New York City, NY, United States
Audit Manager - Information Security','19029148','!*!About Citi: Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management. Our core activities are safeguarding assets, lending money, making payments and accessing the capital markets on behalf of our clients.Citi’s Mission and Value Proposition explains what we do and Citi Leadership Standards explain how we do it. Our mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. We strive to earn and maintain our clients’ and the public’s trust by constantly adhering to the highest ethical standards and making a positive impact on the communities we serve. Our Leadership Standards is a common set of skills and expected behaviors that illustrate how our employees should work every day to be successful and strengthens our ability to execute against our strategic priorities.Diversity is a key business imperative and a source of strength at Citi. We serve clients from every walk of life, every background and every origin. Our goal is to have our workforce reflect this same diversity at all levels. Citi has made it a priority to foster a culture where the best people want to work, where individuals are promoted based on merit, where we value and demand respect for others and where opportunities to develop are widely available to all.Internal Audit is a global organization of over 1,000 professionals covering Citi's global businesses and service to clients and customers in over 180 countries. Citi's Internal Audit division provides independent assessments of the company's governance, risk management and internal control environment for key stakeholders including the Board of Directors, senior management and Citi’s numerous regulators globally. Internal Audit is a change agent within Citi aimed to enhance the control culture of Citigroup worldwide and thereby support senior management decision making around the globe.Job Purpose:This role directs the timely delivery of high quality, value added assurance and audit reports for a portfolio of business activities, which meet the requirements of the Boards of Citigroup and Citibank, their affiliates, and of Citi’s respective regulators, globally. This role is responsible for the management of risk assessment and audit delivery covering the full spectrum of Information Security, including enterprise governance, systems administration, network defense infrastructure, data protection, authentication services, vulnerability threat management, risk management and cyber incident response and recovery. This encompasses providing objective risk based independent assurance with respect to the design and operating effectiveness of controls associated with Information Security that support critical business systems and processes across the group.Key Responsibilities:• Maintain a complete, comprehensive and accurate auditable universe for the assigned areas of responsibility within the technology audit to manage and support local product and functional auditing• Develops and executes a robust Audit Plan, by reviewable entity, for assigned businesses in accordance with Internal Audit standards, relevant government statutes and regulations and Citigroup and Citibank policies. • Delivers on time high quality audit reports, Internal Audit and Regulatory issue validation and (where appropriate, branch examinations, as well as business monitoring and governance committee reporting.• Manages audit activities for a component of a product line, function, or legal entity at the regional or country level including a portion of the audit annual plan. • Applies in-depth level of expertise in one or more of the corporation's businesses and leverages this knowledge into a leadership role in one or more teams.• Proactively advances integrated auditing concepts and use of technology. • Manages a complex and critical unit within Internal Audit, including a small to medium sized team of Internal Audit professionals. Recruits staff, develops talent, builds effective teams, and manages a budget. Possesses a broad and comprehensive understanding of different Internal Audit standards, policies and local regulations; applies a broad and comprehensive knowledge of high risk areas including: Consumer or Investment Banking, technology management; project/program management; regulatory compliance or supplier management. • Leads the professional development of Internal Audit staff. • Develops effective senior line management relationships and has a strong understanding of the businesses. • Applies an in-depth understanding of the inter-relationships of business and support units throughout the corporation and how they impact the overall control environment and the audit approach. • Uses excellent communication skills in order to influence a wide range of internal audiences including respective product, function, or regional executive management partners. May negotiate internally often at higher levels on matters which will have a major impact on the area managed. • Demonstrates strong judgment, political astuteness, and sensitivity to cultural diversity. • Possesses strong project management and interpersonal skills, makes sound decisions, exhibiting initiative and intuitive thinking. Consulted often by others for advice and opinions and recognized as a leadership role model. • Participates in major business initiatives and pro-actively advises and assists the business on change initiatives. • Frequently involved in matters that require complex judgments and solutions based on sophisticated analytical thought such as identifying solutions for a variety of complex and novel audit control issues. Analyzes reporting findings; Recommends appropriate interventions where needed. Proposes creative and pragmatic solutions for risk and control problems. Partners with Directors and Managing Directors to develop approaches for addressing broader corporate emerging issues. • Serves as lead reviewer for all types of reviews.• Performs Business Monitoring Quarterly Summaries.• Work collaboratively on assignments with Internal Audit teams in Citi and keep abreast of evolving Information Security / Cybersecurity regulations on risk management and ensure that these are appropriately addressed in Internal Audit’s risk assessment and audit planning processes.','!*!• BA/BS or equivalent. Related certifications (CPA, ACA, CFA, CIA, CISA or similar) are a plus. Additional security certifications (CISSP, CISM, CEH or similar) are desired.• Senior level experience in a related role with experience in business, functional and people management, with proven abilities in taking responsibility for executing concurrently on a portfolio of high quality deliverables to stakeholders according to strict timetables.• Specific subject matter expertise regarding technology application control disciplines and a solid business understanding of technology infrastructure products, especially those associated with the banking and financial business. • Demonstrates experience in managing teams and managing integrated internal audit and assurance delivery within a matrix reporting environment. • Effective negotiation skills, a proactive and 'no surprises' approach in communicating issues and strength in sustaining independent views. This individual must be an articulate and effective communicator, both orally and in writing, with an energetic, charismatic and approachable style.• Strong interpersonal skills for interfacing with all levels of internal and external audit and management. ','Citi is an equal opportunity and affirmative action employer. Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity','Citi is an equal opportunity and affirmative action employer. Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity','Citi won’t discriminate against anyone for discussing pay, but those with access to pay data in their work can’t disclose it unless responding to complaints/investigations or legal requirements.','Citi won’t discriminate against anyone for discussing pay, but those with access to pay data in their work can’t disclose it unless responding to complaints/investigations or legal requirements.','NAM-USA-NY-New York','','Audit','Full-time','Bachelor's Degree','Day Job','Regular','Yes, 10 % of the Time','','','Audit Manager - Information Security'
Website : http://www.citigroup.com
Citi works tirelessly to provide consumers, corporations, governments and institutions with a broad range of financial products and services. We strive to create the best outcomes for our clients and customers with financial solutions that are simple, creative and responsible.