Application & Host Security L3 Infrastructure Lead Analyst

Citigroup Inc. Irving , TX 75061

Posted 2 months ago

Info Sec Tech Lead Analyst will be responsible for the support of multiple critical security infrastructures / applications including but not limited to Citi Secure File Transfer (CitiSFT), Tectia Manager, SCpier, Global Entitlement Warehouse and Cloud IAM Automation Services infrastructures. Duties include the oversight, planning, troubleshooting, and management of all the technology components that form the above solutions. Capacity planning for infrastructure growth, as well as coordinating large scale upgrade / migration efforts is among the responsibilities of the position. The candidate will be driving the strategy with engineering and product vendors, and overseeing the cyber security risk and compliance landscape of the supported applications.

Key Responsibilities

Daily activities include:

  • Ensure compliance of all the supported applications with Citi published standards.

  • Manage operational and security risk of all products in scope

  • Manage projects aligned to organizational goals

  • Deploy and perform testing of solutions in Development and UAT environments. At all times ensure that solutions are assessed to meet operational and risk requirements

  • Work with strategic technology and business partners to define strategy and day to day operations of critical security infrastructure Interact with strategic vendors to investigate problems and understand product functionality, influence enhancements and roadmap as required to meet organizational goals

  • Support internal and external customers in leveraging/adopting Application and Host Security services

  • Collaborate with Operations team members to assist in integration related activities.

  • Troubleshooting incidents and problems in a timely resolution as defined in SLAs

  • Ensure that all tasks - having connection with the organization's activity but not detailed in the job description - charged by the manager or superior are performed and fulfilled.

The candidate will manage projects that align with our organizational goals, as well as drive strategy with our engineering partners and vendors. Also contribute to all aspects of the application infrastructure troubleshooting, analysis, and planning. Strong problem analysis and troubleshooting skills are essential. Linux knowledge is a must along with a solid understanding of file transfer protocols (SFTP/FTPS/HTTPS), encryption protocols (PGP/TLS/SSH). Regular weekend work is expected.

Development Value

In this role you will get a chance to work in a unique environment with diverse security technology implementations. Personal development is important; all of our staff acquire and maintain industry-accredited security certifications.

Knowledge and Experience

This position requires at least 5-7 years working experience with large scale production systems. Collaboration across large diverse groups, working on complicated projects and effective communication are a must for this role.

The candidate is expected to have knowledge and experience in the majority of the below:

  • Cyber security risk and compliance

  • Security vulnerabilities (infrastructure & application)

  • Cloud Security technologies

  • Linux (Red Hat)

  • File transfer protocols (SFTP/FTPS/HTTPS)

  • Encryption protocols (PGP/TLS/SSH)

  • Web / Application Server technologies (IHS, WebSphere)

  • Experience with large scale integration and hosting environments

  • Experience working on large scale projects with tight deadlines

  • The ability to work with Engineering teams and product vendors

Knowledge or experience with any of the following technologies is an advantage:

  • Axway SecureTransport

  • Symantec PGP and Encryption Management Server

  • Oracle Database SQL

  • UNIX/Linux scripting knowledge (bash, perl)

  • Familiarity with load balancers, proxy servers and firewalls

  • Cloud security, Kubernetes, containers, mobile security

Skills

  • Proficient with Microsoft Office products including Word and Excel, Power Point, Visio

  • Excellent written and verbal communication skills

  • Must have good work ethic to follow documented process

  • Strong customer and quality-focus is a must.

  • Sound problem resolution, judgment, and decision-making skills required.

  • Excellent organizational, interpersonal, and project management skills

  • Excellent communication skills both written and oral.

  • Ability to work well individually and as part of a team

Qualifications

  • Education Level Required: Bachelor's Degree in Engineering or Mathematics
  • ITIL / CISSP certification required or willing to get certified

Grade :All Job Level

  • All Job FunctionsAll Job Level

  • All Job Functions

  • US

Time Type :


Citi is an equal opportunity and affirmative action employer.

Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.

Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity CLICK HERE.

To view the "EEO is the Law" poster CLICK HERE. To view the EEO is the Law Supplement CLICK HERE.

To view the EEO Policy Statement CLICK HERE.

To view the Pay Transparency Posting CLICK HERE.

Apply Now


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
ISE 5 Application Security Developer

Wells Fargo

Posted 3 days ago

VIEW JOBS 5/28/2020 12:00:00 AM 2020-08-26T00:00 Job Description Important Note: During the application process, ensure your contact information (email and phone number) is up to date and upload your current resume when submitting your application for consideration. To participate in some selection activities you will need to respond to an invitation. The invitation can be sent by both email and text message. In order to receive text message invitations, your profile must include a mobile phone number designated as "Personal Cell" or "Cellular" in the contact information of your application. At Wells Fargo, we want to satisfy our customers' financial needs and help them succeed financially. We're looking for talented people who will put our customers at the center of everything we do. Join our diverse and inclusive team where you'll feel valued and inspired to contribute your unique skills and experience. Help us build a better Wells Fargo. It all begins with outstanding talent. It all begins with you. Wells Fargo Technology sets IT strategy; enhances the design, development, and operations of our systems; optimizes the Wells Fargo infrastructure footprint; provides information security; and enables continuous banking access through in-store, online, ATM, and other channels to Wells Fargo's more than 70 million global customers. The Enterprise Application Security Program enhances the ability of the development organization to consistently deliver highly functional applications that are secure and resilient against attack by developing policies, processes, and tools to proactively embed security into Wells Fargo-developed applications. The person in this role is a key member of the Secure Software Group who will develop custom technology to improve application security effectiveness and efficiency in the Wells Fargo SDLC. Primary job responsibilities include: * Leading the design, development, and implementation of custom software that integrates security, software development, and risk management systems * Defining and executing strategies for security defect management in a Continuous Integration/Continuous Deployment (CI/CD) pipeline * Managing the policy, process, and tools for security defect remediation * Managing the software release process for custom-developed software, including source code management, change management, documentation, and end user notification * Supporting patching, upgrade, and business continuity testing of related products * Ensuring tools and documentation are maintained in accordance with enterprise policies and best practices * Collaboration with an offshore development team Required Qualifications * 7+ years of information security applications and systems experience * 5+ years application security vulnerability detection and mitigation experience with Open Web Application Security Project (OWASP) Top 10 and SANS Common Weakness Enumeration Top 25 * 5+ years of application development experience Desired Qualifications * Advanced Information Security technical skills and understanding of information security practices and policies * Ability to manage complex issues and develop solutions * Excellent verbal and written communication skills Other Desired Qualifications * 5+ years of C#/.NET software development experience * 3+ years of Java software development experience * 3+ years of SQL experience. T-SQL / MSSQL preferred. * Experience with The Denim Group's ThreadFix product * Knowledge of Web Application Firewall (WAF) technology * Advanced Application Security technical skills * Experience performing software development in a large enterprise environment * Experience with Agile and CI/CD technologies such as Jira, Docker, Kubernetes, Jenkins, etc. * Experience writing PowerShell * Understanding of information security practices and policies as implemented in a large enterprise environment * Experience defining and/or developing business initiatives that require integration of multiple technology systems * Knowledge and understanding of banking or financial services industry Job Expectations * Ability to work outside of regular business hours * Ability to travel up to 5% of the time Street Address CA-SF-South Of Market Area: 45 Fremont Street - San Francisco, CA MN-Minneapolis: 255 2nd Ave S - Minneapolis, MN MN-Shoreview: 1801 Parkview Dr - Shoreview, MN IA-West Des Moines: 800 S Jordan Creek Pkwy - West Des Moines, IA IA-West Des Moines: 7001 Westown Pkwy - West Des Moines, IA IL-Chicago: 150 S Wacker Dr - Chicago, IL MA-Boston: 125 High Street - Boston, MA NY-New York: 150 E 42nd St - New York, NY AZ-PHX-Northwest Phoenix: 2222 W Rose Garden Ln - Phoenix, AZ PA-Philadelphia: 101 N Independence Mall E - Philadelphia, PA NC-Raleigh: 1100 Corporate Center Dr - Raleigh, NC MO-Saint Louis: 1 N Jefferson Ave - Saint Louis, MO TX-Irving: 5000 Riverside Drive - Irving, TX TX-Plano: 4975 Preston Park Blvd - Plano, TX Disclaimer All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act. Relevant military experience is considered for veterans and transitioning service men and women. Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation. Wells Fargo Irving TX

Application & Host Security L3 Infrastructure Lead Analyst

Citigroup Inc.