About Citi:Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management. Our core activities are safeguarding assets, lending money, making payments and accessing the capital markets on behalf of our clients.Citi’s Mission and Value Propositionexplains what we do and Citi Leadership Standards explain how we do it. Our mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. We strive to earn and maintain our clients’ and the public’s trust by constantly adhering to the highest ethical standards and making a positive impact on the communities we serve. Our Leadership Standards is a common set of skills and expected behaviors that illustrate how our employees should work every day to be successful and strengthens our ability to execute against our strategic priorities.Diversity is a key business imperative and a source of strength at Citi. We serve clients from every walk of life, every background and every origin. Our goal is to have our workforce reflect this same diversity at all levels. Citi has made it a priority to foster a culture where the best people want to work, where individuals are promoted based on merit, where we value and demand respect for others and where opportunities to develop are widely available to all.Description:This position is a critical role for the build out of the new second line CyberRisk Management Function targeting the high level, high impact Cyber relatedthreats to Citi's Franchise and Clients with the aim of enhancing the effectiveness of managing operationalrisks across products, business lines and regions. This will be a compact team assessing the comprehensiveness and effectiveness of Citi’s current first line Cyber defences. The Cyber Risk Threat Analysis (CRTA) VP will be assigned to the Cyber Risk Threat Management Group,responsible for the evaluation, development, publication and briefing of multi-source analyticalreports to introduce an independent viewpoint oncyberthreat issues impacting Citi. The CRTA VP will be primarilyresponsible for producing intelligencereports, forecasts and scenarios. The CRTA VP will also leverage subject matter expertise in intelligencetradecraft to independently challenge criteria, tools and methodologies used forthreat intelligence andthreat analysis. The CRTA VP will producethreat analysisreports including but not limited to the following:
- Independent intelligence and threat assessments that support second line Independent Assessments and Credible Challenges
- Strategic products and position papers on key current and emerging threats.
- Threat scenario development
- Products that focus on, alternative analysis on threat issues, post mortem threat analysis, and intelligence gap/collection analysis.
- Evaluate and produce cyberthreat analysis reports within the Cyber Risk organization to introduce an independent viewpoint on cyberthreats impacting Citi.
- Manage internal projects on cyberthreat issues that support a variety of participants and stakeholders measuring the effectiveness and comprehensiveness of Citi’s first line Cyber defenses.
- Demonstrate a strong technical understanding of cyber and technology threats with a direct or indirect impact to the global Citi franchise.
- Examine tactics, techniques, and procedures of threat actors and control environments of targeted entities to assess the cyberrisk to Citi, clients, and partners.
- Develop and deliver senior executive intelligence briefings on relevant cyberthreat issues.
- Build partnerships and develop working-level external information sharing relationships with other members of the financial sector, government agencies, and corporate intelligence entities.
- Bachelor’s degree in computer science, engineering, cybersecurity, international affairs, or intelligence-related field or other concentrations of study combined with relevant work experience. Work experience in the Risk Management or Information Security domain preferred.
- 5-7 years of experience working in the intelligence or information security field preferred. Demonstrates working technical knowledge of Cyber Security, Data Protection, IT Risk or IT Audit/Compliance.
- Previous US Intelligence Community or Military Intelligence background a plus.
- Experience addressing cyber, geopolitical, and technology threat issues required. Working understanding of technical control environments.
- Technical certifications including GIAC, CEH, CISM, CISA or CISSP preferred.
- Ability to discern and communicate emerging or shifting patterns in cyberthreat actor behavior at the strategic level. Deep understanding of cyberthreat actor capabilities and motivations.
- Strong written communication and presentation skills.
- Maintains an understanding of the intelligence cycle and tradecraft standards.