Citi CIC - Information Security Incident Management (SIM) Manager - SVP - Warren, NJ in Warren Township, New Jersey

  • Primary Location: United States,New Jersey,Warren

  • Education: Bachelor's Degree

  • Job Function: Technology

  • Schedule: Full-time

  • Shift: Day Job

  • Employee Status: Regular

  • Travel Time: Yes, 10 % of the Time

  • Job ID: 17057450


About Citi

Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.Our core activities are safeguarding assets, lending money, making payments and accessing the capital markets on behalf of our clients.

Citi’s Mission and Value Proposition at explains what we do and Citi Leadership Standards at explain how we do it. Ourmissionis to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. We strive to earn and maintain our clients’ and the public’s trust by constantly adhering to the highest ethical standards and making a positive impact on the communities we serve. Our Leadership Standards is a common set of skills and expected behaviors that illustrate how our employees should work every day to be successful and strengthens our ability to execute against our strategic priorities.

Diversity is a key business imperative and a source of strength at Citi. We serve clients from every walk of life, every background and every origin. Our goal is to have our workforce reflect this same diversity at all levels. Citi has made it a priority to foster a culture where the best people want to work, where individuals are promoted based on merit, where we value and demand respect for others and where opportunities to develop to are widely available to all.

Citi's SIRT Incident Management Team is a global team that manages all information security incidents for Citigroup and its affiliates with team members located globally. As the NAM Manager in the Security Incident Management (SIM) Team, you participate in overseeing the SIRT process globally, while focusing on the NAM specifically, to provide oversight of emergency response to information security incidents to quickly identify, respond, and mitigate the risk from Information Security incidents that impact the firm.

In order to achieve the above results, this position will be responsible for the below functions:

  • Manage analyzing IS Incidents to identify those that pose a significant risk to the Citigroup franchise and its affiliates, and escalating those IS Incidents in accordance with Citigroup policy and procedures.

  • Manage the review of the details of all reported incidents to determine whether they constitute an IS Incident.

  • Manage reviewing and verifying the accuracy of the reported severity level of an incident.

  • Manage our technical subject matter expertise to mitigating risk to impacted parties throughout an incident.

  • Ensure our teams work with internal and external constituents to minimize risks associated with IS Incidents, including convening appropriate Subject Matter Experts to assist investigations and ensuring that all relevant facts of the IS Incident are properly communicated and reflected in the SIM Application.

  • Manage tracking follow-up documentation related to an IS Incident, including Root Cause Analyses (RCAs), Lessons Learned and SIRT Remediation Plans throughout the incident lifecycle till closure.

  • Manage the oversight of the quality, availability, and integrity of the data in the Security Incident Management Application (SIM Application)



  • Bachelor's degree in Computer Science, Computer Eng, Computer Security or Business Administration.

  • 4 or more years as a manager in a security or security related management position

  • 7 or more years working in an Incident Response role with experience in examining suspicious/malicious network events, analyzing malicious code/exploits, and system/network forensics.

  • Experience in advanced computer and network forensic investigative functions relating to computer intrusion, theft of information, and other criminal activity..

  • Experience in crisis management and coordination of technical teams, senior business leaders and legal counsel during Incident Response proceedings.

  • Certified Information Systems Security Professional (CISSP) certified/qualified or ability to actively work towards obtaining certification.

  • Certified GIAC Certified Incident Handler (GCIH) or demonstrated skills and ability to obtain certification.

  • Ability to communicate technical issues to technical and non-technical business representatives.

  • Ability to understand strategic objectives and vision, and work towards those goals.

  • Dedicated and self-driven desire to research current information security landscape.


  • Strong customer and quality-focus is a must.

  • Sound problem resolution, judgment, and decision-making skills required.

  • Excellent organizational, interpersonal, and project management skills

  • Excellent communication skills both written and oral.

  • Self starter and ability to work in a team environment

  • Hard working and self motivated.

  • Able to work effectively under pressure.