CrawlJobs Logo

Public Cloud Risk and Controls Lead

https://www.citi.com/ Logo

Citi

Location Icon

Location:
Hungary, Budapest

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

Individuals in Assessment & Design are responsible for developing, designing, and implementing controls programs, and providing review and guidance on robust controls design adhering to Citi’s Policies, Standards, and Frameworks. Individuals proactively identify and drive controls enhancements such as automation, standardization and rationalization including transformation execution activities. Includes first line activities for identification, measurement (significance and likelihood), and ongoing assessment of key risks and controls in partnership with relevant process owners to drive management decisions to operate within the firm’s Risk Appetite.

Job Responsibility:

  • Proactive risk identification and corrective action plan coordination
  • Partnership with IA and 2nd Line of Defense, and with Policy Owners when more cloud-friendly policy changes need to be influenced
  • Advise engineers on application of policy
  • Ensure processes are designed with control in mind
  • Coordinate cross border clearance as needed
  • Maintain continual assessment of Management Controls Assessment (MCA) Efficacy for Public Cloud
  • Leverages data to examine impacts to Customer Experience and Regulatory breaks
  • Has the ability to operate with a limited level of direct supervision
  • Can exercise independence of judgement and autonomy
  • Acts as SME to senior stakeholders and /or other team members
  • Provide leadership to drive optimization and efficiencies in projects
  • Assist management in guiding and influencing decisions that conform to business objectives
  • Manage the design, development, and implementation of Citi's comprehensive controls program
  • Assess the effectiveness of existing controls, identifying areas for improvement, and executing necessary changes
  • Continually manage controls enhancements geared towards increasing efficiency and reducing risk
  • Regularly assess the business/function risk appetite in line with changes in the business environment, regulatory requirements, and strategic objectives
  • Work closely with key stakeholders and process owners to drive management decisions aimed at maintaining operations within the firm’s Risk Appetite
  • Collaborate with key stakeholders to assess potential risks, develop risk mitigation activities, and define the acceptable level of risk across various areas of operation
  • Drive execution of Enterprise Risk Management Framework and adherence with Risk Mgmt. / Compliance Policies
  • Collaborate with business and functions to understand control processes and identify potential areas for improvement
  • Stay informed about regulatory changes and industry best practices related to control management, ensuring the controls program aligns with these standards
  • Provide regular updates to senior management on the performance of the controls assessment and design
  • Aid with strategic path buildout for risk and governance plan
  • Actively consult policies and prioritization of codified controls with engineering teams who have multiple concurrent domains such as compute, containers, DB, middleware, etc.
  • Ensure controls are automated and sustainable for cloud scale, and achieve defense in depth
  • Drive transformational change to reduce adoption friction (process bureaucracy that slows down public cloud adoption) while improving sustainability of risk management processes

Requirements:

  • 10+ years relevant work experience in Technology Risk & Controls, or Risk/Security/Compliance organization in a large organization in a heavily regulated industry, with at least 2 years of experience in Public Cloud Risk, Governance, Compliance and/or Control
  • Ability to identify, measure, and manage key risks and controls
  • Track record leading Control related projects and programs
  • Ability to see the big pictures with high attention to critical details
  • Develop and implement strategy and process improvement initiatives
  • Comprehensive knowledge of Citi’s businesses and functions and their risk profiles
  • Developing new ideas and improving current processes to proactively mitigate risks
  • Requires an ability to provide challenge and make recommendation for risk and controls remediation
  • Expert knowledge in the development and execution for controls
  • Proven experience in control related functions in the financial industry
  • Proven experience in implementing sustainable solutions and improving processes
  • Expert understanding of compliance laws, rules, regulations, and best practices
  • Deep understanding of Citi’s Policies, Standards, and Procedures
  • Strong leadership, decision-making, and problem-solving skills
  • Strong analytical skills to evaluate complex risk and control activities and processes
  • Ability to deliver compelling presentations and influence executive audiences
  • Strong sense of accountability and ownership, with strong results orientation
  • Excellent communication skills
  • ability to engage and inspire across stakeholder groups
  • Exceptional command in Microsoft Office suite, particularly Excel, PowerPoint, and Word
  • Experience developing compliance documentation, user documentation, strategy documentation, white papers or project documentation
  • Demonstrable interest in Public Cloud risk identification and mitigation
  • Demonstrated ability to accurately interpret legal and policy documentation
  • Experience working with NIST, COBIT, ITIL, CSA, and/or ISO risk and ITSM frameworks
  • Familiarity with DevOps and Site Reliability Engineering (SRE) practices

Nice to have:

  • Risk certifications such as the CISM, CISSP, CISA, CRISC, CGEIT, CDPSE, etc.
  • Certifications in Public Cloud such as AWS Certified Cloud Practitioner, AWS Certified Security Specialty, or cloud agnostic certifications like CCAK, CCSK, CompTIA Cloud+, CET
  • Experience in an influence management discipline such as project management or product management
  • Experience with data privacy concerns
  • Experience in modern microservices architectures and deployments (docker/kubernetes)
  • Experience working in a distributed, cloud-based environment using Azure/AWS/GCP
  • Experience with cloud infrastructure and data services (compute, storage, networking and others)
  • Experience with Infrastructure as Code (IaC) practices and frameworks
  • Experience working with cloud-based relational and NoSQL databases
What we offer:
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Socially active employee communities with diverse networking opportunities

Additional Information:

Job Posted:
June 06, 2025

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
View All Jobs In This Company
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon
Welcome to CrawlJobs.com
Your Global Job Discovery Platform
At CrawlJobs.com, we simplify finding your next career opportunity by bringing job listings directly to you from all corners of the web. Using cutting-edge AI and web-crawling technologies, we gather and curate job offers from various sources across the globe, ensuring you have access to the most up-to-date job listings in one place.
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Australia Jobs China Jobs Canada Jobs Mexico Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
© 2025 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy