Citi
Overview
The
Cloud Security Architecture Lead Analyst
is responsible for defining and driving the Google Cloud Platform (GCP) security architecture across Citi's global cloud initiatives, ensuring compliance with financial regulations, internal controls, and industry best practices. You will partner with Infrastructure Teams, Application Developers, Compliance Officers, and Risk Managers to embed secure design principles and mitigate evolving cloud threats in a highly regulated environment. You will also drive a variety of engineering activities including the design, acquisition and deployment of hardware, software and network infrastructure in coordination with the Technology team. The overall objective of this role is to lead efforts to ensure quality standards are being met within existing and planned framework. Responsibilities
Cloud Security Strategy:
Develop and implement a comprehensive security strategy for Google Cloud that aligns with the organization’s business goals and compliance standards, such as GDPR, SOC 2, and HIPAA.
Architecture Design:
Develop security infrastructure architectures and frameworks, focusing on protecting sensitive data and mitigating risks across networks, storage, applications, and authentication services using automation across a hybrid cloud architecture.
Data Security and Encryption:
Design and enforce encryption in transit and at rest between all compute boundaries.
Vulnerability Management:
Proactively monitor GCP environments for vulnerabilities, manage threat detection, and ensure prompt response to potential security incidents.
Cross-Functional Collaboration:
Work closely with engineering, development, SRE, and operations teams to enforce security policies and integrate security best practices into the development lifecycle.
Team Leadership and Training:
Guide the security team, promote security awareness across the organization, and ensure compliance with industry standards (e.g., ISO 27001, NIST).
Qualifications
6+ years of experience in a
Security Architecture
role
6+ years of experience in a
Cloud Security Engineering
role
GCP Expertise:
In-depth understanding of
GCP core infrastructure services ,
security services ,
encryption practices , and
compliance frameworks . Deep understanding of
GCP IAM ,
RBAC ,
Cloud Identity
and
Zero trust principles
for managing secure access to data and applications in the cloud. Expertise in
GCP networking , including
VPC subnets ,
firewall configurations ,
Google Cloud VPN
etc.
Scripting and Configuration Management:
Experience with scripting and configuration management tools like
Bash ,
Python ,
Ansible ,
Puppet , and
Chef
Analytical Skills:
Ability to assess complex security risks, identify vulnerabilities, and design effective security solutions.
Git Versioning:
GIT is a version control software used to store and track changes to source code.
Communication Skills:
Proven ability to communicate technical information to stakeholders, including those with limited technical expertise and work with cross-functional teams to enforce security measures.
Education
Bachelor’s degree/University degree or equivalent experience Master’s degree preferred Location:
Irving, Texas, United States Time Type:
Full time Primary Salary Range:
$125,760.00 - $188,640.00 In addition to salary, Citi’s offerings may also include discretionary and formulaic incentive and retention awards. Citi offers competitive employee benefits, including medical, dental & vision coverage; 401(k); life, accident, and disability insurance; and wellness programs. Citi also offers paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays. For additional information regarding Citi employee benefits, please visit citibenefits.com. Available offerings may vary by jurisdiction, job level, and date of hire. Anticipated Posting Close Date:
Jan 01, 2026 Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi. View Citi’s EEO Policy Statement and the Know Your Rights poster.
#J-18808-Ljbffr
The
Cloud Security Architecture Lead Analyst
is responsible for defining and driving the Google Cloud Platform (GCP) security architecture across Citi's global cloud initiatives, ensuring compliance with financial regulations, internal controls, and industry best practices. You will partner with Infrastructure Teams, Application Developers, Compliance Officers, and Risk Managers to embed secure design principles and mitigate evolving cloud threats in a highly regulated environment. You will also drive a variety of engineering activities including the design, acquisition and deployment of hardware, software and network infrastructure in coordination with the Technology team. The overall objective of this role is to lead efforts to ensure quality standards are being met within existing and planned framework. Responsibilities
Cloud Security Strategy:
Develop and implement a comprehensive security strategy for Google Cloud that aligns with the organization’s business goals and compliance standards, such as GDPR, SOC 2, and HIPAA.
Architecture Design:
Develop security infrastructure architectures and frameworks, focusing on protecting sensitive data and mitigating risks across networks, storage, applications, and authentication services using automation across a hybrid cloud architecture.
Data Security and Encryption:
Design and enforce encryption in transit and at rest between all compute boundaries.
Vulnerability Management:
Proactively monitor GCP environments for vulnerabilities, manage threat detection, and ensure prompt response to potential security incidents.
Cross-Functional Collaboration:
Work closely with engineering, development, SRE, and operations teams to enforce security policies and integrate security best practices into the development lifecycle.
Team Leadership and Training:
Guide the security team, promote security awareness across the organization, and ensure compliance with industry standards (e.g., ISO 27001, NIST).
Qualifications
6+ years of experience in a
Security Architecture
role
6+ years of experience in a
Cloud Security Engineering
role
GCP Expertise:
In-depth understanding of
GCP core infrastructure services ,
security services ,
encryption practices , and
compliance frameworks . Deep understanding of
GCP IAM ,
RBAC ,
Cloud Identity
and
Zero trust principles
for managing secure access to data and applications in the cloud. Expertise in
GCP networking , including
VPC subnets ,
firewall configurations ,
Google Cloud VPN
etc.
Scripting and Configuration Management:
Experience with scripting and configuration management tools like
Bash ,
Python ,
Ansible ,
Puppet , and
Chef
Analytical Skills:
Ability to assess complex security risks, identify vulnerabilities, and design effective security solutions.
Git Versioning:
GIT is a version control software used to store and track changes to source code.
Communication Skills:
Proven ability to communicate technical information to stakeholders, including those with limited technical expertise and work with cross-functional teams to enforce security measures.
Education
Bachelor’s degree/University degree or equivalent experience Master’s degree preferred Location:
Irving, Texas, United States Time Type:
Full time Primary Salary Range:
$125,760.00 - $188,640.00 In addition to salary, Citi’s offerings may also include discretionary and formulaic incentive and retention awards. Citi offers competitive employee benefits, including medical, dental & vision coverage; 401(k); life, accident, and disability insurance; and wellness programs. Citi also offers paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays. For additional information regarding Citi employee benefits, please visit citibenefits.com. Available offerings may vary by jurisdiction, job level, and date of hire. Anticipated Posting Close Date:
Jan 01, 2026 Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi. View Citi’s EEO Policy Statement and the Know Your Rights poster.
#J-18808-Ljbffr