Vacancy expired!
Citi's SIRT Incident Management Team is a global team that manages all information security incidents for Citigroup and its affiliates with team members around the globe. As a SIRT Incident Handler, you will report into the SIRT Incident Management Team and work closely with other internal teams to provide oversight of emergency response to information security incidents to quickly identify, respond, and mitigate the risk from Information Security incidents that impact the firm. This position will report to the SIRT Incident Management Tier 1 Team Manager.
Key Responsibilities:- Review and analyze IS Incidents to identify those that pose a significant risk to the Citigroup franchise and its affiliates, and escalating those IS Incidents in accordance with Citigroup policy and procedures
- Review the details of all reported incidents to determine whether they constitute an IS Incident
- Review and verifying the accuracy of the reported severity level of an incident
- Provide technical subject matter expertise to mitigating risk to impacted parties throughout an incident
- Work with internal and external constituents to minimize risks associated with IS Incidents, including convening appropriate Subject Matter Experts to assist investigations and ensuring that all relevant facts of the IS Incident are properly communicated and reflected in the SIM Application
- Track follow-up documentation related to an IS Incident, including Root Cause Analyses (RCAs), Lessons Learned and SIRT Remediation Plans throughout the incident lifecycle till closure
- Ensuring that SIRT metrics are available to senior management at the business and corporate level
- Required to be available for off hour support as needed.
- Bachelor's Degree or equivalent work experience
- 2 or more years working in IT / IT security, preferably a 24x7 operational environment, or educational equivalent
- Experience in security aspects of multiple platforms, operating systems, software, communications and network protocols or an equivalent combination of education and work experience
- Experience with Databases, SQL knowledge is a plus
- Experience writing Perl, Python, scripting, programming, or other languages is a plus
- Certified Information Systems Security Professional (CISSP) certified / qualified or ability to actively work towards obtaining certification
- Consistently demonstrates clear and concise written and verbal communication
- Proven influencing and relationship management skills
- Proven analytical skills
- Understanding of networking protocols and infrastructure designs; including routing, firewall functionality, host and network intrusion detection / prevention systems, encryption, load balancing, and other network protocols
- Understanding of Application and Database security; including Application security design, application intra communication protocols, application end-to-end communications, Application authentication protocols, database storage technologies.
- Excellent communication skills, analytical ability, strong judgment and leadership skills, Project management skills, and the ability to work effectively with clients and IT management and staffs
- Ability to communicate technical issues to technical and non-technical business representatives
- Dedicated and self-driven desire to research current information security landscape
Vacancy expired!