Information Security Specialist, AVP

Job Title: Information Security Specialist

Corporate Title: Assistant Vice President

Location: Pune, India

Role Description

• Everyday DB observes thousands of cyber security intrusion attempts. Deutsche Bank's COO Chief Security Office (CSO) integrates both Corporate Security (CS) and Information Security (CISO) as both teams are responsible for mitigating these risks. The CSO team enables the business of Deutsche Bank by providing agile security operational capabilities. With their expertise in Threat Intelligence, Cyber Threat Analytics, Malware Response & Research, Security Monitoring, Incident Response, Forensics and Vulnerability Management, they provide global services from key locations in Frankfurt, Jacksonville and Singapore while leveraging offshore capabilities in Pune and Bucharest.
• Deutsche Bank AG is looking for Cyber Security professional to support the bank's global security monitoring and threat detection capabilities.
• This role requires a heavy focus on all areas of security monitoring, risk management on privileged access management and familiarity with regulations impacting technology (e.g. MAS TRM Guidelines), requiring at least 5 to 8 years of experience.
• Candidate will be responsible to provide an oversight of the various security monitoring process to manage security risks and to drive the organization's compliance to regulatory and audit requirements including facilitation of audit activities, address process related queries and drive automation and audit remediation projects.
• The candidate will need to drive process improvements, procedure document updates, KPI monitoring and operations team management. Candidate will engage across all functional areas of business, operations, and global technologies working in a dynamic, multi-OS environment.
• This role will play a vital role in present organization's compliance to regulators and managing interactions with auditors. The chosen candidate will be required to provide a degree of strategic, tactical, and day-to-day operational experience to enhance the overall security monitoring, detection, and mitigation process. Candidate must also possess excellent soft skills and verbal communications dealing with senior executive management, customers, clients, auditors, and third-party vendors.

What we'll offer you

As part of our flexible scheme, here are just some of the benefits that you'll enjoy,

• Best in class leave policy.
• Gender neutral parental leaves
• 100% reimbursement under childcare assistance benefit (gender neutral)
• Sponsorship for Industry relevant certifications and education
• Employee Assistance Program for you and your family members
• Comprehensive Hospitalization Insurance for you and your dependents
• Accident and Term life Insurance
• Complementary Health screening for 35 yrs. and above

Your key responsibilities

• Oversee the performance, efficiency, and accuracy of security monitoring operations team ensuring SLA's are met.
• Proactively review, propose, and implement process changes and monitoring improvements to remediate most significant risks including audit findings, self-identified issues, compliance issues, control gaps and regulatory requirements.
• Identify opportunities for streamlining of control processes, develop and socialize potential risk mitigation strategies particularly in privileged access management (e.g., bypass monitoring, session log review), and work with various divisions to execute.
• Improve the delivery of effective control process through technical review and process quality checks.
• Provide support in the delivery of effective governance including tracking and reporting.
• Ensure proper training of monitoring teams on new coverage and use cases.
• Offer subject-matter expertise and act as escalation point when required.
• Prepare and present monthly functional and operational report.
• Manage stakeholder queries, facilitate audit activities, and address data requests in a timely manner.
• Collaborate across CSO and technology teams to respond to internal and external audits, and regulatory inquiries and assessments.
• Drive automation projects and manage audit remediation deliverables to closure.
• Practice and promote good risk culture and risk management to manage the risks within bank's appetite.
• Act as primary point-of-contact for regulatory inquiries and engagements.
• Collaborate with internal and external auditors and stakeholders, providing necessary evidence and artefacts, to facilitate audit processes.

Your skills and experience

• Minimum 5 to 7 years of working Experience with security monitoring platforms and workflows.
• Proven Experience in area of privileged access management specifically in session log review and bypass monitoring.
• Proven experience and In-depth knowledge of technology regulations and understanding of regulatory risk management specially of MAS requirements and guidelines.
• Proven experience and strong understanding of audit process and compliance monitoring and reporting.
• Analytical mindset and ability to identify, assess and address compliance gaps and security risks.
• Strong operational background in risk analysis and risk identification.
• Degree from a university or major course work in computer science, networking, engineering, or other computer-related field of study.
• One of the following certifications will be an advantage: CISSP, CISM, CISA, CRISC

Expectations

• It is the Bank's expectation that employees hired into this role will work in the office at least 2-3 days a week in accordance with the Bank's hybrid working model.

How we'll support you

• Training and development to help you excel in your career.
• Coaching and support from experts in your team.
• A culture of continuous learning to aid progression.
• A range of flexible benefits that you can tailor to suit your needs.

About us and our teams

Please visit our company website for further information:

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.