NFRM Information Security

Job Description

NFRM Information Security & Technology Risk Specialist, AVP

Position Overview

Job Title:NFRM Information Security & Technology Risk Specialist

Location: Mumbai, India

Corporate Title: AVP

Role Description

- An Information Technology & Security Risk Specialist to join the 2nd LoD Information Security & Technology Risk Team. The team is global, this role is within the Mumbai team (currently 1 person) which is being built out to support the global team.
- Should have a proven depth of knowledge and keen interest of Information Security and Technology and their application in large financial institutions. Working with other team members the role will input subject matter expertise and drive innovative approaches in applying risk management in an evolving threat environment.
- The team has a global footprint in Frankfurt, Singapore, London, Mumbai and USA.

What we'll offer you

As part of our flexible scheme, here are just some of the benefits that you'll enjoy

- Best in class leave policy
- Gender neutral parental leaves
- 100% reimbursement under childcare assistance benefit (gender neutral)
- Sponsorship for Industry relevant certifications and education
- Employee Assistance Program for you and your family members
- Comprehensive Hospitalization Insurance for you and your dependents
- Accident and Term life Insurance
- Complementary Health screening for 35 yrs. and above

Your key responsibilities

- Provide data and analytics reporting to support the team in monitoring the Information Security and Technology Risk Appetite, breaches and remediation.
- Where required support the implementation of automated data and analytics reporting process.
- Support the team delivery of Non-Financial Risk Management (NFRM) priorities such as risk & control assessments, scenario analysis, risk appetite.
- Monitor and challenge 1LOD Risk and Control Assessments (including results of 1LOD control testing/assurance).
- Perform 2LOD control assurance through targeted reviews of areas of concern.
- Gain an understanding and be able to articulate key Information Security and Technology regulatory requirements across APAC/MEA and their impact and implementation into the Information Security and Technology Risk Framework.

Your skills and experience

- University degree (Computer Science, Business Administration or equivalent).
- Majors in Information Security and / or Risk Management are a plus.
- Experience (8+ years) in Information Security or Information Technology with experience in the Finance industry and/or a major Technology or Consultancy company preferred.
- Experience in IT Risk Frameworks such COBIT 2019 is ideal
- 5+ yrs Understanding and experience of technology from either a support, development or business analysis perspective
- Some level of technical understanding and training either as a data analyst, developer, business analyst or project manager are a plus.
- Knowledge of Information Security and Technology industry regulatory standards and/or Risk Frameworks (e.g. EBA Guidelines ISO / 27000 Series, COBIT 2019, DORA) are a plus.
- Experience of technology coding e.g python, java is a plus
- Understanding of IT controls: SDLC, managing technology obsolescence, disaster recovery is a plus
- Knowledge of Digital transformation, Private and Public Cloud, AI tooling a plus
- Relevant professional certifications e.g. CISSP, CISA, CISM, CRISC, ITIL, ISO27001 Lead Auditor or similar are a plus.
- Experience of working in large global teams yet comfortable working independently without day-to-day oversight and steer.
- Strong communication skills (English required).

How we'll support you

- Training and development to help you excel in your career
- Coaching and support from experts in your team
- A culture of continuous learning to aid progression
- A range of flexible benefits that you can tailor to suit your needs

About us and our teams

Please visit our company website for further information:

We strive for a in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.
Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.
We welcome applications from all people and promote a positive, fair and inclusive work environment.

---