Job Details
Authentication Platforms Integration team is responsible for providing support services to all Citi businesses and technology teams globally. The Information Security role is part of a larger global team responsible for providing Infra support for multiple Platform based application solutions to all businesses across Citi.
The infrastructure integration (L3) role will be responsible for the support of multiple critical security infrastructures / applications including but not limited to Token technologies, End-to-end encryption Solutions, Identity and Access management tools and Automation infrastructures to name a few.
Ideal candidate should be able to work in a well-defined team structure as well as independently with minimal supervision. Candidate should have a good command of English and possess strong oral and written business communication skills. Candidate should be a fast-learner and should be able to work well under pressure and competing priorities.
Key Responsibilities
- Deploy and manage day-to-day operations of critical security infrastructure.
- Function as an Infrastructure Subject Matter Expert (SME) for the security infrastructure under your responsibility
- Ensure compliance of all the supported applications with Citi-published standards
- Perform post-deployment testing of solutions in individual environments
- Engage with strategic vendors, external to the organization, to investigate problems and understand product functionality, influence enhancements and roadmap as required to meet organizational goals
- Support internal and external customers in the adoption of the Authentication services
- Collaborate with production teams to assist in integration-related activities
- Troubleshooting incidents and problems in a timely resolution as defined in SLAs
- Document resolutions in Knowledge Base tools
- Capacity, Performance and Stability reporting and management
- Lead initiatives to develop/enhance tools for system monitoring and maintenance improvements
Regular weekend work and working on shifts is expected.
Experience and SkillsMust-have Skills
8+ years’ relevant industry experience in one or more of the following:
- Experience with one or more below:
- Deploying Java-based/Node.JS-based Distributed Application environments.
- Sailpoint Automation
- Identity Access Management on Public Cloud such as AWS, GCP, Azure.
- Should have managed one or more Enterprise Authentication products.
- Onboarding new applications to OpenShift Container service environment.
- Network concepts and understanding of CISCO networking devices.
- Experience with one or more of Enterprise application servers such as IBM WebSphere, Apache Tomcat/HTTP Server, Tivoli Monitoring, Wide Load balancer setup, Virtual IP configurations.
- Experience in Ansible playbook creation for automation, Splunk Dashboard setup, RLM or Udeploy tool.
- Analyzing Authentication application metrics and deep knowledge on how to onboard legacy application to Cloud container platform services.
- Experience working in a Linux-based environment (RHEL, Ubuntu) that includes being conversant in terminal commands and developing shell or Perl scripts.
- Experience with critical production server support, application upgrades and project lifecycle/ SDLC processes
- Experience in Installing and managing APPs on UNIX/Linux OS.
- Deep understanding of Encryption protocols used in Transport-Layer Encryption, Data Transmission and At-Rest Encryption and Key Exchange protocols
- Experience in Multi-factor authentication and Biometric deployments is a significant plus
- Familiarity with Analytical tools like Splunk, AppDynamics etc.
- Experience in Cloud technologies like OpenShift, Terraform, CI/CD Pipeline, deep understanding of micro services.
- Familiarity with IT Service Management processes based on the ITIL framework.
- Production network infrastructure such as Firewalls, DNS, Software/Hardware Load balancers, Proxies
- Familiarity of Compliance and Risk-management frameworks and methodologies (ISO27002, SDLC)
Education
- Bachelor's Degree (Engineering, Mathematics, or IT related field) or equivalent work experience
- Security certifications such as CISSP is desired but not mandatory. However, willingness to complete certification would be expected.
------------------------------------------------------
Job Family Group:
Technology------------------------------------------------------
Job Family:
Information Security------------------------------------------------------
Time Type:
Full time------------------------------------------------------
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.
View the "EEO is the Law" poster. View the EEO is the Law Supplement.
View the EEO Policy Statement.
View the Pay Transparency Posting