AVP - Vulnerability Assessment Analyst (Hybrid)

Posted:
12/5/2024, 11:07:41 AM

Location(s):
Singapore, Singapore

Experience Level(s):
Junior ⋅ Mid Level

Field(s):
IT & Security ⋅ Software Engineering

The primary focus of this role is to coordinate vulnerability assessment engagements with our stake holders and liaise with our Internal and external partners. This role requires someone with strong technical, organizational, and management skills to maintain an active presence throughout the lifecycle of a vulnerability assessment engagement.

Responsibilities:

Core responsibilities and Traits include:

  • Liaise between clients and the testing team, to coordinate engagements and ensure the collection of testing artifacts.
  • Act as an application security subject matter expert to assist both businesses and ethical hack partners during vulnerability discussions.
  • Demonstrate Technical, analytical thought process—the ability to identify cause and effect relationships as it applies to application security and Citi standards.
  • Knowledge of OWASP top 10 and SANs top 25
  • Effective time management skills in order manage multiple concurrent deadlines.
  • Have strong technical writing and presentation skills to articulate the vulnerability assessment process to senior stakeholders.
  • Review internal processes and activities to identify potential opportunities for improvement and automation.
  • Create various oversight activity reports to maintain high operational standards and establish further efficiencies.

Qualifications:

  • Bachelor's Degree and/or relevant years of experience
  • 3+ years of experience in Cyber Security and/or relevant Technology role.
  • Problem-solve in a fast-paced environment, understand client requests, provide guidance to Citi businesses to ensure that the vulnerability assessment is conducted swiftly, and participate in technical discussions with stakeholders.

Plus:

Familiarity or hands-on experience in application security testing

Basic understanding of Web/ Mobile / API security and relevant testing tools

Relevant Certifications is a plus not a requirement : GPEN, GWAPT, GMOB, GWEB

#LI-Hybrid

------------------------------------------------------

Job Family Group:

Technology

------------------------------------------------------

Job Family:

Information Security

------------------------------------------------------

Time Type:

Full time

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting