Info Sec Tech Sr Lead Analyst

Citibank, N.A. seeks an Information Security Tech Sr Lead Analyst for its Fort Lauderdale, Florida location.

Duties: Perform IT vulnerability assessments, penetration testing and threat modeling for Citi applications including Web, Mobile, Thick Client, and APIs. Manually identify, research, validate, and exploit known and unknown application security vulnerabilities. Conduct offensive information security including white-box application reviews, dynamic analysis, secure source code review, programming, networking, operating systems, and databases. Perform mobile application testing including intercepting servers, bypassing validation, reverse engineering, and analyzing data storage in mobile devices. Devise information security controls and remediations of vulnerabilities. Drive remediation by outlining a defense-in-depth approach to stakeholders and provide solutions to developers on effective security controls and counter measures. Use technical writing and presentation skills to report and articulate the vulnerability assessment results to technical and non-technical audiences. Contribute to review of internal processes and activities. Assist in identifying opportunities for improvement and automation. Analyze and research new vulnerabilities and exploits. Develop proof of concepts to characterize exploitability and impact. A telecommuting/hybrid work schedule may be permitted within a commutable distance from the worksite, in accordance with Citi policies and protocols.

Requirements: Requires a Bachelor’s degree, or foreign equivalent, in Computer Science, Information Technology, Information Security or related field and 5 years of progressive, post-baccalaureate experience as an Information Security Analyst, Information Security Engineer, Software Engineer, Software Developer, Technical Lead, or related position involving information security vulnerability assessment, secure coding practice, source code audit, and remediation efforts. 5 years of experience must include: Application vulnerability assessments; Secure source code review; Mobile application testing including intercepting servers, bypassing validation by creating custom script (frida, cycript) to hook mobile application function, reverse engineering, and analyzing data storage in mobile devices; Networking, operating systems, and databases; Programming languages Java, C, and C#; Proof of concept development; Verbal and written communication on security issues; At least 4 years of experience must include: Penetration testing and threat modeling; Offensive information security including white-box application reviews, dynamic analysis; Devising information security controls and remediations of vulnerabilities; Research of new vulnerabilities and threats; and Financial services industry experience. Applicants submit resumes at https://jobs.citi.com/. Please reference Job ID #25868262. EO Employer.

Wage Range:                $176,000 to $201,014.21

Job Family Group:        Technology

Job Family:                  Information Security

------------------------------------------------------

Job Family Group:

------------------------------------------------------

Job Family:

------------------------------------------------------

Time Type:

------------------------------------------------------

Primary Location:

------------------------------------------------------

Primary Location Full Time Salary Range:

In addition to salary, Citi’s offerings may also include, for eligible employees, discretionary and formulaic incentive and retention awards. Citi offers competitive employee benefits, including: medical, dental & vision coverage; 401(k); life, accident, and disability insurance; and wellness programs. Citi also offers paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays. For additional information regarding Citi employee benefits, please visit citibenefits.com. Available offerings may vary by jurisdiction, job level, and date of hire.

------------------------------------------------------

Anticipated Posting Close Date:

------------------------------------------------------

Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.

If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View Citi’s EEO Policy Statement and the Know Your Rights poster.