ISO Sr. Analyst C12 - Mexico City

The Information Security Officer is a trained professional, capable of providing the business advice, expert knowledge, guidance and risk analysis on the different Infomation and Cyber Security programs, promoting a sound and safe technological environment and ensuring threats are properly identified and mitigated.

Responsibilities:

• Address security issues identified in the various information security programs
• Review and address issues identified within various Information Security (IS) programs and ensure all IS issues related to Internal Audit, and External Auditors are closed by their original target date
• Improve the efficacy of governance processes by identifying risks, monitoring controls, and remediating issues
• Establish cross-sector working relationships and complete weekly awareness discussions with local team to efficiently tackle security issues
• Ensure risk exceptions are raised, registered and closed on a timely basis and communicate updates and changes to the global standards
• Complete Risk Assessment process, including completing accurate inventory reporting, data classification, threat analysis, and action plans
• Test and validate that the business complies with applicable IS requirements; develop and implement IS policies and procedures
• Determine and validate appropriate level of controls are being implemented to safeguard sensitive data
• Develop Corrective Action Plans for all Information Security-related gaps and approve all closures through reviewing evidence to ensure each closure meets Citi Requirements
• Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.

Qualifications:

• 5-8 years of relevant experience
• Proficient in interpreting and applying policies, standards and procedures
• Consistently demonstrates clear and concise written and verbal communication
• Proven influencing and relationship management skills
• Proven analytical skills
• Fluent English 85% general minimum

Education:

• Bachelor’s degree/University degree or equivalent experience

Among addional desired skills are:

• Bachelor degree in IT, Computing, Cybersecurity, Computer Science or equivalent.
• Professional certification in Information Security and/or Cybersecurity (e.g. ISO27001, CISSP, CISM, CISA, etc) desirable.
• Fluent English skills (conversational and in writing), B2 or higher.
• Technical knowledge and advanced proficiency in: Clould Environments, Operating Systems, Middleware, Web platforms, Databases, Programming Languages, APIs, Network, Hosting, etc.
• Data analytics experience,supported by commercial software
• Strong presentation skills.
• Experience on IT Security, Risk Management, Third Party Risk Management and Internal Control.
• Knowledge of regulations and standards applicable in Financial sector in Mexico (e.g. BANXICO, CNBV, etc).

***Please note that this is a hybrid role requiring office presence at least 3 days per week.

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

------------------------------------------------------

Job Family Group:

------------------------------------------------------

Job Family:

------------------------------------------------------

Time Type:

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting