The Audit Manager- Cyber/InfoSec Audit, is an intermediate level role responsible for leading an audit team in performing Cyber/IS audits and assessments of Citi’s risk and control environments. In addition to being Audit Lead, the manager is responsible to perform business monitoring and issue validation work. The overall objective is to utilize in-depth subject matter expertise to ensure that the firm meets audit standards and regulations and to work with business leaders to determine solutions for emerging issues.
Responsibilities:
- Consistently develop, execute and deliver audit reports in a timely manner, in accordance with Internal Audit and Regulatory standards
- Review and approve the Business Monitoring Quarterly summary and serve as lead reviewer for all reviews
- Collaborate with teams across the business and determine impact on overall control environment and audit approach
- Manage audit activities for a component of a product line, function, or legal entity at the regional or country level
- Leverage a comprehensive expertise to manage a team
- Advise the business on change initiatives, while advancing integrated auditing concepts and technology adoption
- Recommend interventions to issues, propose solutions for risk and control problems, partner with Directors and Managing Directors to develop approaches for broader corporate issues
- Apply in-depth understanding of Internal Audit standards, policies and regulations to a specific product or function area Qualifications:
- 6-10 years of relevant experience · Related certifications (CISSP, CISA, CISM, CIA or similar) preferred
- Understanding of IS best practices and standards, including the NIST Cybersecurity and Risk Management Frameworks
- Effective comprehension of business side of audit function and subject matter expertise regarding technology application
- Effective verbal, written and negotiation skills
- Effective project management skills
- Effective influencing and relationship management skills
- Demonstrated ability to remain unbiased in a diverse working environment
- Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm’s reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency.
Qualifications:
- 6-10 years of relevant experience
- Related certifications (CISSP, CISA , CISM, CIA or similar) preferred
- Effective comprehension of business side of audit function and subject matter expertise regarding technology application
- Effective verbal, written and negotiation skills
- Effective project management skills
- Effective influencing and relationship management skills
- Demonstrated ability to remain unbiased in a diverse working environment
Education:
- Bachelor’s/University degree, Master’s degree preferred
------------------------------------------------------
Job Family Group:
Internal Audit
------------------------------------------------------
Job Family:
Audit
------------------------------------------------------
Time Type:
------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.
View the "EEO is the Law" poster. View the EEO is the Law Supplement.
View the EEO Policy Statement.
View the Pay Transparency Posting