Information Security Officer - AML, VP

The AML ISO (Information Security Officer) collaborates with AML teams in 50+ countries supporting over 1600 people, including three international cluster hubs across the globe, and at least 17 additional in-country hubs.

This complexity requires the ISO to be able not only to perform (both governance and technical) operational activities related to Information Security, but also have a keen understanding of regulatory risks while effectively advising AML staff - including AML senior management.

What's more, the role requires being active on the ground, supporting global business stakeholders in problem identification and solution delivery for several business lines and geographies, participating in several mgmt. meeting to present Information Security metrics focusing on issues/risks and the ways to mitigate them. Such a complex role requires respective skills to identify, report and escalate IS risks as well as being able to drive the collaboration with the number of stakeholders globally and communicate effectively.

Responsibilities:

• Escalate significant risks to the Sr ISO/Sector IS Leadership/AML Country Hub Heads for information or required actions

• Attend and participate in internal/external IS forums and risk committees when necessary

• Improve processes, by removing deficiencies and enhancing current tools that reduce an overall risk profile

• Make sure security practices/standards compliance and reduce security risks through enhancing controls and minimizing weaknesses in Citi’s applications portfolio

• AML audits are passed with a satisfactory audit rating for all IS topics

• Make certain non-compliant items are resolved through coordination with AML Business Managers and business staff

• Maintain contacts and involvement at the regional level

• Help the Chief Information Security Office (CISO) policies, standards, and initiatives development and implementation

• Aid the AML applications and keep them up-to-date with global business initiatives and guidance.

• Provide Information Security Subject Matter Expertise (SME) for AML teams.

• Increase communication efficiency with cross-sector ISOs to resolve security issues that span multiple businesses.

Requirements:

• 7-9 years experience in IS or other Risk Management activities and at least 3 IS programs including, but not limited to, Audit Reviews, IS Risk Assessment, Awareness & Training, Identity Access & Management, Data Protection, Incident Management, Vulnerability Assessment. Knowledge of key government regulations and local laws

• Understanding of the IS risks that are inherent to a business

• Working knowledge of the technology aspects of security

• Business or technical background or combination of both

• Awareness of the fundamentals of information security

• Project management experience

• Good organizational and administrative skills

• Ability to communicate effectively with seniors

• Ability to work as part of the team

• Fluency in English

• BS degree, preferably in Information Security/Computer Science/Electrical, Mechanical Engineering /Information Technology. An advanced degree in a relevant business area will be considered a positive.

• At least one Industry related certification such as Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), or Certified Information Systems Security Professional (CISSP) is highly desired 

We offer:

• Attractive conditions of employment and benefits.

• Opportunity to work in diverse and inclusive environment

• Collaboration with a high-quality team in challenging areas

• Exposure to a wide range of internal stakeholders as well as to senior management

• Great place to work

• Work with new technologies

• Many different learning opportunities

• Flexible working environment

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

------------------------------------------------------

Job Family Group:

------------------------------------------------------

Job Family:

------------------------------------------------------

Time Type:

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting