Cloud Security Senior Analyst, Citi

Citi

Location:
Hungary, Budapest

Category:
IT - Software Development

Contract Type:
Not provided

Salary:

Not provided

Save Job

Apply Position

Job Description:

The Cloud Security Operations team works in a multi-disciplinary team of teams driving cyber security services and solutions to enable Citi to securely adopt private, hybrid, and public cloud platforms. This role is one of the primary security interfaces with development teams, architects, engineers, and operational teams involved in cloud-related projects. Our operating model emphasizes DevSecOps, that is, automation, integration, and agility based on Security as a Service / Security as Code concepts.

Job Responsibility:

Full end to end security assurance activities in GCP including Vulnerability Assessments (preproduction, post-production), Purple Team exercises (Red and Blue team collaboration) to identify areas of risk and ensure any gaps are documented and remediated
Provide threat modeling and risk assessment services to characterize the risk and severity posture of various systems and components in the cloud environment
Partner with Engineering and Operations teams to create, implement, and apply DevSecOps practices and processes that are consumed by developers across all sectors in Citi

Requirements:

5+ years of experience in a similar, offensive security related role
Offensive Security-oriented mindset (threat-modeling, vulnerability assessments, penetration testing, etc.)
Hands-on experience with cloud platforms (GCP, AWS)
Excellent understanding of cloud security concepts/best practices in various cloud Service Providers (for example: Azure/M365)
Familiarity with the current threat landscape which GCP exists in
Familiarity with securing containers and container orchestration frameworks (such as Kubernetes)
Programming/scripting languages a plus (Python and PowerShell preferred, but not required)
Ability to deliver presentations to technical and non-technical individuals
Fluency in English
Bachelor's Degree or equivalent working experience

Nice to have:

Cloud security certifications: Azure Security Engineer Associate, Microsoft 365 Certified Security Administrator Associate, AWS Security Specialty, GCP Professional Cloud Security Engineer, etc.
Container/Kubernetes certifications: CKA, CKAD, CKS, etc.
Other security certifications: OSCP, OSCE, GXPN, GPEN, GCIH, GWAPT, etc.

What we offer:

Cafeteria Program
Home Office Allowance (for colleagues working in hybrid work models)
Paid Parental Leave Program (maternity and paternity leave)
Private Medical Care Program and onsite medical rooms at our offices
Pension Plan Contribution to voluntary pension fund
Group Life Insurance
Employee Assistance Program
Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
Flexible work arrangements to support you in managing work - life balance
Career progression opportunities across geographies and business lines
Socially active employee communities with diverse networking opportunities

Additional Information:

Job Posted:
March 21, 2025

Employment Type:

Fulltime

Work Type:

Hybrid work

View All Jobs In This Company

Job Link Share:

Cloud Security Senior Analyst