AMVETS Jobs

Citibank, N.A. seeks an Information Security Prof Group Manager for its Irving, Texas location.

Duties: Drive production incident resolution and root-cause analysis, identify risk in the application information security area, and open Corrective Action Plan requests to address the software vulnerability issues. Provide security oversight for major system designs and monitor the implementation of approved Corrective Action Plans by utilizing risk and control tools. Coordinate with other Citi business and technical teams to identify functional technical requirements and establish and implement technical security solutions. Translate clients business requirements into specific system, application, or process designs, and define and organize the application onboarding processes and the supporting service fulfillment efforts. Define and implement security policies standards and provide periodic information security management reports on application security, regulatory, control, and risk activities. Implement strong controls in the information security services to protect data during transmission and storage, and define appropriate data sources, tools, and techniques for extracting application support data. Analyze trends based on recurring issues and provide solutions to improve processes and platforms. Install, configure, administer, and support CA SiteMinder Webagent on Windows, AIX, and Linux platforms. Configure CA SiteMinder System and Domain objects like Agents, Agent Conf Objects (ACO), Host Conf Objects (HCO), User Directories, Domains, Authentication Schemes, Realms, Rules, Responses, Policies as per business requirements. Monitor SiteMinder/Lightweight Directory Access Protocols (LDAP), work on application integration and troubleshoot using LDAP directory server services, and install/renew certificates on LDAP servers. Provide PingFed/SAML (Security Assertion Markup Language) integration and support, including configuring and supporting PingFed for Web and API applications. Provide PingAccess integration and support, including installing, configuring and supporting PingAccess agent/policies for Web and API applications. Install and renew digital certificates for signing and encryption on PingFed servers. Monitor Citis internal and regulatory policies for both front and back-end financial platforms solution development and operational activities. Provide internal regulatory audit related technical support in the information security area. Continuously improve operating procedures and documentation, and ensure solutions comply with best practices for risk and change management, security policies and controls, user account lifecycle management, and access management. Apply a combination of risk and change management, security policies and controls, user account lifecycle management and access management best practices in solution recommendations. Communicate proposed work plans to the senior management and application support teams. Identify and define appropriate data sources, tools, and techniques for extracting application support data. Establish and operate Support rotate global operations team that functions 24/7/365 with members based out of APAC and NAM region. A telecommuting/hybrid work schedule may be permitted within a commutable distance from the worksite, in accordance with Citi policies and protocols.

Requirements: Requires a Bachelors degree, or foreign equivalent, in Computer Programming, Engineering (any), or related field and 8 years of progressively responsible, post-baccalaureate experience as a Digital Software Engineer Senior Manager, IT Analyst, or related position involving identifying information security risks and developing solutions for applications within the financial services domain. 8 years of experience must include: Application server configuration with customized automation scripts in Windows, AIX, and Linux platforms; Formulating database queries for databases, including Oracle and Microsoft SQL, to improve application performance; Project management tools including JIRA and Miro to create project tracking dashboards and trace individual assignments; Ping Directory Server administration, and LDIF (Lightweight Directory Access Protocol Data Interchange Format) customization to maintain the user authentication data; Utilizing Security Assertion Markup Language (SAML) to design the Service Provider and Identity Provider solutions based on client requirement and troubleshoot open issues; Configuring and tuning PingOne SSO (single sign-on) cloud servers; Ping Identity server administration, installation, configuration, tuning and monitoring through the automation scripts; SiteMinder server administration, SiteMinder unified access management platform, and authentication policies for SSO configuration; WebSphere Application Server, IBM HTTP Webserver, and Apache Webserver for the installation, configuration, and tuning of reverse proxy servers for user interface applications through automation scripting; and Digital application secure enrollment, authorization, and authentication processes, including encryption of data during transmission and storage as well as restricting access of back-end application services. Salary range: $183,900 to $228,000/yr; 40 hrs/wk. Applicants submit resumes at https://jobs.citi.com/. Please reference Job ID #25840011. EO Employer.