The Qualys Policy Compliance Engineer is an intermediate level position responsible for taking Policy Definition from requestors, and translating them into Policy Compliance checks using Qualys. The overall objective of this role is to ensure the execution of Information Security directives and activities in alignment with Citi's data security policy. **Responsibilities:** + Security Policy Content creation, focused on Qualys Policy Compliance (BCM and FIM) + Translate policy definition as customer requirements, into Qualys specific checks that can be applied to in-scope systems + Ensure productivity to guarantee Service Level Agreements (SLAs) and client expectations are met + Ensure essential procedures are followed, define operating standards and processes and develop procedures and process control manuals + Perform information security awareness and training activities + Suggest improvement to process efficiencies + Verify through testing that essential procedures are followed + Provide informal guidance or on-the-job-training to new team members + Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency. **Qualifications:** + 2-5 years of Qualys experience, with specific focus around Policy Compliance module + 1 certification or ability to earn within 12 months of joining preferred + Consistently demonstrates clear and concise written and verbal communication + Proven analytical skills **Education:** + Bachelor’s degree/University degree or equivalent experience This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required. ------------------------------------------------------ **Job Family Group:** Technology ------------------------------------------------------ **Job Family:** Information Security ------------------------------------------------------ **Time Type:** Full time ------------------------------------------------------ **Most Relevant Skills** Please see the requirements listed above. ------------------------------------------------------ **Other Relevant Skills** For complementary skills, please see above and/or contact the recruiter. ------------------------------------------------------ _Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law._ _If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review_ _Accessibility at Citi (https://www.citigroup.com/citi/accessibility/application-accessibility.htm)_ _._ _View Citi’s_ _EEO Policy Statement (https://www.citigroup.com/global/eeo-aa-policy)_ _and the_ _Know Your Rights (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf)_ _poster._ Citi is an equal opportunity and affirmative action employer. Minority/Female/Veteran/Individuals with Disabilities/Sexual Orientation/Gender Identity.