At a Glance
- Tasks: Lead cyber risk management initiatives and safeguard financial stability at a global bank.
- Company: Join Citi, a leading global financial institution with a focus on innovation.
- Benefits: Enjoy competitive salary, generous holiday allowance, and private medical insurance.
- Other info: Be part of a diverse team committed to positive social impact and employee well-being.
- Why this job: Make a real impact in cybersecurity while working in a dynamic, hybrid environment.
- Qualifications: Experience in Cyber & Information Security Risk Management and strong leadership skills required.
The predicted salary is between 80000 - 100000 £ per year.
Are you looking for a career move that will put you at the heart of a global financial institution? Then bring your skills in risk identification, project management and communication to Citi's Business Disruption Risk Team.
This role is critical for safeguarding the bank's financial stability and sustained growth by expertly managing Cyber & Information Security risks. The position involves identifying, assessing, measuring, monitoring, and reporting on these risks, ensuring all operations align with the Markets defined risk appetite. This professional provides a comprehensive view of the cyber threat landscape, enabling proactive anticipation, assessment, and mitigation of potential security risks across the Markets Business.
What you'll do:
- Proactively identify and assess evolving Cyber & Information Security risks across the business and technology landscape.
- Design and lead strategic initiatives to enhance cyber and information security controls and processes, ensuring alignment with risk appetite.
- Collaborate effectively with business unit leaders and diverse stakeholders to embed robust cyber risk management practices into business operations.
- Partner with 2nd line functions (e.g., Information Security Compliance, Operational Risk Management) to interpret and apply cyber risk requirements and policies accurately.
- Engage with 3rd line functions (e.g., Internal Audit, Compliance Assurance) to facilitate independent assessments, address findings, and drive resolution of cyber and information security issues.
- Maintain comprehensive oversight of cyber risk posture through continuous monitoring of metrics, activity, and corrective action plan execution.
- Prepare and present clear, concise updates on emerging cyber risks, control effectiveness, and strategic enhancements to senior management and governance committees.
- Ensure rigorous adherence to information security policies and regulatory requirements, including maintaining a robust Manager's Control Assessment (MCA) for Cyber & Information Security.
- Serve as a primary liaison for all internal and external audit engagements related to Cyber & Information Security.
- Lead and mentor a team focused on cyber risk assessment, regulatory compliance, and efficient reporting and resolution of security-related matters.
What we'll need from you:
- Significant progressive experience in Cyber & Information Security Risk Management, IT Risk, Security Compliance, or IT Audit, with significant experience in a financial services environment.
- Demonstrated expertise in identifying, assessing, measuring, monitoring, and reporting on complex cyber and information security risks.
- Proven track record of designing and leading initiatives to enhance security controls and processes.
- Extensive experience collaborating with and managing expectations of diverse stakeholders, including business unit leaders, technical teams, and 2nd and 3rd line functions (e.g., Information Security Compliance, Operational Risk, Internal Audit, Regulators).
- Strong understanding of evolving cyber threat landscapes, regulatory requirements (e.g., NIST, ISO 27001, GLBA), and industry best practices.
- Proficient in maintaining risk and control frameworks, including Manager's Control Assessment (MCA), specifically for Cyber & Information Security risks.
- Exceptional communication and presentation skills, with the ability to articulate complex cyber risk concepts and their business impact to senior management and governance committees.
- Ability to act as a primary liaison for all audit and regulatory engagements pertaining to Cyber & Information Security.
- Strong leadership capabilities with experience in leading and mentoring risk management professionals.
- Bachelor's degree required; Master's degree or relevant professional certifications (e.g., CISSP, CISM, CRISC) preferred.
What we can offer you:
- Generous holiday allowance starting at 27 days plus bank holidays; increasing with tenure.
- A discretional annual performance related bonus.
- Private medical insurance packages to suit your personal circumstances.
- Employee Assistance Program.
- Pension Plan.
- Paid Parental Leave.
- Special discounts for employees, family, and friends.
- Access to an array of learning and development resources.
Sounds like Citi has everything you need? Then apply to discover the true extent of your capabilities.
SVP, Cyber & Information Security Risk Leader employer: Citigroup, Inc.
Citi is an exceptional employer that prioritises the well-being and growth of its employees, offering a dynamic work environment in London with a hybrid working model. With a strong focus on professional development, generous benefits including a competitive salary, extensive holiday allowance, and private medical insurance, Citi fosters a culture of collaboration and innovation, making it an ideal place for those looking to make a meaningful impact in the field of Cyber & Information Security Risk Management.
StudySmarter Expert Advice🤫
We think this is how you could land SVP, Cyber & Information Security Risk Leader
✨Tip Number 1
Network like a pro! Reach out to your connections in the industry, especially those at Citi. A friendly chat can open doors that a CV just can't.
✨Tip Number 2
Prepare for interviews by diving deep into the latest trends in Cyber & Information Security. Show us you know your stuff and can talk about real-world applications!
✨Tip Number 3
Practice your storytelling skills. We want to hear about your past experiences in risk management and how you've tackled challenges. Make it engaging!
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets the attention it deserves. Plus, we love seeing candidates who take that extra step.
We think you need these skills to ace SVP, Cyber & Information Security Risk Leader
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to highlight your experience in Cyber & Information Security Risk Management. Use keywords from the job description to show that you understand what we're looking for.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Share specific examples of how you've identified and managed cyber risks in the past, and explain why you're excited about joining our team at Citi.
Showcase Your Communication Skills:Since this role involves presenting to senior management, make sure to demonstrate your communication skills in your application. Use clear and concise language to convey your ideas and experiences.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands and shows your enthusiasm for the role!
How to prepare for a job interview at Citigroup, Inc.
✨Know Your Cyber Risks
Before the interview, dive deep into the current cyber threat landscape. Familiarise yourself with recent incidents and trends in Cyber & Information Security, especially within financial services. This will not only show your expertise but also demonstrate your proactive approach to risk management.
✨Showcase Your Leadership Skills
Prepare examples of how you've led teams or initiatives in the past. Highlight your experience in mentoring professionals and collaborating with diverse stakeholders. Be ready to discuss specific projects where you enhanced security controls or processes, as this aligns perfectly with what they’re looking for.
✨Master the Regulatory Landscape
Brush up on key regulations like NIST, ISO 27001, and GLBA. Be prepared to discuss how you've applied these standards in your previous roles. This knowledge will be crucial in demonstrating your ability to maintain compliance and manage risks effectively.
✨Communicate Clearly and Confidently
Practice articulating complex cyber risk concepts in a straightforward manner. During the interview, focus on presenting your ideas clearly, especially when discussing their impact on business operations. Strong communication skills are essential for engaging with senior management and governance committees.
