Senior Information Security Specialist

DB Global Technology is Deutsche Bank's technology center in Central and Eastern Europe. Since its set-up in 2013, Bucharest Technology Centre (BEX) has constantly proven its capacity to deliver global technology products and services, playing a dynamic role in the Bank's technology transformation.

We have a robust, hands-on engineering culture dedicated to continuous learning, knowledge-sharing, technical skill development and networking. We are an essential part of the Bank's technology platform and develop applications for many important business areas.

Information Security is responsible for preventing IT-based crime, hacking, intentional or inadvertent modification, disclosure, or destruction to the organization's information systems and IT assets and intellectual property. The focus of the role is to ensure highly professional and productive procedures, policies and processes are in place, and aligned and agreed with relevant stakeholders.

The TDI CSO Embedded Risk Team (ERT) is a global team whose footprint extends to the US, UK, India, and Europe. There are currently 15 members spread across these locations. The ERT is split into five main groups – 1) internal and statutory Audit Coordination, 2) Finding Management Governance, 3) Information Security Risk Management, 4) Control Testing Engagement, and 5) Policy Office. All of them perform the same function with the only difference being that statutory Audit Coordination is an external facing function (External Auditors) while all others face off to Internal Audit, other TDI ERT teams, Divisional CISOs and Divisional ISOs, ITAOs across the bank, 2nd Line Risk Type Controller, Group COO Central Approval Function and others. The team's main objective is to support, manage and monitor all aspects of Risk and Control impacting the TDI CSO division and the main responsibility is to ensure TDI CSO is fully compliant with the Finding Management procedure and all relevant 2nd line minimum control standards in relation to Information Security Risk and Physical Security Risk.

Internal Audit Coordination is responsible for overseeing all internal Audits for CSO and contribute to any internal Audit were CSO will be involved.

In the role as Information Security Senior Specialist within TDI CSO ERT the main objective is to coordinate all internal Audits and Audit requests within CSO.

Responsibilities

• work closely with colleagues from all 3LODs around the world to identify needed stakeholders, address all Audit requests on time and attend weekly Audit stakeholder calls
• Understand new findings, get factual accuracy confirmation from SMEs and verify and challenge the risk ratings
• Support internal stakeholders in the discussions and responses with internal audit
• Act as an escalation point of contact for team members and stakeholders
• Prepare, create, and present regular CSO internal reports and status updates to Senior Management, and key working groups

Skills

• Educated Bachelor's degree level in Computer Science, Engineering, Information Security or equivalent qualification and at least 7 years work experience in auditing and Information Security risk management
• Project Management / Risk experience paired with excellent analytical skill to ensure strong governance across various locations and products considering implemented risk management models
• Very good communication skills with the ability to work independently as well as with other team members and functions in global teams across different time zones, Written and verbal fluency in English
• Pay attention to details, spotting unusual activities, being able to collaborate with Management and other ERTs, ability to monitor, track and clearly communicate progress, and escalating issues when appropriate
• Excellent knowledge of MS Office standard applications and understanding of ISO 27001 Framework and Controls plus CISSP, CISM, CISA and / or CRISC would be from benefit

Well-being & Benefits

Emotionally and mentally balanced:
We support you in dealing with life crises, maintaining stability through illness, and maintaining good mental health.

• Empowering managers who value your ideas and decisions. Show your positive attitude, determination, and open-mindedness.
• A professional, passionate, and fun workplace.
• A modern office with fun and relaxing areas to boost creativity.
• Continuous learning culture with coaching and support from team experts.
• A culture where you can openly speak about mental health.

Physically thriving:
We support you managing your physical health by taking appropriate preventive measures and providing a workplace that helps you thrive. For example, Private healthcare and life insurance with premium benefits for you and discounts for your loved ones, healthier ways of working and check-up's.

Socially connected:
We strongly believe in collaboration, inclusion and feeling connected to open up new perspectives and strengthen our self-confidence and well-being.

• - support for unexpected events requiring you to care for your kids during work hours.
• 24 days holiday, loyalty days, and bank holidays (including weekdays for weekend bank holidays).
• Hybrid working model with flexible working options
• Enjoy retailer discounts, cultural and CSR activities, workshops, and more.

Financially secure:
We support you to meet personal financial goals during your active career and for the future.

• Competitive income, performance-based promotions, and a sense of purpose.
• Meal vouchers, bonuses for referrals

Interested in more: discover what our employees value in the Well-being & Benefits hub

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.