Email Security Lead Analyst

As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients’ best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do. We keep the bank safe and provide the technical tools our workers need to be successful. We design our digital architecture and ensure our platforms provide a first-class customer experience. Our operations teams manage risk, resources, and program management. We focus on enterprise resiliency and business continuity. We develop, coordinate, and execute strategic operational plans. Essentially, Enterprise Operations & Technology re-engineers client and partner processes to deliver excellence through secure, reliable, and controlled services.

Trust is part of our DNA at Citi. As such, we take safeguarding our customer data very seriously. The Chief Information Security Office (CISO) is made up of deeply dedicated and talented colleagues who work together to ensure the safety of Citi’s and our clients’ assets and information. We manage information security as an end-to-end program – one with a clear mandate and accountability. Our mission is to continually execute and enhance a global security program that is fully anchored to modern control and security frameworks, fully aligned with the technology of the firm, threat-focused and data-driven, and deeply integrated across all Citi businesses globally.

Being talent-driven, we are focused on attracting, developing, and retaining diverse and inclusive talent with a high technical skill level. As a member of our team we will provide you with career development opportunities at all stages of your career. Our employees model a passion for protecting Citi and our clients and believe in treating others with dignity and respect.

Our commitment to diversity includes a workforce that represents the clients we serve globally from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We’ll enable growth and progress together.

The Email Security Lead Analyst is responsible for providing expert support and leadership to email security and brand protection functions, projects, and programs. They will be responsible for interactions with vendors, employees, and stakeholders of the team’s services. The Sr. Analyst will provide operational support, intelligence gathering, project and program management, analysis and report development, publishing, and briefing. Besides managing aspects of the day-to-day function of these programs, he or she will partner with various cyber and information security teams to enhance current solutions and find new solutions to stay ahead of the ever-changing cyber threat. The position will require substantial collaboration with other members of the team and across other Cyber Security Operations teams ensuring appropriate email security support and solutions are triaged appropriately

Responsibilities:

• Provide expertise and experience to existing and future functions and projects focused on email threats and controls.
• Actively monitor and research cyber threats with a direct or indirect impact to the Citi brand
• Analyze and provide oversight of analysis of email threats and controls
• Provide leadership, solution design, and hands-on development support for email security controls
• Develop and manage processes to track identified incidents to resolution
• Develop weekly, monthly, quarterly, and annual metrics and reports as needed
• Develop written analytical reports and give presentations on findings
• Triage information received from vendors and process that information through previously defined internal workflows
• Manage third party vendors to ensure proper delivery of services
• Manage meetings with internal stakeholders to address open issues and identify process improvements
• Actively engage in liaison activities with intelligence communities, industry associations, peer institutions, and information sharing communities
• Apply developed communication and diplomacy skills to guide and influence decision makers
• Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients, and assets, by driving compliance with applicable laws, rules, and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing, and reporting control issues with transparency
• Keep up to date with the ever-changing cyber security landscape to remain relevant and knowledgeable through internal and external certifications
• Other responsibilities as needed

Qualifications:

• Bachelor’s degree or equivalent work experience; IS Certifications are desired (CISSP, GSEC, GCFA,GREM, Security+, CISA, CISM). Email vendor certifications a plus.
• Strong experience with configuration, administering, troubleshooting email routing and filtering in Exchange, Exchange Online, Proofpoint and other enterprise level email security gateways (such as inbound routes, whitelists, email firewall rules, spam/AV, logging/reporting, TAP, TRAP, domain rewrites, secure messaging and recipient verification).
• Experience in analyzing domain email activity and deploying SPF, DKIM and DMARC authentication
• Experience with enterprise phishing defense concepts and technologies
• Minimum 3+ years working in security engineering or security operations role, with a focus on email security

Critical Competencies:

• Cross-functional understanding of email operations, security practices and the user experience
• Highly technical and analytical expertise, with a proven deep background (preferred 5+ years’ IT experience in addition to cybersecurity) in technology design, implementation, and delivery.
• Strong understanding of and demonstrated experience with the tools and sources available to conduct email and threat analysis
• Ability to identify and develop new processes to address cross-functional and cross-business requirements and implement
• Ability to manage projects and ensure tasks are being met timely. Work with leaders of Cyber Security Operations teams to track, drive and report on strategic initiatives.
• Ability to organize and appropriately prioritize multiple, ongoing tasks via efficient time management and forecasting. Project management skills a plus
• Ability to work independently, as well as in team situations, to help internal and external customers achieve desired results

About Citi

Citi is a preeminent banking partner for institutions with cross-border needs, a global leader in wealth management and a valued personal bank in its home market of the United States. Citi does business in more than 160 countries and jurisdictions, providing corporations, governments, investors, institutions and individuals with a broad range of financial products and services.

Additional information may be found at www.citigroup.com | Twitter: @Citi | YouTube: www.youtube.com/citi | Blog: http://blog.citigroup.com | Facebook: www.facebook.com/citi | LinkedIn: www.linkedin.com/company/citi.

#LI-Hybrid

------------------------------------------------------

Job Family Group:

Technology

------------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting