Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments, and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management.
As a bank with a brain and a soul, Citi creates economic value that is systemically responsible and in our clients' best interests. As a financial institution that touches every region of the world and every sector that shapes your daily life, our Enterprise Operations & Technology teams are charged with a mission that rivals any large tech company. Our technology solutions are the foundations of everything we do from keeping the bank safe, managing global resources, and providing the technical tools our workers need to be successful to designing our digital architecture and ensuring our platforms provide a first-class customer experience. We reimagine client and partner experiences to deliver excellence through secure, reliable, and efficient services.
Our commitment to diversity includes a workforce that represents the clients we serve from all walks of life, backgrounds, and origins. We foster an environment where the best people want to work. We value and demand respect for others, promote individuals based on merit, and ensure opportunities for personal development are widely available to all. Ideal candidates are innovators with well-rounded backgrounds who bring their authentic selves to work and complement our culture of delivering results with pride. If you are a problem solver who seeks passion in your work, come join us. We'll enable growth and progress together.
About Our Team:
The Chief Information Security Office (CISO) is home to deeply talented colleagues that work to ensure the safety of Citi's clients', our revenue, our employees and our proprietary data. We manage information security as one end-to end program - one with a clear mandate and accountability. Our mission is a program that is fully anchored to modern control and architectural frameworks, is fully aligned with the enterprise architecture of the firm and is deeply integrated into the sectors and functions.
Position Overview:
The Cloud and Application Security Architect is a senior individual contributor position responsible for defining the strategy and secure architectures in support of Citi's Cloud program, spanning AWS, Google Cloud Platform, Azure and hybrid implementations (On-Premise). This role involves developing security policies, guiding secure architecture across the various cloud platforms, and ensuring compliance with regulatory standards. This role will also span influence on secure application development strategy for both cloud native and on-premise applications. The architect will collaborate with cross-functional teams, mentor security professionals, and drive automation in security testing. Strong leadership, strategic planning, and a deep understanding of emerging threats and risk management are essential.
Responsibilities:- Leadership
- Partner, coach and functionally lead IT, engineering, development and business teams through collaborative design discussions.
- Educate internal and external clients on security risk and best practices.
- Vision and Strategy
- Define and lead the security strategy across public cloud (Google Cloud Platform/AWS), private cloud, and on-prem environments with a focus on Zero Trust architecture and regulatory alignment.
- Architecture and Innovation
- Develop and maintain cloud security reference architectures, playbooks, and control frameworks, tailored to the bank's technology stack and third-party oversight obligations.
- Architect secure, scalable platforms for containerized banking workloads (e.g., GKE, EKS), VPC and network segmentation, secrets management, and secure compute/storage services.
- Partner with cloud engineering, platform ops, application delivery organization, and enterprise architecture to embed infrastructure security throughout service lifecycles - from ideation through production.
- Engineering and Integration
- Integrate security controls into CI/CD pipelines and infrastructure-as-code deployments (Terraform, Helm, CloudFormation), driving secure-by-design principles.
- Governance and Compliance
- Ensure compliance with banking regulations including GLBA, SOX, FFIEC, PCI-DSS, NYDFS, and OCC cybersecurity guidelines, integrating security architecture into audit and regulatory programs.
Qualifications:- 15+ years of experience in cybersecurity, with 5+ years in cloud and enterprise security architecture.
- Demonstrated success leading security architecture for financial services, banks, or regulated industries.
- Technical expertise in securing Google Cloud Platform, AWS, Kubernetes (GKE/EKS), Azure, cloud networking, and Application Security.
- Strong command of cloud-native technologies and DevSecOps practices.
- Experience with regulatory audits and control frameworks (e.g., NIST 800-53, ISO 27001, PCI DSS, FFIEC CAT).
- Proven leadership in cross-functional teams, architecture review boards, and strategic planning sessions.
- Excellent communication and presentation skills, with the ability to engage both technical and executive audiences.
- Preferred certifications: Google Cloud Security Engineer, AWS Security Specialty, CISSP, CCSP, CKA/CKS, GCSA.
- Consistently demonstrates clear and concise written and verbal communication
- Management and prioritization skills
- Ability to develop working relationships
- Ability to manage multiple activities and changing priorities, work under pressure to meet tight deadlines
- Self-starter with ability to take the initiative and master new tasks quickly
- Methodical, attention to detail
Education:- Bachelor's/University degree or equivalent experience, potentially Masters degree
This job description provides a high-level review of the types of work performed. Other job-related duties may be assigned as required.
Job Family Group: Technology
Job Family:Architecture
Time Type:Full time
Primary Location:Irving Texas United States
Primary Location Full Time Salary Range:$170,000.00 - $300,000.00
In addition to salary, Citi's offerings may also include, for eligible employees, discretionary and formulaic incentive and retention awards. Citi offers competitive employee benefits, including: medical, dental & vision coverage; 401(k); life, accident, and disability insurance; and wellness programs. Citi also offers paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays. For additional information regarding Citi employee benefits, please visit citibenefits.com. Available offerings may vary by jurisdiction, job level, and date of hire.
Most Relevant Skills Please see the requirements listed above.
Other Relevant Skills Amazon Web Services (AWS), Application Security, Architecture Frameworks, Cyber Security Architecture, Google Cloud Platform (Google Cloud Platform), Microsoft Azure, NIST Standards, Security Framework.
Anticipated Posting Close Date:Mar 17, 2026
Citi is an equal opportunity employer, and qualified candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other characteristic protected by law.
If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.
View Citi's EEO Policy Statement and the Know Your Rights poster.
Never miss an opportunity! Create an alert based on the job you applied for.
