Cégleírás / Organisation/Department
The CART Reviewer / Manager will be responsible for coordinating and managing systematic reviews of applications delivered by third-party hosting providers, as part of the Cloud Architecture Review Team (CART). This role involves close collaboration with business partners, technology, security, continuity, and risk teams to ensure compliance with Citi’s internal policies, standards, and procedures.
The ideal candidate will have strong knowledge of SaaS and third-party hosting controls, regulatory requirements, and risk assessment methodologies. This position requires excellent communication and stakeholder engagement skills, as well as the ability to work effectively across multiple functions. Experience in managing cross-functional review processes is essential.
Pozíció leírása / Job description
Key Responsibilities
...Contribute to enhance Citi’s competitive edge by playing a role in Third Party Risk Management application and supplier reviews by:
Assessing soundness of application controls.
Ensuring that appropriate governance and oversight rules are implemented and adhered to.
Oversee an organization's cloud workload from security assessment standpoint
Supporting Architecture Review Board members by preparing and reviewing materials.
Drive quality in governance reporting to senior leadership.
Track and trace all necessary materials for the reviews.
Be a partner for Internal Teams looking to introduce new capabilities within their business
Assist with regulatory requests.
Directs the communication of status, issue, and risk disposition to all stakeholders, including Senior Management, on a timely basis.
Collaborate with senior Citi management across business and functional lines as each introduce new capabilities, to keep SaaS activity within our risk tolerance.
Elvárások / Requirements
Knowledge / Experience / Qualifications
Knowledge of 3rd party supplier controls and risk assessment for applications is preferred
Bachelor's Degree in Computer Science, Engineering, or related field (equivalent experience will also be considered)
Minimum 2-3 years’ demonstrated performance in a highly regulated environment. Compliance or similar function preferred.
Strong track record of interacting and working with Senior Leaders.
Experience with technical documentation, API specifications, architectural diagrams etc.
Experience in the design and implementation of Compliance programs and projects.
Demonstrated ability to assess complex issues through root cause analysis and other analytical techniques; structure potential solutions; drive to resolution with senior stakeholders.
Ability to handle conflicting priorities while delivering on multiple concurrent activities with short-term deadlines and changing priorities.
Strong written and oral business communication skills, attention to detail and ability to deliver high quality materials, results oriented.
Effective negotiation skills, a proactive and 'no surprises' approach in communicating issues and strength in sustaining independent views.
Exceptional candidates who do not meet all criteria may be considered for the role based on skills, ability to learn and positive, do what it takes attitude to drive success
Technical skills
Familiar with SharePoint workflow
Expert in MS Office tools
Able to read, understand network diagrams, business process flows
Cloud skills
Amit kínálunk / Offer
- competitive compensation package
- flexible work arrangements
- paid Parental Leave Program
- they offer recognition of your efforts through their compensation package with added benefits:
o Private Medical Care Program and onsite medical rooms in their buildings
o Pension Plan Contribution to Voluntary Pension Fund
o Group Life Insurance
Kapcsolattartó / Information
Lili Wenner:
Boglárka Éva Tóth:
