• ROHQ - CISO - Application Security Programs Portfolio Manager Jobs in Philippines

  • Citibank India
  • Philippines

Job Description:

ROHQ - CISO - Application Security Programs Portfolio Manager - 19024450


The APAC Digital Application Security Programs Leader is required to assess and manage technology risks and provide compliance guidance per Citi IS & application security standards As a regional governance leader for the emerging technology space, this individual will define the security methodologies for application development staff and lead regional/emerging technology evaluation in compliance to global application security standards These include Suspicious Activity Detection, Biometrics, Digital, IS Risk Assessment, Security Architecture, and Vendor application security programs

The Global IS Application Security programs team is responsible for managing risk and providing controls and compliance guidance and support to Technology Development Units by ensuring compliance with Citi standards, policies, and procedures, liaising with corporate IS and driving program standards for all sectors This position will expand its capability regionally drive adoption and ensure security requirements and process are implemented effectively

In this role, you must have strong technical acumen and should establish relationships with application managers, domain architects, project managers and corporate IS and other disciplines You will work on some of the most innovative technologies and provide value by solving real world problems that our industry as a whole is facing Your key stakeholders will be application development teams, the business, risk officers, external vendor and regulators Including internal engineering and security assessment teams within the IS organization as a whole

Job Requirements / Key Skills

Clear,thoughtful management and a regular exchange of technical information at the global level to support the programs overall management and direction

Understanding application security issues and threats at a global level and translate them to development practice or tool changes

Work with sector development as well as security engineering and testing teams in a leadership and advisory manner

Work with standardization and regulatory bodies and alliances such as MAS, HKMA, OCC etc

Thorough understanding of application architectures and technology (including web applications, mobile technology, cloud, web 20 technology, identity and access management)

Experience with mobile application security, HTML5, Web Services assessment, identity management will be highly regarded

Thorough understanding of industry and corporate technology standards for Information Security

Familiarity with security hacking tools and techniques

Strong knowledge of software development/deployment methodologies in web/mobile based environments

Strong knowledge of software security for web and mobile applications

Background with mobile hardware, cloud, and software technologies

Strong understanding of information security and risk assessment processes, including threat modeling

SIEM and RBA monitoring including use-case scenarios and attack vectors


8 years work experience in Program/Project Management and IT Risk Controls

Information Security Certifications such as CISSP, CISA or CISM

Expertise in Information Security including Authentication, Biometric systems and Application Security

Cyber security professional with at least 5 years of experience with large, complex environments, CICD security and cloud deployments

Proven application security related experience

Experience working with latest container & cloud environments

Software engineering or inbound product management experience

Passion for innovation and excellence combined with proven ability to execute and deliver

Creative, independent, self-motivated, and strong team player

Strong analytic capabilities and ability to compare between technologies and approaches

Enterprise experience, working with global teams on complex systems

Excellent written and verbal communication skills

Bachelors degree in Computer Science or a related field

Strong knowledge and work experience in Application Development (SDLC), including development processes, frameworks and methodologies (eg CICD, DevOps, Agile, Waterfall, etc)

Profile Summary:

Employment Type : Full Time
Eligibility : Any Graduate
Industry : Banking
Functional Area : IT Software : Software Products & Services
Role : System Security
Salary : As per Industry Standards
Deadline : 19th Feb 2020

Key Skills:

Company Profile:

Citibank Indiaarfix

Salary trends based on over 1 crore profiles

View Salaries

All rights reserved © 2018 Wisdom IT Services India Pvt. Ltd DMCA.com Protection Status