Information Security Engineer

• Defining criteria and standards for the use of Security Access Control Lists (ACL’s) aligned with Citi’s risk appetite.
• Define metrics for evaluation and reporting connectivity risk.
• Define and develop test methodologies and verifications for the effectiveness of Security ACLs.
• Desing framework and automation for managing Security ACL’s
• Manage approval of Security ACLs
• Own and maintain the product life cycle of the products belonging to the Security ACL’s management solution (software/hardware versions, patch management, vulnerability threat management, End of Support) from an engineering point of view
• Engage with other engineering streams, Architecture forums and Citi businesses to develop solutions to meet current and future operational and security requirements in accordance with Citi certification standards and procedures.
• Maintain relationship with key industry partners and vendors in the security field

• At least 3 years working experience in Python development
• Infrastructure experience and automation experience
• Deep understanding of TCP/IP technologies
• Firewall, IDS/IPS knowledge is required
• The candidate will have strong understanding of Technology Risk Management, and Information Security Principles.
• Experience with threat prevention technologies
• The candidate must have very strong technical writing skills and be able to communicate ideas and technical designs clearly to both technical and non-technical audiences
• The candidate must be comfortable in working across geographies due to the global nature of the team
• University / College degree or equivalent industry/technology knowledge

Please attach your CV in English.