Job Description

Chief Information Security Office

IS Training Lead Application Security, SSDLC, and Cloud (VP)

Citis Mission and Value Proposition explains what we do and our Citi Leadership Principles explain how we do it. Our mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. We strive to earn and maintain our clients and the publics trust by constantly adhering to the highest ethical standards and making a positive impact on the communities we serve. Our Leadership Principles is a common set of skills and expected behaviors that illustrate how our employees should work every day to be successful and strengthens our ability to execute against our strategic priorities.

Diversity is a key business imperative and a source of strength at Citi. We serve clients from every walk of life, every background and every origin. Our goal is to have our entire workforce reflect this same diversity at all levels across the organization. Citi has made it a priority to foster a culture where the best people want to work, where individuals are promoted based on merit, where we value and demand respect for others and where opportunities to develop are widely available to all. This is especially true in the CISO organization.

The Chief Information Security Office (CISO) is a growing organization with more than 3,000 employees and contract workers. CISOs purpose is to ensure that an appropriate level of cybersecurity governance, controls, and capabilities are in place to protect Citis and its clients information assets, with end-to-end accountability across the firm. Within CISO, the IS Training Teams educates Citi staff on Citis Information Security requirements, as well as the staffs responsibility to comply with those requirements. The team also deploys targeted training content to specific populations e.g., Application Developers. Additionally, the team curates and develops technical and professional development training for CISO staff.

The Training Team sits within the CISO Business Office and reports to the Training Program Manager.

Job Description:

* Manage the planning, coordination, and execution of targeted training to ensure that all appropriate personnel involved in building and securing applications are properly aware and trained on their responsibilities to protect Citi, and how to do so. This includes application developers, mainframe developers, and other technical resources involved the Secure Software Development Lifecycle (SSDLC) and Cloud technologies.

* Partner with SMEs to develop technical content and mold into a format that is optimal for learning and retention; curate and arrange live, recorded, and self-paced training courses.

* Manage the multiple types of training utilized within IS at Citi: home-grown, vendor-provided, live, recorded, etc.

* Ensure training completion statistics are properly reported so that escalations can be performed appropriately for non-compliance.

* Support related vendor relationships, including Third Party Risk Management requirements, security assessments, and performance management.

* Assist with all audit, regulatory, and client inquiries related to IS training.

* Support the CISO People Strategy, including but not limited to career progression, training curriculums, staff development, talent acquisition, staff retention, and diversity and inclusion.

Qualifications:

* Bachelor's degree or equivalent work experience.

* 6+ years of proven professional experience in a learning environment with knowledge of the training development process.

* Knowledge of Secure Software Development Lifecycle (SDLC) and Cloud technologies.

* Strong attention to detail.

* Ability to work with subject matter experts to translate technical subject matter into digestible learning content.

* Excellent written and oral communication skills.

* Ability to work independently and have a deep sense of ownership over success of projects and deliverables.

* Ability to build consensus and manage expectations among stakeholders and partners.

* Strong interpersonal skills including relationship building and conflict resolution and ability to interface with all levels of management

* Ability to deliver on unexpected/ad-hoc requests, to change direction, to be solution-driven in problem solving, and to remain productive in response to a fluctuating and dynamic work environment.

* Experience in Cyber Security Services supporting AppSec, Building Security In Maturity Model (BSIMM), Open Web Application Security Project (OWASP), and Financial Services, Technology, or Risk Management industries is a plus.

-------------------------------------------------

Job Family Group:

Technology

-------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries (Citi) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the EEO is the Law poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting