Technology & Cyber Risk: Senior Analyst - Cybersecurity Risk

2 tygodni temu

Warszawa, Mazovia, Polska 11101 Citibank Europe plc Poland Pełny etat
Come and join our newly established Cyber Risk Team in Warsaw

The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi is the firm's reliable second set of eyes. Our mission is to drive comprehensive and consistent practices designed to identify, measure, monitor, report, and manage operational and compliance risks while promoting the implementation of actions to address root causes which may lead to unintended operational losses or regulatory breaches. TCCORO provides the specialist subject matter experts to challenge Enterprise, Infrastructure, Operations, and Technology entities across the firm. We are the technology and cyber conscience of the bank. In line with the Operational Risk Management (ORM) and Independent Compliance Risk Management (ICRM) frameworks, we aim to ensure that the internal controls that are designed to mitigate technology and cyber risks are managed, mitigated, and aligned with our risk appetite.

You as Senior Analyst - Cybersecurity Risk are part of the Cyber Risk & Compliance Threat & Vulnerability Management team within TCCORO, which challenges risk and compliance practices enterprise-wide within the cyber risk landscape and vulnerability management spheres. The Threat and Vulnerability Management team oversees the first line processes that evaluate the risk from emerging threats and is the operational risk point of contact for cyber exercises. The team also provides cyber risk and compliance expertise in support of multiple firm-wide strategic initiatives. The role will leverage cyber risk subject matter expertise, business experience, data analysis techniques, current events, and industry trends and best practices to inform the prioritization of risks and the second-line's approach for associated challenge and influence activities. This position actively works with our ORM and Compliance partners and other stakeholders to provide support to our oversight and challenge activities with the components of our operational and compliance risk management frameworks. A successful candidate should have foundational expertise on how technology and cybersecurity risks are effectively managed in a large financial institution. They should have a strong track record in cyber risk management and/or a strong technical background with excellent analytical skills. You shall demonstrate a strong interest in the field and a passion for risk management.

What you will do:
  • Supports the review of compliance and cyber policies and procedures, technology and tools, and governance processes to provide credible challenge for minimizing losses from cyber risks.
  • Assesses cyber risks and evaluates actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices.
  • Supports independent assurance activities to assess areas of concern, including substantive and controls testing.
  • Supports the monitoring, evaluation, and challenge of Key Risks and associated Key Risk Indicators triggers and thresholds.
  • Reviews potential risks associated with program/project delivery on a technical level.
  • Participates in various second-line of defense cyber assessments, including risk assessments, control assessments, compliance assessments, maturity assessments, etc.
  • Assesses cyber risks associated with new initiatives and programs being proposed for implementation.
  • Supports the challenge of the design, adequacy, and strength of the control environment associated with technology and cyber and recommends actions to ensure the operational risk profile is in line with the cyber risk appetite.
  • Supports ad-hoc activities for the TCCORO organization, including but not limited to: researching and drafting materials for presentations of deep dives into selected topics, coordinating deliverables related to audits and examinations, and maintaining associated data for executive reporting.
  • Helps to appropriately assess risk when business decisions are made, demonstrating knowledge of the firm's reputation and safeguarding Citigroup, its clients, and assets, by driving compliance with applicable laws, rules, and regulations, adhering to Policy, and applying sound ethical judgment.
Your profile:
  • 5-8 years of relevant experience.
  • Knowledge of cyber-relevant laws, rules, and regulations.
  • Experience or knowledge with adversary emulation and vulnerability management.
  • Understanding of cyber risks and controls across various information system architecture and engineering domains, including data protection, identity and access management, vulnerability management, network security, endpoint security, logging and monitoring, incident management, and third-party management; preferred expertise and/or familiarity with risks associated with a variety of threat actors, vulnerability management, resilience, and supply chain risks as they relate to cyber risk.
  • Experience in cyber risk assessments, compliance assessments, metrics, enterprise technology services, risks, and controls within globally complex, dispersed, and diverse organizations.
  • Knowledge and understanding of industry-standard risk management frameworks (including ISO27001, COBIT, TOGAF, and CRI, for example), and an in-depth understanding of cyber risk mitigation strategies.
  • Excellent written and verbal English-language communication skills.
  • Must be a self-starter, flexible, innovative, and adaptive.
  • Strong interpersonal skills with the ability to work collaboratively and with people at all levels of the organization.
  • Ability to work collaboratively with regional and global partners in other functional units; and to navigate a complex organization.
  • Excellent project management and organizational skills and capability to handle multiple projects at one time.
  • Proficient in MS Office applications (Excel, Word, PowerPoint).
  • Experience with technical cyber or advanced cyber exercises.
  • Bachelor's/University degree or equivalent experience.
  • Relevant certifications (in CISM, CRISC, CISSP, CISA) a plus.
What we can offer you:

By joining Citi Solutions Center Poland, you will not only be part of a business casual workplace with a hybrid working model (up to 2 days working at home per week), but also receive a competitive base salary (which is annually reviewed) and enjoy a whole host of additional benefits such as:

  • Private Medical Care Program
  • Life Insurance Program
  • Pension Plan contribution (PPE Program)
  • Employee Assistance Program
  • Paid Parental Leave Program (maternity and paternity leave)
  • Sport Card
  • Holidays Allowance
  • Sport and team recreation activities
  • Special offers and discounts for employees
  • Access to an array of learning and development resources
  • A discreet annual performance-related bonus
  • A chance to make a difference with various affinity networks and charity initiatives

Alongside these benefits, Citi is committed to ensuring our workplace is where everyone feels comfortable coming to work as their whole self every day. We want the best talent around the world to be energized to join us, motivated to stay, and empowered to thrive.

Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities.

Job Family Group:Risk ManagementJob Family:Operational RiskTime Type:Full timeCiti is an equal opportunity and affirmative action employer. Qualified applicants will receive consideration without regard to their race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or status as a protected veteran. Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities.

  • Technology & Cyber Risk: Senior Analyst - Technology Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska 11101 Citibank Europe plc Poland Pełny etat

    Come be a part of our newly established team focusing on Cyber Risk in WarsawThe Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi acts as a crucial second pair of eyes for the firm. We are dedicated to implementing consistent practices to detect, measure, monitor, and manage operational and compliance risks while also addressing...

  • Technology & Cyber Risk: Senior Analyst - Technology Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska Citi Pełny etat

    Come and be part of our newly established Cyber Risk Team in Warsaw!The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi is like having a trustworthy second set of eyes. Our goal is to drive comprehensive practices to identify, measure, monitor, report, and manage operational and compliance risks while promoting actions to address...

  • Technology & Cyber Risk: Senior Analyst - Risk Analytics & Regulation Reporting

    2 tygodni temu

    Warszawa, Mazovia, Polska 11101 Citibank Europe plc Poland Pełny etat

    Come and be part of our newly established Cyber Risk Team in Warsaw The Tech and Cyber Compliance and Operational Risk Office (TCCORO) at Citi is the firm's reliable second set of eyes. Our goal is to drive comprehensive and consistent practices to identify, measure, monitor, report, and manage operational and compliance risks while encouraging the...

  • Technology & Cyber Risk: Senior Analyst - Risk Analytics & Regulation Reporting

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    Come and join our newly established Cyber Risk Team in WarsawThe Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi is the firm's reliable second set of eyes. Our mission is to drive comprehensive and consistent practices designed to identify, measure, monitor, report and manage operational and compliance risks while promoting the...

  • Internal Audit-Technology Risk and Cybersecurity

    2 tygodni temu

    Warszawa, Mazovia, Polska Goldman Sachs Pełny etat

    INTERNAL AUDIT In Internal Audit, we ensure that Goldman Sachs maintains effective controls by assessing the reliability of financial reports, monitoring the firm's compliance with laws and regulations, and advising management on developing smart control solutions. Our group has unique insight on the financial industry and its products and operations. We're...

