Citi

Director, Vulnerability Management Technology

Citi

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Salary

💰 $170,000 - $300,000 per year

Job Level

Lead

Tech Stack

Cyber SecurityServiceNow

About the role

  • Be an active part of our Cybersecurity Technology leadership team helping to develop vision and strategy for all of Cybersecurity Technology and partnering with peers to deliver excellence as a broader organization.
  • Manage and mentor the people leaders in the Vulnerability Management Technology organization to help them develop the necessary technical and leadership skills to continue to grow their careers, provide effective succession, and deliver on their expectations.
  • Develop and maintain a culture of transparency and trust that allows our technology professionals to thrive.
  • Negotiate with senior leaders across functions to assure that the needs of the team are effectively prioritized against other critical work.
  • Manage a department of multiple teams from various technology disciplines, overseeing planning, performance management/counseling, pay decisions, budgets, and headcount.
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of others and create accountability with those who fail to maintain these standards.
  • Lay out a clear vision for Vulnerability Management Technology in partnership with the Vulnerability Management Program owners in the Cyber Security Operations team.
  • Develop an effective strategy to implement the Vulnerability Management Technology vision taking with clear understanding of the business value realization, roadmap, costs, and timeline.
  • Ensure that Citi has a plan for and makes appropriate strategic choices in onboarding, managing and exiting of vendors from the product portfolio.
  • Work with the assigned Enterprise Security Architect, vendors and engineers to develop and document an effective architecture that aligns with Citi’s architecture principles and overall Enterprise Security Architecture.
  • Define and document the necessary integrations across other technology domains.
  • Drive architecture decisions for resiliency, latency, performance, and cost.
  • Build a stakeholder advisory board to help prioritize features and capabilities in the Vulnerability Management Technology roadmap.
  • Define, develop, measure, and publish clear Service Level Objectives for agreed measures of success for the program and underlying technologies.
  • Measure the end user satisfaction of Vulnerability Management Technology and share with the stakeholder advisory board to help define areas of needed improvement.
  • Develop a clear financial model that assess the full range of costs of Vulnerability Management Technology including people, software, and infrastructure to help drive efficiency and investment discussions.
  • Manage a team of engineers, vendors, and partners to deliver on the Vulnerability Management Technology roadmap assuring compliance to Citi’s software development lifecycle expectations.
  • Manage the collaboration with partner organizations assuring effective integration of any inputs and outputs.
  • Manage an efficient team of technology operations professionals to assure stability, resilience, capacity, and quick resolution of incidents for Vulnerability Management Technology.
  • Implement an effective problem management process to identify recurring issues or potential upcoming issues to assure the long-term effectiveness of the environment.
  • Assure the compliance of the Vulnerability Management Technology environment to Citi’s requirements including things like EOVS, key management, change management, issue management, etc.
  • Work with internal risk and audit teams to provide insight and effective review of the environment assuring self-identification of issues where possible, and addressing any feedback.
  • Engage with our global regulators to show compliance to regulatory expectations and to explain our processes and tooling where necessary.

Requirements

  • 15+ years of relevant experience in an Engineering role with extensive experience in business, functional and people management.
  • Experience working in Financial Services or a large complex and/or global environment
  • Experience in cybersecurity with direct vulnerability management experience
  • Project Management experience
  • ServiceNow VR or Qualys experience is preferred
  • Consistently demonstrates clear and concise written and verbal communication
  • Comprehensive knowledge of design metrics, analytics tools, benchmarking activities and related reporting to identify best practices
  • Demonstrated analytic/diagnostic skills
  • Ability to work in a matrix environment and partner with virtual teams
  • Ability to work independently, multi-task, and take ownership of various parts of a project or initiative
  • Ability to work under pressure and manage to tight deadlines or unexpected changes in expectations or requirements
  • Proven track record of operational process changes and improvement
  • Bachelor’s degree/University degree or equivalent experience
  • Master’s degree preferred