About Citi:
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.
As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients' best interests. Our technology solutions are the foundations of everything we do, from keeping the bank safe to managing global resources and providing the technical tools our workers need to be successful.
Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride.
The Role:
The Senior Infrastructure Penetration Tester plays a vital role in Citi's Vulnerability Assessments (VA) team and is responsible for providing VA services to all Citi businesses and technology teams globally. The position will be identifying weaknesses and vulnerabilities within the Citi infrastructure and is part of a larger, global team that collectively provides VA support to all of Citi's business groups.
Responsibilities
Provide Vulnerability Assessment/Penetration Testing services to Citi businesses globally through a comprehensive testing process
Participate in special projects ranging from rush testing of critical components to architecture reviews with sister teams
Serve as an SME for Infrastructure Penetration Testing in cross-functional efforts/projects
Participate in the enhancement of testing processes and methodologies
Identify weaknesses and vulnerabilities within the system, exploit them, and propose countermeasures
Validation of the overall security of critical infrastructure components and applications
Scan systems and applications, leverage initial results to build a subsequent attack methodology and execute effectively
Report Information Security vulnerabilities to businesses in an actionable manner
Qualifications
3-5 years' of relevant experience required in Offensive Security
Strong hands-on experience with Vulnerability Assessment/Enumeration tools
Demonstrate hands-on experience with penetration testing tools
Deep understanding of TCP/IP and Infrastructure stacks
Demonstrable experience working effectively in Enterprise environments
Understanding of defensive security principles
OS and Network Security Experience
Understanding of common protocols
Hands-on experience with MITRE ATT&CK Framework or similar
Experience with TTPs, IOCs, and advanced threat analysis
Threat Mapping experience
Scripting (Bash, Python, etc.)
Reverse Engineering / Exploit Development
Design experience/understanding on infrastructure/systems
Exceptional interpersonal skills and a proven track record of working effectively with globally diverse teams
Ability to understand new and emerging technologies rapidly
Ability to effectively document and explain exploits/vulnerabilities
Demonstrable proficiency in producing comprehensive penetration testing reports with actionable recommendations
Education
Bachelor's Degree or equivalent work experience
OSCP, OSCE, GXPN, CREST preferred or similar demonstrable experience
Nice to have:
CCNP, CISSP, TOGAF/SABSA, Microsoft/Linux Certifications
This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
Job Family Group:
Technology
Job Family: Information Security
Time Type: Full time
Primary Location: Fort Lauderdale Florida United States
Primary Location Full Time Salary Range: $117,440.00 - $176,160.00
In addition to salary, Citi's offerings may also include, for eligible employees, discretionary and formulaic incentive and retention awards. Citi offers competitive employee benefits, including: medical, dental & vision coverage; 401(k); life, accident, and disability insurance; and wellness programs.
Anticipated Posting Close Date: Aug 19, 2024
Citi is an equal opportunity and affirmative action employer.
Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#J-18808-Ljbffr
