Info Sec Tech Lead Analyst - C13/VP

Employment Type

: Full-Time


: Miscellaneous

The candidate will be working as part of a team to develop, test, certify and deploy the engineering framework for scanning the internally developed applications at Citi. Some additional responsibilities include; work with the development teams to send the application source code to our environment, work to automate the build / scan process and provide L3 support when needed. The scanning environment utilizes Checkmarx and other tools to periodically scan in automation these Citi applications for security vulnerabilities and report the findings to downstream systems.


  • Perform analysis and resolve application issues

  • Install, test, certify and document application system upgrade and enhancements

  • Work with Users to resolve scanning workflow / configuration issues.

  • Application programming skills to write scripted workflows and Java applications / utilities.

  • Code Review and peer review

  • Communications verbal and written with other team members, other teams and vendors

  • Provide application status to team

  • Qualifications:

    Knowledge - Essential

  • Strong Java programming skills and experience

  • Spring Boot Experience

  • ​Must be able to create and run Database SQL queries

  • Use Case and Test Cases experience

  • Knowledge - Desirable

  • AppSecurity experience
  • Software Design Skills
  • Architecture software design
  • Story board experience
  • Agile / Scrum experience
  • Skills - Essential

  • Proficient in core and advanced Java
  • Experience in working with Web services (REST & SOAP), XML, XSD and JAXB
  • Good Experience in working with ANT & Maven (optional) deployments
  • Working experience with Source Control Management (SVN, Jazz tc.,)
  • Knowledge of Database(SQL), JDBC, Spring and Hibernate
  • Knowledge of Code security
  • Knowledge of OWASP Top 10
  • Working with Linux script, Perl Scripting and Python
  • Ability to work on multiple tasks and with multiple teams (Vendors, DBAs and other teams)
  • Good communications skills both oral and written
  • Skills - Desirable

  • Knowledge in .Net Technologies (C#, Visual Studio, TFS etc.)
  • Knowledge of Open Shift Docker, Artifactory, BitBucket, JIRA
  • Working with Source Control Management (SVN, Jazz, Git etc.,)
  • Software design components and various design patterns
  • Knowledge of Unit Testing, Automated Testing
  • Knowledge of ALM tools (RTC, CTF etc.,)
  • Knowledge of Java multi-threading and collections
  • Knowledge of Checkmarx, SonarQube and SecureAssist
  • Knowledge of UI - HTML, JavaScript, Ajax, Servlets, JSP and Struts
  • Working with various web and application servers
  • Working with various development tools like Eclipse, Toad, RAD, etc.,
  • Knowledge of JMS
  • knowledge of Artifactory and Jenkins
  • Ability to work on multiple tasks and with multiple teams (Vendors, DBAs and other teams)

    Excellent communications skills both oral and written

    Experience working in a large company (familiar with process)


  • Bachelor’s degree/University degree or equivalent experience
  • Master’s degree preferred
  • This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.


    Grade :All Job Level - All Job FunctionsAll Job Level - All Job Functions - US


    Launch your career - Create your profile now!

    Create your Profile

    Loading some great jobs for you...