CISO Risk and Control Analyst (AVP)

Will support assigned Citi Information Security Office (CISO) group through CISO Risk and Control area, helping the team the associated risks for the CISO processes, domains, and product.  This will be done through designing, implementing, and monitoring of risk and control framework.  Person will be required to work with SMEs on Internal and external Audits; drive compliance of processes, Infrastructure, and applications with Citi Policies; ensure the teams follow the issue management standards and contribute to an Effective Management Control Assessment.   

Responsibilities:

• Drive Risk and Controls team in disseminating policy awareness and assessing the impact of these including any changes for supported technology platform. This includes performing process reviews, risk- control-identification including respective KRI assignment, controls assurance. Enhance and develop process and solutions to improve efficiency and strengthen the control foundation that supports our client.

• Identify and assign key metrics (e.g. KRI/KPIs) to support effective management of operational risk including controls assurance and ensure corrective actions are raised to address gaps.

• Provide strong oversight of CAP (Corrective Action Plan) remediation activities both for audit and control issues including quality completion of Risk Exception documentation and annual renewals. Support the assigned technology platform re ensuring the remediation of corrective actions relating to both self-identified and audit issues are completed on time and with the appropriate level of quality and adherence to IBAM.

• Support assigned technology platform during internal and external audits. Assist in all interactions with audit including deliverables management, audit fieldwork, business monitoring and meetings.

• Support the risk assessment program within Citi including governance, oversight and reporting of Management Control Assessments (MCA).

• Support Risk and Controls in governance and processes around laws and regulations including Cross-border, Data Privacy and SOX programs. 

• Support other Risk & Controls staff including regional and global clients in performing ad hoc control assessment activities upon request.

• Business-partner with relevant operational, embedded, IS and other relevant parties.

• Ensure provided service achieve Customer satisfaction

• Additional ad hoc risk and compliance work.

• Complete all tasks in connection with the organization’s activity but not detailed in the current job description, charged by the direct manager, supervisor, or the functional head.

• Travel may be required as part of risk and control activities

Qualifications:

• Bachelor’s/University degree or equivalent experience

• 4+ years of relative experience

• Knowledge of Citigroup processes and systems

• Risk Management activities in global financial services organization

• Exposure to corporate strategic initiatives

• Audit activities in a mature operating environment

• Meeting tight deadlines

-------------------------------------------------

Job Family Group:

Risk Management

-------------------------------------------------

Job Family:

Business Risk & Controls

------------------------------------------------------

Time Type:

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review .

View the "" poster. View the .

View the .

View the