ICG Technology Risk & Controls – Controls Lead (C10)
Bogotá, Colombia
hace 4 días

A Technology Control Lead is required to assist in implementing and maintaining a cohesive, effective, efficient, coordinated, and consolidated controls governance model in support of ICG Technology.

Working closely with a dynamic business in a large and diverse environment, you will :

  • Be responsible for establishing strong working relationships with Application Development, Information Security, Continuity of Business, as well as other Business / Operations / Infrastructure Risk Management teams.
  • Reports and analyzes specific follow-ups for technology dashboard metrics (Project Quality Control, Issue and CAP management, End of Vendor Support, Production Access Control, Vulnerability assessments, SDLC documentation compliance, Engagement Form submission, FID management, CoB tests of applications, Entitlements reviews - EERS, DB compliance exceptions in FortiDB, SSH trust public key exceptions, Citi SSO, Export license, Employee Due Diligence reviews, Third Party management, and Cross Border Data Clearance).
  • Applies technical knowledge to monitor dashboard metrics, exceptions, and initiate escalations.
  • Collects evidence for the Manager’s Control Assessment (MCA) process and participates in manual testing tasks.
  • Collaborate with TISOs and BISOs to identify, track, and resolve information security deviations.
  • Collaborate with the CoB Coordinator to address supporting actions of Technology teams.
  • Participates in meetings with Senior Technology Managers and their teams.
  • Provide assistance to application owners / management team to ensure Risk and Control issues and initiatives are addressed timely.
  • Oversee technology components of Internal and External audits. Assist development teams in responding to audit requests, perform review of work for completeness and accuracy as needed.
  • Identify control deficiencies through technology self-assessment testing, risk and control initiatives, and BAU meetings / discussions.
  • Monitor progress of corrective action plans.

  • Work with the Risk and Control teams to analyze the latest program and project scorecards, preparing executive summary reports for IT management.
  • Facilitate compliance with Citigroup Policies, Standards and Regulations
  • Perform and report on trend analysis, identifying opportunities for process improvements.
  • Knowledge / Experience :

  • Experience performing IT Business Analysis, Project Management or similar work required.
  • Minimum of 2 years of experience in Audit, Information Security or Risk Management.
  • Awareness and execution of the Managers Control Assessment (MCA), Governance, Risk & Compliance (GRC) or other technology self-assessment processes is an advantage.
  • Knowledge of service management (ITIL) with previous working experience in process improvements is an advantage.
  • Previous experience performing Internal and / or External Audit coordination is an advantage.
  • Previous experience in Production Support and Application Development roles is an advantage.
  • Industry certifications, such as CISA, CISSP, and PMP would be an advantage.
  • Bachelor’s Degree Required.
  • Skills :

  • Excellent written and verbal communication skills, in English and Spanish.
  • Good organizational skills, ability to work under pressure, and prioritize within tight deadlines while maintaining total accuracy.
  • Ability to influence and quickly earn the confidence of others.
  • High level of attention to detail.
  • Self starter and able to work in a diverse, global environment.
  • Ability to analyze large amounts of data, decipher items meaningful to the development unit covered, and determine corresponding risks.
  • Ability to work as part of a team and also independently under own supervision.
  • Possess the ability to develop and maintain good working relationships with various levels of management.
  • Ability to coordinate / manage initiatives from end-to-end with minor supervision.
  • Strong knowledge of Microsoft Office with Excel, Outlook, and PowerPoint skills.
  • Strong affinity to manage Control practices demonstrating a pragmatic risk-based approach.
  • Competencies :

  • Formulates and defines system scope and objectives for complex projects through research and fact-finding combined with an understanding of applicable business systems and industry standards.
  • Consults with users and clients to solve issues / problems through in-depth evaluation of business processes, systems and industry standards; recommends solutions.
  • Considers the business implications of the application of technology to the current business environment; identifies and communicates risks and impacts.
  • Applies comprehensive understanding of how multiple areas collectively integrate to contribute towards achieving business objectives.
  • Provides evaluative discernment based on analysis of factual information in complicated and unique situations.
  • Appreciates differences in style or perspective and uses differences to make valuable contributions to decisions or actions and organizational success.
  • Grade : All Job Level - All Job FunctionsAll Job Level - All Job Functions - CO

    Time Type : Full time

    Citi is an equal opportunity and affirmative action employer.

    Minority / Female / Veteran / Individuals with Disabilities / Sexual Orientation / Gender Identity.

    Citigroup Inc. and its subsidiaries ("Citi ) invite all qualified interested applicants to apply for career opportunities.

    If you are a person with a disability and need a reasonable accommodation to use our search tools and / or apply for a career opportunity CLICK HERE.

    To view the "EEO is the Law" poster CLICK HERE. To view the EEO is the Law Supplement CLICK HERE.

    To view the EEO Policy Statement CLICK HERE.

    To view the Pay Transparency Posting CLICK HERE.

    Añadir a los favoritos
    Eliminar de mis favoritos
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Formulario de postulación