ISO Lead Analyst, Citi

Citi

Location:
India, Mumbai

Category:
IT - Administration

Contract Type:
Not provided

Salary:

Not provided

Save Job

Apply Position

Job Description:

This Information Security role is a senior level professional responsible for driving efforts to support governance, risk, and compliance for CISO at Citi. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's cyber and information security policy and country regulatory related requirements. The role is part of the Cyber Governance, Control and Policy Team.

Job Responsibility:

Manage and validate deliverables of all Information Security (IS) programs
Engagement with APAC regulators on IS related matters
Manage regulatory exams and internal & external audits
Work closely with Global & Regional Information Security teams to improve processes and reduce risk
Support IS regulatory related activities
Manage internal/external resources to organize cyber-attack simulations and penetration testing
Coordinate and oversee vulnerability, mitigation/remediation/correction action plans
Manage issues management process
Accountable for delivery of associated remediation from regulatory assessments
Proficiency in preparing periodic updates / reports / presentation deck for internal stakeholders and regulators
Provide timely updates to regional and global stakeholders
Escalate issues to senior management
Build and develop partnerships with business, IT, risk, compliance, audit, senior management staff and stakeholders
Facilitate and lead cross-functional meetings
Assist in developing analytics and reporting to track effectiveness of process
Identify potential process improvements
Act as IS/Cybersecurity SME to senior stakeholders and/or other team members

Requirements:

8-10 years of relevant experience in Cyber Security Governance & Risk & Control, Cyber Security Operations / Technology Risk Management / Third-party Risk Management or IT Audit
Experience gained from banking / finance services industry / consultancy / control compliance or legal disciplines
Experience in assessing cyber regulatory compliance
Relevant professional qualifications with Risk / Security management e.g. CISSP, CRISC, CISM, CISA, or equivalent
Strong understanding of International Standards/Frameworks such as: NIST, ISO 27001series, COBIT, CIS, GDPR, DORA, etc.
Proficient in interpreting and applying policies, standards, and procedures
Excellent project management and organizational skills
Strong collaboration, reporting writing and communication skills
Highly proficiency in both spoken and written English
Bachelor's/University degree or equivalent experience in Computer Science, Cyber Security, Computer/Information Engineering, Information Technology, or a related discipline is preferred

Additional Information:

Job Posted:
October 09, 2025

Employment Type:

Fulltime

Work Type:

Hybrid work

View All Jobs In This Company

Job Link Share:

ISO Lead Analyst