Role :
Cloud Detection & Response Engineer - Azure
About Citi :
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions.
Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.
As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients best interests.
As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company.
Our technology solutions are the foundations of everything we do. We keep the bank safe and provide the technical tools our workers need to be successful.
We design our digital architecture and ensure our platforms provide a first-class customer experience. Our operations teams manage risk, resources, and program management.
We focus on enterprise resiliency and business continuity. We develop, coordinate, and execute strategic operational plans.
Essentially, Enterprise Operations & Technology re-engineers client and partner processes to deliver excellence through secure, reliable, and controlled services.
Trust is part of our DNA at Citi. As such, we take safeguarding our customer data very seriously. The Chief Information Security Office (CISO) is made up of deeply dedicated and talented colleagues who work together to ensure the safety of Citis and our clients assets and information.
We manage information security as an end-to-end program one with a clear mandate and accountability. Our mission is to continually execute and enhance a global security program that is fully anchored to modern control and security frameworks, fully aligned with the technology of the firm, threat-focused and data-driven, and deeply integrated across all Citi businesses globally.
Being talent-driven, we are focused on attracting, developing, and retaining diverse and inclusive talent with a high technical skill level.
As a member of our team we will provide you with career development opportunities at all stages of your career. Our employees model a passion for protecting Citi and our clients and believe in treating others with dignity and respect.
Our commitment to diversity includes a workforce that represents the clients we serve globally from all walks of life, backgrounds, and origins.
We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all.
Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride.
If you are a problem solver who seeks passion in your work, come join us. Well enable growth and progress together.
Cloud Detection & Response Engineer - Azure
As a Senior Cloud Detection and Response Engineer, you will be responsible for developing, implementing, and managing advanced cloud detection and response strategies.
You will leverage your expertise in Azure, detection engineering, and cloud-native technologies to protect our cloud infrastructure and ensure the security and integrity of our systems.
Key Responsibilities :
- Develop and implement detection engineering strategies for Azure cloud environments.
- Create and manage detection-as-code pipelines to automate threat detection and response.
- Design, develop, and maintain software solutions within the SDLC to enhance cloud security posture.
- Utilize Splunk for security monitoring, log management, and incident response.
- Work with Cloud Security Posture Management (CSPM) and Cloud Native Application Protection Platform (CNAPP) solutions to continuously improve cloud security.
- Collaborate with cross-functional teams to ensure security best practices are integrated into cloud architectures and development processes.
- Conduct regular security assessments, vulnerability testing, and incident response simulations.
- Stay updated with the latest cloud security trends, threats, and technologies to proactively address potential security issues.
- Mentor and provide guidance to junior engineers, fostering a culture of security excellence.
Qualifications :
- Proven experience (3+ years) in cloud detection and response, with a focus on Azure.
- Expertise in detection engineering and developing detection-as-code pipelines.
- Strong background in software development within a well defined SDLC, using language such as python or golang.
- In-depth experience with detection technologies, such as SIEM, CSPM and CNAPP platforms.
- Deep understanding of cloud-native engineering principles and best practices.
- Strong analytical and problem-solving skills, with the ability to think like an attacker.
- Excellent communication and teamwork skills.
- Relevant certifications, e.g. Azure Security Engineer Associate are desirable.
Preferred Skills :
- Experience with infrastructure as code (IaC) tools such as Terraform.
- Experience working with the MITRE ATT&CK knowledge base.
- Experience with Attack Simulation / Detection Engineering tools, e.g. Splunk Attack Range, Atomic Red Team
- Knowledge of container security and orchestration tools like Kubernetes.
- Familiarity with DevSecOps practices and integrating security into CI / CD pipelines.
- Strong scripting skills (Python, Bash).
About Citi
Citi is a preeminent banking partner for institutions with cross-border needs, a global leader in wealth management and a valued personal bank in its home market of the United States.
Citi does business in more than 160 countries and jurisdictions, providing corporations, governments, investors, institutions and individuals with a broad range of financial products and services.
Additional information may be found at www.citigroup.com Twitter : @Citi YouTube : www.youtube.com / citi Blog : http : / / blog.
citigroup.com Facebook : www.facebook.com / citi LinkedIn : www.linkedin.com / company / citi .
Job Family Group : Technology
Technology
Job Family : Information Security
Information Security
Time Type : Full time
Full time
Primary Location :
Irving Texas United States
Primary Location Full Time Salary Range :
$125,760.00 - $188,640.00
In addition to salary, Citis offerings may also include, for eligible employees, discretionary and formulaic incentive and retention awards.
Citi offers competitive employee benefits, including : medical, dental & vision coverage; 401(k); life, accident, and disability insurance;
and wellness programs. Citi also offers paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays.
For additional information regarding Citi employee benefits, please visit citibenefits.com. Available offerings may vary by jurisdiction, job level, and date of hire.
Anticipated Posting Close Date :
Jul 03, 2024
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi) invite all qualified interested applicants to apply for career opportunities.
If you are a person with a disability and need a reasonable accommodation to use our search tools and / or apply for a career opportunity review Accessibility at Citi .
View the " EEO is the Law " poster. View the EEO is the Law Supplement .
View the EEO Policy Statement .
View the Pay Transparency Posting