This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
It is a role with accountability for Cybersecurity function, executive-level privileges and adequate authority with no intersect with other conflicting positions. This role is responsible for leading efforts to safeguard the confidentiality, integrity, and availability of Citi’s information and information assets. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's Cyber and Information Security Policy (CCISP).
Job Responsibility
Acts as Information Security Subject Matter Expert to senior stakeholders and /or other team members
Establish working relationships cross-sector and internally with First, Second, and Third Line of Defense
Coordinate with First line partners the collection, entry, and maintenance of deliverables to Internal and External Questions/Exams
Facilitate the Responses by Key Stakeholders to Internal and External Reviewers for requested meetings and potential concerns raised with a risk focus
Communicate to Senior Management on issues identified during Internal and External reviews including missed deadlines, risk impact, and improper design/execution of controls
Identify areas of opportunities for process improvements or potential control breaks in the organizations Cybersecurity standards, procedures, and/or controls
Execute the Issue Management process, for Issues identified within various Information Security (IS) programs
Assist process and control owners in evaluating control deficiencies holistically, including identification of root causes and required corrective action plans
Oversee and ensure timely and complete issue remediation within businesses and functions and escalate any delays and / or challenges, as needed
Validate remediation activities are documented, completed, and closed- out in accordance with issue management standards
Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
Has the ability to operate with a limited level of direct supervision
Can exercise independence of judgement and autonomy
Accommodate and manage regulatory engagements in Egypt and beyond
Acts as SME to senior stakeholders and /or other team members
Ensure cyber regulatory obligations are understood and collaborate with compliance and appropriate CISO teams to ensure recorded
Understand controls being implemented to safeguard sensitive data
Requirements
10 years of relevant experience
Proficient in interpreting and applying policies, standards and procedures
Consistently demonstrates clear and concise written and verbal communication
Proven influencing and relationship management skills
Proven analytical skills
Fluency in English is a must
Arabic Language is a plus
Maintaining at least one active certificate of the Information Security Management international certificates such as CISSP, CISM, CRISC, C-CISO or ISO 27001 Lead implementer
Bachelor’s degree/University degree or equivalent experience as a minimum