Technical Information Security Officer Technical Information Security Officer …

in Singapore, Singapore, Singapore
Permanent, Full time
Be the first to apply
in Singapore, Singapore, Singapore
Permanent, Full time
Be the first to apply
Technical Information Security Officer
The Technical Information Security Officer will work with the system development areas to ensure technology risks are addressed at each phase of the system development life cycle and provide proactive solutions to correct exposures or mitigate risk. TISO will also interpret security standards, procedures, and guidelines for multiple platforms and diverse environments (e.g. client server, distributed, mainframe, etc.) in designing solutions and recommend enhancements.
Responsibilities include:
Ensure technology compliance with Information security standards of In-Country applications Acts as leader for the security of complex programs/projects for the assigned application portfolio​ Drives consistent implementation and execution of Information Security in programs/projects for a set of business applications Assist GISO in Responding to security events by initiating and coordinating emergency actions across and as applicable to the corresponding application portfolio to protect the business and its customers from an imminent loss of information or value. Promote awareness of current policies and standards, as well as revisions and developments; provide consistent interpretation of policy to the enterprise. Establish and maintain relationships with domain architects, project managers and stakeholders within the technology development unit. Interface with the business where required and advise on the security risks and impacts.
  • BS/BE degree in Information Security/ Computer Science/Electronics and Engineering /Information Technology
  • 8+ years of experience in Information Security area related to one or more of the areas: Security architecture, Security risk assessments, Security event management, ethical hacking, Secure Application Design and Development.
  • Possess Security certifications such as CISSP, CSSLP, CCSP, OCSP etc.
  • Must have a strong knowledge in Application Security, Cryptography, Key management, API Security, Cloud Security and Mainframe Security.
  • Preferably have a good understanding of the wealth management domain.
  • Must be able to understand detailed technical procedures, functional requirements, Agile/Waterfall SDLC projects and Web Development Architecture, Ethical Hacking Processes.
  • Strong risk management and risk articulation skills. Must be able to apply Risk management principles and balance IS priority
  • Self-motivated with the ability to work independently and as a team member with minimal direction.
  • Excellent written and verbal communication skills with the ability to effectively communicate with all levels.
  • Ability to build and maintain positive working relationships across project and control teams
Grade :All Job Level - All Job FunctionsAll Job Level - All Job Functions - SG ------------------------------------------------------
Time Type :Full time ------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.
Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity CLICK HERE .
To view the "EEO is the Law" poster CLICK HERE . To view the EEO is the Law Supplement CLICK HERE .
To view the EEO Policy Statement CLICK HERE .
To view the Pay Transparency Posting CLICK HERE .