Skip Navigation
open main navigation menu
city landscape


The health and safety of our colleagues and candidates for employment are our highest priority. Accordingly, Citi continues to monitor the COVID-19 situation closely. We have implemented precautionary measures across our firm globally, including conducting all candidate interviews virtually on a temporary basis until further notice where needed.







Technical Information Security Officer (TISO) - GFT - Irving

Locations: 歐文, 德克萨斯州 Job Function: Operations & Technology Employee Status: Regular Job ID: 20223537


•Develop and execute Information Security strategy to proactively identify risk and drive remediation

•Conduct issue risk analysis and present recommendations to IS management and stakeholders.

•Develop and manage program metrics and performance through tracking/reporting and active engagement with stakeholders for continuous service improvement.

•Provide oversight and governance to engineering and operating processes.

•Implement security improvements by assessing baseline, evaluating trends, and anticipating requirements.

•Act as point of contact to executive leadership for dimensioning, managing and driving remediation of information security risk within the context of legacy assets

•Develop horizontal view of risk posture across multiple technology domains.

•Improve processes, by removing deficiencies and enhancing current tools that reduce an overall risk profile

•Work with various risk and information security teams in presenting recommendations for improvement to technology subject matter experts and management.

•Engage with cross sector, global and risk teams in the review and reengineering of key controls and processes to effectively and efficiently manage IS issues.

•Contribute to, interpret and disseminate IS policy, standards and awareness throughout the business units.

•Additional ad-hoc IS & Risk related initiatives and projects

•Escalate significant risks to the Regional/Sector IS Leadership for information or required actions

•Attend and participate in internal/external IS forums and risk committees when necessary

•Ensure security practices/standards compliance and reduce security risks through enhancing controls and minimizing weaknesses in Citi’s applications portfolio

•Ensure audits are passed with a satisfactory audit rating for all IS topics

•Ensure non-compliant items are resolved through coordination with Business Manager and business staff

•Increase communication efficiency with cross-sector ISOs to resolve security issues that span multiple businesses

•Has the ability to operate with a limited level of direct supervision.

•Exercise independence of judgement and autonomy.

•Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.


•6-10 years of relevant experience, preferable in information security

•Proficient in interpreting and applying policies, standards and procedures

•Proven influencing and relationship management skills

•Proven analytical skills

•Excellent problem solving abilities and analytical skills. Ability to see the big picture with high attention to critical details.

•Strong work ethic, excellent use of discretion and judgment.

•Results oriented, is able to achieve desired outcomes independently and at appropriate priority levels.

•Well organized with follow-up abilities; has a track record of effectively managing multiple tasks in a dynamic environment.

•Ability to work under pressure, meet challenging deadlines.

•Demonstrated ability to work effectively as part of a team, as well as, independently.

•Effective communicator; has excellent writing and verbal skills.

•Has the ability to influence others and shape/obtain desired outcome in areas outside of direct control.

•Demonstrated ability to develop and implement process improvement initiatives.


•Technical background in Windows/Unix Operating systems, security technologies, and network architectures.

•Knowledge of complex query for data analysis.

•Knowledge of security assessment methodology and risk management process.

•Knowledge of SQL and other business analytics software is a plus

•Strong knowledge of industry standards as they relate to information security management.


•Bachelor’s degree/University degree or equivalent experience

•Master’s degree preferred

•Professional Certifications preferred, such as CISSP, CCSP, CISA, CISM and ECH

This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.


Job Family Group:



Job Family:

Information Security


Time Type:

Full time


Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting