Citigroup
Lead Data Security & Governance Analyst
Working at Citi is far more than just a job. A career with us means joining a team of more than 230,000 dedicated people from around the globe. At Citi, you'll have the opportunity to grow your career, give back to your community and make a real impact. Job Overview
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management. As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients' best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services. Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We'll enable growth and progress together. Overview of the Role
As a Lead Data Security & Governance Analyst, you will play a critical, hands-on role in safeguarding Citi's information assets. This position is central to the firm's cybersecurity posture, focusing on the prevention, monitoring, and response to information/data breaches and cyber-attacks. A significant aspect of this role involves deep engagement with data security, including establishing and maintaining comprehensive data governance, data lineage, and data quality practices within Citi's Information Security framework. The overall objective is to ensure stringent adherence to Information Security directives and activities, directly aligning with Citi's robust data security policy and industry best practices. This role demands a blend of information security expertise with strong technical data management capabilities to identify, mitigate, and remediate cyber risks associated with data. Responsibilities
Develop corrective action language for Information Security (IS) gaps and ensure risk closure meets Citi requirements or industry best practices. Facilitate the implementation of approved IS tools and identify/recommend new or improved security solutions or emerging technologies. Mitigate risk by analyzing the root cause of issues, impacts to business, and required corrective actions and develop security solutions. Ensure IS compliance and seek opportunities to enhance the efficiency of IS policies and procedures. Identify significant IS threats and vulnerabilities, and define appropriate controls for discovered threats, documenting the business response. Disseminate changes to IS regulations and standards to Business and Program owners. Provide Information Security advice and counsel as needed. Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency. Governance and Compliance Documentation: Analyze and Document Data Requirements for various data governance related use cases within Citi Information Security Office. Documenting data models, data dictionaries, and data lineage flow diagrams. Understanding and Working with Data Models: Understanding business needs and translation into logical and physical data models, ensuring data integrity and consistency. Implement high-level data flow diagrams from Citi stakeholders to understand data movement, including EUCs and Models as applicable. Conduct meetings with key stakeholders to gather insights and understand end-to-end data flows and data structures with multiple applications/systems. Conduct gap analysis of the decomposed products/report against the data element level lineage documented and flag gaps for remediation. Assess relevant data quality controls for supporting processes for all critical data elements. Qualifications
6+ years of relevant experience in Information Security, Cybersecurity Compliance or Data Governance. Strong understanding of overall Compliance landscape which includes data related compliance. Strong technical understanding of Data Modeling principles (e.g., Relational for Oracle/SQL Server, Dimensional for Snowflake/Redshift) and knowhow of Data Modeling tools (e.g., ER/Studio, ERwin Data Modeler, SQL Developer Data Modeler). Experience with Data Lineage tools and techniques, i.e. Automated Lineage Mapping (e.g., Collibra, Informatica EDC, Manta) and Manual Lineage Documentation (e.g., Data Flow Diagrams, Data Dictionaries, Custom Script Analysis). Proficiency in Data Analysis and Profiling using SQL, Python (e.g., Pandas), or similar tools, particularly for large datasets. Familiarity with Cloud Data Platforms (e.g., AWS, Azure, GCP) and their security implications. Knowledge of Data Engineering Concepts, including ETL/ELT processes and Data Pipeline Development (e.g., Spark, Airflow) is a plus. Demonstrated ability to research and apply current information regarding the IS field. Consistently demonstrates clear and concise written and verbal communication. Proven influencing and relationship management skills. Proven analytical and problem-solving skills, especially in complex data environments. Education
Bachelor's degree/University degree in Computer Science, Information Systems, Cybersecurity, a related technical field, or equivalent experience. Master's degree preferred. Additional technical certifications (e.g., CISSP, CISM, CDMP) are preferred.
Working at Citi is far more than just a job. A career with us means joining a team of more than 230,000 dedicated people from around the globe. At Citi, you'll have the opportunity to grow your career, give back to your community and make a real impact. Job Overview
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management. As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients' best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services. Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We'll enable growth and progress together. Overview of the Role
As a Lead Data Security & Governance Analyst, you will play a critical, hands-on role in safeguarding Citi's information assets. This position is central to the firm's cybersecurity posture, focusing on the prevention, monitoring, and response to information/data breaches and cyber-attacks. A significant aspect of this role involves deep engagement with data security, including establishing and maintaining comprehensive data governance, data lineage, and data quality practices within Citi's Information Security framework. The overall objective is to ensure stringent adherence to Information Security directives and activities, directly aligning with Citi's robust data security policy and industry best practices. This role demands a blend of information security expertise with strong technical data management capabilities to identify, mitigate, and remediate cyber risks associated with data. Responsibilities
Develop corrective action language for Information Security (IS) gaps and ensure risk closure meets Citi requirements or industry best practices. Facilitate the implementation of approved IS tools and identify/recommend new or improved security solutions or emerging technologies. Mitigate risk by analyzing the root cause of issues, impacts to business, and required corrective actions and develop security solutions. Ensure IS compliance and seek opportunities to enhance the efficiency of IS policies and procedures. Identify significant IS threats and vulnerabilities, and define appropriate controls for discovered threats, documenting the business response. Disseminate changes to IS regulations and standards to Business and Program owners. Provide Information Security advice and counsel as needed. Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency. Governance and Compliance Documentation: Analyze and Document Data Requirements for various data governance related use cases within Citi Information Security Office. Documenting data models, data dictionaries, and data lineage flow diagrams. Understanding and Working with Data Models: Understanding business needs and translation into logical and physical data models, ensuring data integrity and consistency. Implement high-level data flow diagrams from Citi stakeholders to understand data movement, including EUCs and Models as applicable. Conduct meetings with key stakeholders to gather insights and understand end-to-end data flows and data structures with multiple applications/systems. Conduct gap analysis of the decomposed products/report against the data element level lineage documented and flag gaps for remediation. Assess relevant data quality controls for supporting processes for all critical data elements. Qualifications
6+ years of relevant experience in Information Security, Cybersecurity Compliance or Data Governance. Strong understanding of overall Compliance landscape which includes data related compliance. Strong technical understanding of Data Modeling principles (e.g., Relational for Oracle/SQL Server, Dimensional for Snowflake/Redshift) and knowhow of Data Modeling tools (e.g., ER/Studio, ERwin Data Modeler, SQL Developer Data Modeler). Experience with Data Lineage tools and techniques, i.e. Automated Lineage Mapping (e.g., Collibra, Informatica EDC, Manta) and Manual Lineage Documentation (e.g., Data Flow Diagrams, Data Dictionaries, Custom Script Analysis). Proficiency in Data Analysis and Profiling using SQL, Python (e.g., Pandas), or similar tools, particularly for large datasets. Familiarity with Cloud Data Platforms (e.g., AWS, Azure, GCP) and their security implications. Knowledge of Data Engineering Concepts, including ETL/ELT processes and Data Pipeline Development (e.g., Spark, Airflow) is a plus. Demonstrated ability to research and apply current information regarding the IS field. Consistently demonstrates clear and concise written and verbal communication. Proven influencing and relationship management skills. Proven analytical and problem-solving skills, especially in complex data environments. Education
Bachelor's degree/University degree in Computer Science, Information Systems, Cybersecurity, a related technical field, or equivalent experience. Master's degree preferred. Additional technical certifications (e.g., CISSP, CISM, CDMP) are preferred.