Epicareer Might not Working Properly
Learn More
Please Turn on your JavaScript

Epicareer might not working properly because your browser javascript is turned off.

What is JavaScript?

JavaScript is like the magic behind making websites interactive. Basically, it makes Epicareer more enjoyable and engaging.
How do i turn this on?
Find tutorial for your browser below :
  1. Make sure the webpage is open.
  2. In the Safari app on your Mac, choose Safari > Preferences, then click Security.
  3. Make sure the Enable JavaScript checkbox is selected.
  4. Click Websites.
  5. On the left, click Content Blockers.
  6. Make sure Off is chosen in the pop-up menu next to the website.
  7. On the left, click Pop-up Windows.
  8. Make sure Allow is chosen in the pop-up menu next to the website.
Visit Site here
  1. Open Chrome on your computer.
  2. Click. then Settings.
  3. Click Privacy and Security.
  4. Click Site settings.
  5. Click JavaScript.
  6. Select Sites can use Javascript.
Visit Site here
  1. If you're running Windows OS, in the Firefox window, click Tools > Options.
  2. Tip: If you're running Mac OS, click the Firefox drop-down list > Preferences.
  3. On the Content tab, click the Enable JavaScript check box.
Visit Site here
  1. Click the "Settings and more" icon at the top right of the Edge browser window.
  2. Click Settings.
  3. From the Settings menu, click Cookies and site permissions.
  4. Scroll down and click on JavaScript.
  5. In the JavaScript window, toggle the slider to "on" or "allowed."
  6. Close the Settings tab.
  7. Refresh the page.
Visit Site here
  1. Go to Settings.
  2. Click Advanced in the left sidebar, and click Privacy & security.
  3. Under Privacy and security, click Site settings.
  4. Click JavaScript.
  5. At the top, turn on or off Allowed (recommended).
Visit Site here
Any Question? Contact us
logo
Jobs or company...

Info Security Tech Lead Analyst (Web/Mobile/API security) VP / Hybrid

Salary undisclosed
Checking job availability...
Original
Simplified

This is a senior level professional position responsible for coordinating and interfacing directly with our internal clients who are seeking guidance on penetration testing engagements that will be conducted with our third-party penetration testing vendors. This role will also require the candidate to interface and engage with our third-party penetration testing vendors and serve as a liaison to address testing challenges, drive vulnerability discussions with Citi Stakeholders, drive operational health of the pen testing vendors along with their adherence to Citi procedures, analyze vulnerability trends to better improve the root cause model of existing testing mechanisms and maintain the overall security hygiene for the organization. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

Responsibilities:

Serve internal clients by providing information related to ongoing vulnerability assessments.

  • Liaise and engage with third-party vendor management activities

  • Be the central liaison between businesses and the external pen testing team/vendor, acting as a collaborator to provide updates to both businesses and the third-party vendors as it relates to the pen testing engagement.

  • Knowledge of OWASP top 10 and SANs top 25

  • Act as an application security subject matter expert to assist both businesses and third party vendors during vulnerability discussions.

  • Focus on and drive quality as it relates to the information submitted by the businesses who are requesting VA services and ensuring that the provided information is accurate and complete.

  • Focus on maintaining a high level of operational oversight with all vendors and ongoing pen testing activities in order to ensure that engagements are progressing forward with the right level of attention.

  • Have strong communication skills in order to effectively set expectations to our internal clients and ensure that they have a clear understanding of what is their responsibility in this process and what may be pending resolution.

  • Have strong technical writing and presentation skills to articulate the penetration testing process end-to-end to any audience.

  • Have strong reporting and research skills to create and execute reports that highlight trends and potential opportunities for enhanced oversight activities.

  • Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement and automation.

  • Identify opportunities to automate and standardize information security controls and for the supported groups

  • Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions

  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.


Qualifications:

  • Minimum of 5 years of relevant experience in Information Security and/or relevant Technology role.

  • Advanced proficiency with Microsoft Office tools and software

  • Consistently demonstrates clear and concise written and verbal communication

  • Proven influencing and relationship management skills

  • Proven analytical skills

Plus:

  • Familiarity or hands-on experience in application security testing

  • Basic understanding of Web/ Mobile / API security and relevant testing tools

  • Relevant Certifications is a plus not a requirement: GPEN, GWAPT, GMOB, GWEB

Education:

  • Bachelor’s degree/University degree or equivalent experience

  • Master’s degree preferred


This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.

------------------------------------------------------

Job Family Group:

Technology

------------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review .

View the "" poster. View the .

View the .

View the