Job Description

Duties will include providing vulnerability assessment and penetration testing services to Citi businesses globally through a comprehensive testing process, as well as identifying weaknesses and vulnerabilities within the system and proposing countermeasures. Typical assignments will involve testing of the overall security of critical infrastructure components and applications to ensure they comply with internal policies, security architecture best practices, and industry standards; scanning and discovering rouge hosts, networks, and devices; and scanning and discovering vulnerable systems and applications

Qualifications

Pre-requisites for this position are at least a bachelor's degree with 3 - 7 years of experience on most of the following:

Conducting vulnerability assessments and penetration testing (application and/or infrastructure) and articulating security issues to technical and non-technical audience

Identifying, researching, validating, and exploiting various different known and unknown security vulnerabilities on server and client side

Vulnerability Assessment tools, e.g. Nessus, Qualys, etc.

Deep understanding of OSI model

Security devices, e.g. Firewalls, VPN, AAA systems

OS Security, e.g. Unix, Linux, Windows, Cisco, etc.

Understanding of common protocols, e.g. LDAP, SMTP, DNS, Routing Protocols

Web application infrastructure, e.g. Application Servers, Web Servers, Databases

Web development and programming languages i.e. Python, Perl, Ruby, Java, and/or .Net

Reporting information security vulnerabilities to businesses

Industry-accredited security certifications will be required (the candidate must have or be willing to obtain some of the following certifications - GIAC GXPN, GPEN, CISSP, OSCP). Knowledge of tools and processes used to expose known and undocumented vulnerabilities in various different systems.

Job Family Group:
Technology

Job Family:
Information Security

Time Type:
Full time

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi") invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi .

View the " EEO is the Law " poster. View the EEO is the Law Supplement .

View the EEO Policy Statement .

View the Pay Transparency Posting