Citigroup Global Markets Inc. seeks a Business Risk Group Manager for its Tampa, Florida location.
Duties: Monitor and lead the creation of service level agreements (SLA) and contracting activities that involve Information Security (IS) to ensure compliance with relevant laws and regulations. Use the expertise in IS area to ensure all applicable control measures are implemented in business engagements. Identify potential IS risks during new engagement onboarding process and ensure appropriate stakeholders are aware and held accountable for those risks. Ensure contracts and SLAs entered with suppliers meet the organization's standards. Assist in assessment of new and amended contract and SLA clauses by reviewing applicable laws, regulations and internal measures for sensitive data protection. Provide a robust first line of defense against policy breach and minimize operational risks for Citi Global Markets business. Develop corrective action language for IS gaps and ensure risk closure meets Citi requirements or industry best practices. Monitor critical and high-risk third-party relationships and those third parties that have access to Citi’s confidential information. Identify third parties that have an elevated fraud risk associated with the product and services they provide and collaborate with appropriate stakeholders to remediate that risk. Support business stakeholders’ compliance with legal and regulatory requirements such as the General Data Protection Regulation (GDPR), Digital Operational Resilience Act (DORA), California Consumer Privacy Act (CCPA), and other global privacy regulations. Proactively identify gaps in existing business system and operational design, and ensure proper governance and controls are implemented through managed procedural changes. Maintain external third-party inventory and ensure critical suppliers are mapped in Management Control Assessment (MCA). Document quarterly assessment of risk appetite, thresholds, and key indicators and metrics. Supervise and train staff in the aforementioned risk and control responsibilities. Manage staff of Third-Party Risk Officers. A telecommuting/hybrid work schedule may be permitted within a commutable distance from the worksite, in accordance with Citi policies and protocols.
Requirements: Requires a Bachelor’s degree, or foreign equivalent, in Cybersecurity, Information Security, or related field and 10 years of progressive, post-baccalaureate experience as a Business Risk Manager, Operational Risk Manager, Information Security Fraud Analyst, or related position involving business operation and compliance risk management with focus on third-party engagement and data security in the global financial services industry. 10 years of experience must include: Assessment of information securities systems, identification of gaps, and implementation and documentation of remedies and mitigation actions; Vendors monitoring for regulatory compliance and issues management; Comprehensive understanding of Regulatory compliance and industry standards including GDPR, DORA, CCPA and other global regulations; Knowledge of Information Security standards (SOC2, ISO 27001); and Reporting Tools: MS Excel, SharePoint, MS Teams, Visio, MS PowerPoint. At least 6 years of experience must include: Contract and SLA reviews; Manager Control Assessment; and Evaluation of vendors and fraud risks posed by the products and services offered. Applicants submit resumes at https://jobs.citi.com/. Please reference Job ID #25914335. EO Employer.
Wage Range: $140,800 to $140,800
Job Family Group: Risk Management
Job Family: Business Risk and Control
------------------------------------------------------
Job Family Group:
------------------------------------------------------
Job Family:
------------------------------------------------------
Time Type:
Full time------------------------------------------------------
Primary Location:
Tampa Florida United States------------------------------------------------------
Primary Location Full Time Salary Range:
In addition to salary, Citi’s offerings may also include, for eligible employees, discretionary and formulaic incentive and retention awards. Citi offers competitive employee benefits, including: medical, dental & vision coverage; 401(k); life, accident, and disability insurance; and wellness programs. Citi also offers paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays. For additional information regarding Citi employee benefits, please visit citibenefits.com. Available offerings may vary by jurisdiction, job level, and date of hire.
------------------------------------------------------
Most Relevant Skills
Please see the requirements listed above.------------------------------------------------------
Other Relevant Skills
For complementary skills, please see above and/or contact the recruiter.------------------------------------------------------
Anticipated Posting Close Date:
Dec 16, 2025------------------------------------------------------
Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.
If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.
View Citi’s EEO Policy Statement and the Know Your Rights poster.