Role: The Information Security Officer
Overview of the Role:
The Information Security Officer (ISO) are subject matter experts for business, functions and technology for all Information security activities including but not limited to oversight and management of the information security risk globally (and not specific to a geography). The ISO will work closely with Business, Functions & Technology and the overall CISO community to oversee and monitor adherence with Citi IS Policy and Standards, manage risk and provide advise on Information Security.
What you will do:
Work directly with business, functions and technology units and relevant stakeholders to facilitate/ perform Citi’s IS risk assessment and risk management processes in order to protect information assets.
Collaborate with business and technology management to drive the information security program and information risk management activities.
Provide strategic risk guidance for business and technology projects, including the evaluation and recommendation of security controls and corrective actions to mitigate or remediate risks.
Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company’s reputation.
Participate/provide, as required, IS awareness training programs for employees, contractors and approved system users.
Facilitate compliance with all Information Security policies, standards and regulations / directives as mandated by Global IS Organization.
Provide oversight of Information Security Assessments across applications, infrastructure, and business process.
Ensure non-compliant items are resolved through coordination with Business Manager and business staff.
Your profile:
+5 years of relevant experience.
Bachelor’s degree/University degree or equivalent experience.
Consistently demonstrates clear and concise written and verbal communication.
Proven influencing and relationship management skills.
Fluent English.
Relevant certification on information security such as CISA, CISM, CRISC or CISSP.
Proven analytical skills.
Experience of working in financial industry.
Strong knowledge of cyber and information security controls.
Risk management skills and experience in identifying information security risk mitigants.
Location: US
Resumes to subramaniam@isss.org.uk
mention the role in the email subject