IS Tech Sr. Analyst IS Tech Sr. Analyst …

in Singapore, Singapore, Singapore
Permanent, Full time
Be the first to apply
in Singapore, Singapore, Singapore
Permanent, Full time
Be the first to apply
IS Tech Sr. Analyst
Who are we?
Citi Technology Infrastructure (CTI) provides the products and services that enable Citi's workforce along with the majority of the financial solutions that Citi's customers rely on. We provide the critical technical foundation for Citi's operations through the infrastructure that runs business and general user computing services. We do this by working as one-team to deliver high quality reliable and modern infrastructure technologies at the right cost. We drive to optimize the functionality and capability of the infrastructure technologies.

Duties will include providing vulnerability assessment and penetration testing services to Citi businesses globally through a comprehensive testing process as well as identifying weaknesses and vulnerabilities within the system and proposing countermeasures. Typical assignments will involve testing of the overall security of critical infrastructure components and applications to ensure they comply with internal policies security architecture best practices and industry standards; scanning and discovering rouge hosts networks and devices; and scanning and discovering vulnerable systems and applications.
Pre-requisites for this position are at least a Bachelor's Degree with 3 - 7 years of experience on most of the following:
-       Conducting vulnerability assessments and penetration testing (application and/or infrastructure) and articulating security issues to technical and non-technical audience
-       Identifying researching validating and exploiting various different known and unknown security vulnerabilities on server and client side
-       Vulnerability Assessment tools e.g. Nessus Qualys etc
-       Deep understanding of OSI model
-       Security devices e.g. Firewalls VPN AAA systems
-       OS Security e.g. Unix Linux Windows Cisco etc
-       Understanding of common protocols e.g. LDAP SMTP DNS Routing Protocols
-       Web application infrastructure e.g. Application Servers Web Servers Databases
-       Web development and programming languages i.e. Python Perl Ruby Java and/or .Net
-       Reporting information security vulnerabilities to businesses

Industry-accredited security certifications will be required (the candidate must have or be willing to obtain all of the following certifications - GIAC GXPN GPEN GCIH CISSP and CEH). Knowledge of tools and processes used to expose known and undocumented vulnerabilities in various different systems. We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race religion color national origin gender sexual orientation age marital status veteran status or disability status.
Grade :All Job Level - All Job FunctionsAll Job Level - All Job Functions - SG ------------------------------------------------------
Time Type :Full time ------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.
Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity CLICK HERE .
To view the "EEO is the Law" poster CLICK HERE . To view the EEO is the Law Supplement CLICK HERE .
To view the EEO Policy Statement CLICK HERE .
To view the Pay Transparency Posting CLICK HERE .