and negotiating with senior leaders across functions, including external parties
Understanding of Project Management Standards**
Desired professional qualifications: ISC2 Certified in Cybersecurity, Comptia Security+

Education:

Bachelor's degree or equivalent experience

Job Family Group:

Technology

Job Family:

Information Security

Time Type:

Full time

Primary Location:

New York, United States

- **Primary Location Full Time