Job Details


New Castle, Delaware, United States

The successful candidate will demonstrate technical training and experience, especially regarding application architecture and infrastructure across various channels, as well as a good understanding of Information Security practices and method related to data privacy/classifications, authentication, biometrics and various data protection methods. Candidate should have a strong track record of developing strong business relationships, with strong presentation and communication skills to converse and breakdown an application into its core functionalities and processes. The individual should be detailed oriented, with excellent follow-up skills. This role reports to the Global Program Owner, and is expected to interface across the entire Citi IT environment (including development, infrastructure/engineering, and risk management).


  • Support Federal Financial Institutions Examinations Council (FFIEC) compliance projects as required including managing projects, interacting with application managers, ISOs and LOBs to communicate requirements, perform application risk assessments and track compliance.
  • Work in a cross-functional role to communicate status, track issues and provide ASM reporting.
  • Drive application security assessments by analyzing the current application architecture to determine the nature of risk and requirements for onboarding authentication tools.
  • Based on the assessment advice the application team on the controls necessary to achieve compliance.
  • As SME provide input for resolution of technical issues during authentication assessment and onboarding of in-scope applications.
  • Responsible for audit related deliverables and work towards governing the Standards and Process documents.
  • Possess knowledge of cloud-based architecture to do security assessments for the applications based on Cloud.
  • Needs to be well versed with various authentication methods used in the financial industry and can adapt to the evolving technologies of authentication.
  • Coordinate with various teams to be clarify or review for additional clarification or updated status;
  • Enforce program policies on scoping parameters, testing requirements and remediation timeframes.
  • Improve data quality end-to-end within the ASM process by identifying and spearheading areas of improvement (ie automation opportunities, documentation requirements, consolidating inventories).
  • Prioritize program deliverables and manage day-to-day team workflow.
  • Select and tailor approaches, methods and tools to support the program and related sub-projects.
  • Work on Monthly Metrics, Reports for Senior Management,Prepare slides/MIS for the Committee reviews as well as for audit or regulatory reviews;
  • Knowledge of Archer - Extensive use to manage status of compliance, actions, deliverables and to manager the queue for follow-up tasks;
  • Other ad-hoc projects as needed.


  • Bachelors degree (in Computer Technology or related field). or equivalent work experience
  • 6+ years of experience in IT Risk Management/Information Security especially performing IT risk assessments for web applications/infrastructure
  • 3+ years of experience in IT Program and Security Management
  • 2+ years of experience in management reporting and metrics
  • Understanding of Software Development Lifecycle (SDLC) including Agile Methodology and Cloud sourcing
  • Understanding of FFIEC (Authentication in an Internet Banking Environment) guideline
  • Financial services experience is strongly preferred; including familiarity with FFIEC guidelines (Authentication in an Internet Banking Environment)
  • Strong MS Excel and PowerPoint skills.
  • Financial services experience strongly preferred
  • Certification preferred eg CISSP, CISM, CISA
  • Knowledge in API's/Micro Services preferred
  • Experience in the use of Archer skills preferred
  • Bilingual in Spanish preferred
  • A confident, dynamic individual capable of defining, building, and Matrix managing a global program across technology and business organizations in a constantly evolving global enterprise.

Send application

Mail this job to me so I can apply later

Apply With CV

You are not logged in. If you have an account, log in to your account. If you do not have an account, why not sign up? It only takes a minute!

latest videos

Upcoming Events