Cloud Security Architect, VP

Learn more about Citi


Cloud Security Architect, VP

New York, NY +1 location
Full Time
  • Responsibilities

    Job Description:

    Identity and Access Management (IAM) in the cloud is highly complex and often considered as a new security perimeter. Many cloud breaches today exploit misconfigurations and vulnerabilities in IAM. Citi is looking for an experienced engineer or architect to join the Cloud Security Engineering team to define cloud IAM strategy and implement security services and controls to enable Citi to leverage public cloud securely and efficiently. This is a senior level position and the successful candidate should have expertise in building enterprise software solutions, extensive experience in using services provided by AWS or GCP and foundational knowledge in information security.

    Key Responsibilities:

    • Collaborate with cross-functional cloud teams in Citi including security, infrastructure, service engineering and business application teams to define and implement IAM roles and policies required to build, support and consume services in public cloud.
    • Define and develop preventive guardrails, detective controls, and automated alerts and remediation to ensure IAM implementation in all cloud environments are compliant with Citi’s cloud security standards and policies.
    • Build automation software to enable self-service access requests and remediation for over privileged or unused access.
    • Define SDLC for IAM roles and policies and develop IAM CI/CD pipeline with automated testing and validation.
    • Define governance process and develop tools for managing cloud IAM inventory and entitlement review.
  • Qualifications
    • Bachelor’s degree or equivalent work experience
    • 6+ years of relative work experience
    • Highly motivated self-starter with excellent interpersonal and communication skills
    • Experience in the design and implementation of enterprise software solutions involving cross functional collaboration
    • Expertise in a major programming language such as Python or Java and development, build and testing tools such as Eclipse, SVN, Git, Ant, Maven, Jenkins and SoapUI
    • Hands-on experience with AWS or GCP services and public cloud technologies
    • Familiarity with DevOps, CI/CD and agile methodology
    • Experience with JSON, YAML, CloudFormation and Terraform
    • Experience with database or directory services is a plus

    Job Family Group:


    Job Family:

    Systems & Engineering

    Time Type:

    Citi is an equal opportunity and affirmative action employer.

    Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

    Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

    View the "EEO is the Law" poster. View the EEO is the Law Supplement.

    View the EEO Policy Statement.

    View the Pay Transparency Posting

  • Industry
    Financial Services
  • Locations
    New York, NY • Irving, TX
  • Fun Fact
    By 2020, Citi will source renewable power for 100% of its global energy needs.
  • About Us

    Citi enables growth and progress for individuals, communities, institutions and governments around the world and has been doing so for more than 200 years. They recognize that their ability to best serve their clients and customers comes from the diverse and engaged employee base and they work tirelessly to deliver opportunities for growth and development to the most talented people. This is a place where the best come to get better.