  • Senior Compliance Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska 11101 Citibank Europe plc Poland Pełny etat

    Come and join our newly established Cyber Risk Team in Warsaw The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi is the firm's reliable second set of eyes. Our mission is to drive comprehensive and consistent practices designed to identify, measure, monitor, report and manage operational and compliance risks while promoting...

  • Senior Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Fortrea Pełny etat

    Responsibilities : As a Senior Analyst, Cybersecurity Risk Management you will help build, maintain, and manage Fortrea's cyber risk management program.You will play a pivotal role in enhancing the cyber risk management framework and mitigation of cyber risks across the organization.You will also get involved in third-party vendor risk assessments,...

  • Cyber Risk Director

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    Are you looking for a career move that will put you at the heart of a global financial institution?By Joining Citi, you will become part of a global organisation whose mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress.Team/Role OverviewThe Technology and Cyber...

  • Tech Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska Goldman Sachs Pełny etat

    WHO WE ARE Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts,...

  • Risk Assessor Lead

    2 tygodni temu

    Warszawa, Mazovia, Polska Goldman Sachs Pełny etat

    WHO WE ARE Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts,...

  • Senior Quantitative Risk Model Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    The Market and Counterparty Credit Risk Analytics team is looking for a Senior Quantitative Risk Model Analyst to join their Warsaw based Team.Team:The group is responsible for developing and maintaining the methodologies to calculate counterparty credit risk exposures of OTC derivatives, exchanged-traded derivatives, security financing transactions, and...

  • Regulatory Risk Analyst

    4 tygodni temu

    Warszawa, Mazovia, Polska Citigroup, Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...

  • Regulatory Risk Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup, Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...

  • Regulatory Risk Analyst

    4 tygodni temu

    Warszawa, Mazovia, Polska Citigroup, Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...

  • Regulatory Risk Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Citigroup Inc. Pełny etat

    The International Risk Management Execution (IRME) Team is responsible to provide support to Risk Cluster heads and Risk Management Country Officers (RMCOs) on RMCO related processes focused on standardization to enhance productivity, governance and control activities as well as on-hands support to target strategic execution. The IRME team also supports the...

  • Tech Risk Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Michael Page Pełny etat

    About Our Client Our client is a multinational family of companies producing hygiene products. Job DescriptionDirectly responsible for performing technology risk assessments and control assessments to ensure systems and applications (on prem and in the cloud) are complying with company policies, applicable regulatory and legal requirements, and leading...

  • Senior Quantitative Risk Model Analyst

    2 tygodni temu

    Warszawa, Mazovia, Polska Citi Pełny etat

    Team:The group is responsible for developing and maintaining the methodologies to calculate counterparty credit risk exposures of OTC derivatives, exchanged-traded derivatives, security financing transactions, and margined loans. The models are used for advanced Basel regulatory capital calculations, CCAR/Internal Capital Adequacy Assessment Process (ICAAP)...

  • Senior/Lead Risk Expert, Technology

    2 tygodni temu

    Warszawa, Mazovia, Polska Nordea Bank Norge ASA Pełny etat

    Press Tab to Move to Skip to Content Link Select how often (in days) to receive an alert: Create Alert Select how often (in days) to receive an alert: Job ID:22555 We are looking for Senior or Lead Risk Expert, to join Technology & Resilience Risk Oversight, a diverse team of professionals working on Technology, Business Continuity and Crisis Management...

  • Risk, Credit Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska Goldman Sachs Pełny etat

    RISK The Risk Division is a team of specialists charged with managing the firm's credit, market, liquidity, operational and capital risk. Whether assessing the creditworthiness of the firm's counterparties, monitoring market risks associated with trading activities, or offering analytical and regulatory compliance support, our work contributes directly...

  • Risk, Credit Risk

    2 tygodni temu

    Warszawa, Mazovia, Polska Goldman Sachs Pełny etat

    RISK The Risk Division is a team of specialists charged with managing the firm's credit, market, liquidity, operational and capital risk. Whether assessing the creditworthiness of the firm's counterparties, monitoring market risks associated with trading activities, or offering analytical and regulatory compliance support, our work contributes directly to...