Business Information Security Officer - Regional GCB Business Information Security Officer - Regional  …

Citi
in Singapore
Permanent, Full time
Last application, 10 May 21
Competitive
Citi
in Singapore
Permanent, Full time
Last application, 10 May 21
Competitive
Citi
Business Information Security Officer - Regional GCB
Join our Infosec Team now and be part of our dynamically growing Citi Team in Singapore!

Business Information Security Officer (BISO)

Within Citi, the Chief Information Security Office is driving efforts to prevent, monitor and respond to information/data breaches and cyber-attacks. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy.

As a Business Information Security Officer you will

  • Report and work with APAC/EMEA GCB Group Information Security Officer (GISO), besides collaborating with other Regional GCB BISOs, Chief Information Security Office (CISO) and Global Consumer Information Security (GC IS) teams, as needed to manage IS programs, Shared services and operations for APAC/EMEA GCB stakeholders
  • Serve as engagement manager for Information Security to the Business, Product and Operations Leader(s) within APAC/EMEA Consumer Business LOBs. In addition, this role is expected to provide Information Security advice, business risk advice and risk mitigation approaches to a variety of Regional stakeholders by engaging Global and Regional SMEs across various domains of Information Security
  • Ensure new Business initiatives and related - design and approach is reviewed from an IS perspective and support the Business to effectively implement new products and solutions in line with Citi's Information Security Policies and Standards
  • Work with APAC/EMEA GCB GISO to develop easy to use Information Security standards for the relevant GCB business, which are mandatory and which can be managed with relevant mitigating controls. The personnel must have both the aptitude and knowledge to review the policy and controls with the risk based rationale, given the nature of the business and the Products leveraged
  • Work closely with the Global CISO office and ensure alignment to various IS programs in the region as well as collaborate on new products, associated risks and its management
  • Ensure coverage and oversight of BAU operational needs, where needed for the UKC and Regional applications/vendors and also manage IS escalations effectively
  • Implement & monitor corporate IS Policies / Programs in the region in collaboration with the global IS functions, with focus on the corporate Fast Track and High Focus IS programs
  • Implement IS Programs like TPISA, ISRA etc., for APAC/EMEA Regions both in terms of program roll-out and metrics management
  • Engage in Cyber security related events, exercises to support relevant GCB stakeholders
  • Understand and implement requirements from other relevant Citigroup policies, legal and regulatory requirements that impact IS and Technology Risk Management
  • Develop a strong understanding of the business to be able to engage with the ISOs from the Technical team as well as other domains to be able to interpret technical requirements of the IS Policy and provide appropriate consultation to the Business stakeholders on the resolution options
  • Manage all relevant IS metrics specific to Regional APAC/EMEA GCB and provide early & timely detection, reporting, escalation and remediation of IS risks and outstanding issues
  • Explore and implement solutions to efficiently manage the IS programs and simplify the processes
  • Review Business processes to ensure Information is secured throughout the life cycle of a given process
  • Demonstrate a comprehensive understanding of how areas of IS controls collectively integrate in achieving business goals
  • Provide oversight to ensure that IS BAU processes and projects are completed in a timely manner
  • Monitor IS related Risk Exceptions, Corrective Action Plans and remediation efforts in response to security events, Security assessments and audits
  • Maintain up-to-date knowledge of the status of all IS programs and initiatives in the business


Ideal background
  • 8 to 10 years of solid experience in business engagement related to Information/Cyber Security, Risk manage or Control & Compliance
  • Bachelor's degree/University degree or equivalent experience - Master's degree preferred
  • Good knowledge of Consumer banking related Business processes.
  • Strong Technology knowledge with a good understanding of Technical IS controls.
  • Strong collaborative and communication skills. Highly dependable team player with ongoing commitment to excellence
  • Ability to interface with Senior management from the supported Business Units and present / articulate IS related concerns and improvements
  • Strong aptitude, detail oriented, be accountable and ensure the business trust is established as well as ability to clearly separate the difference between the Technology and Business needs of the Information Security impact from policy, issue, incident etc.
  • Organized, self-motivated and able to work independently with minimal supervision in a fast-paced environment and with tight schedules
  • Ability to influence IS team members across various countries in the APAC/EMEA region and work closely with other Line of Business ISOs and related ISO community
  • Collaborative, can-do attitude, ownership minded, strong analytical and execution capability
  • In depth knowledge of Operations & Processes, ideally across multiple geographies
  • CISA / CISM / CISSP certification(s) is a plus


Benefits
  • exposure to a broad range of investment technology businesses and products
  • competitive compensation package
  • flexible work arrangements
  • access to Citi's huge training database and subscription to external online training
  • a socially active team and communities with diverse networking opportunities


Your journey at Citi begins here - apply now!

Job Family Group:
Technology

Job Family:
Information Security

Time Type:
Full time

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi .

View the " EEO is the Law " poster. View the EEO is the Law Supplement .

View the EEO Policy Statement .

View the Pay Transparency Posting
Citi logo
More Jobs Like This
See more jobs
Close
Loading...
Loading...