DB Global Technology is Deutsche Bank’s technology centre in Central and Eastern Europe. Since its set-up in 2013, Bucharest Technology Centre (BEX) has constantly proven its capacity to deliver global technology products and services, playing a dynamic role in the Bank’s technology transformation.

We have a robust, hands-on engineering culture dedicated to continuous learning, knowledge-sharing, technical skill development and networking. We are an essential part of the Bank’s technology platform and develop applications for many important business areas.

Group Chief Operation Office (GCOO) acts as a bridge between the Bank’s businesses and infrastructure functions to help deliver the efficiency, control, and transformation goals of the Bank.

You will assume ownership for a set of application assets from an Information Security perspective, support the banks rules and processes under the direction of the responsible Divisional IS Officer.

Responsibilities:

• To support the GCOO Divisional Chief IS Officer

• Monitor and report on the resiliency posture of assigned assets, escalating significant risks or incidents to the Divisional ISO and senior management.

• To give guidance on the implementation of compensating Controls in case of deviations from the applicable Information Security Controls

• To contribute to the Information Security incident management process in the case of a security breach and to support regulatory and internal Information Security related audits

• To execute the IS Risk assessments and compliance evaluations for assigned IT assets and manage the IS Risks within the defined Risk Appetite

• To execute and document periodical recertification of user access rights in their area of responsibility in compliance with the DB Group identity and access management processes

• To implement Segregation of Duty (SoD) rules for the assigned IT assets and to manage violations of SoD

• Communicate security risks, incidents, and compliance issues to relevant stakeholders, ensuring timely escalation and collaborative resolution.

• Prepare and deliver regular management information (MI) and reporting on divisional Information Security posture, including risk assessments, audit findings, and remediation status.

• Coordinate with Business Continuity Managers (BCMs) to align reporting on resilience and continuity efforts.

• Maintain and govern divisional Information Security-related documentation and contribute to central projects and awareness initiatives.

• Ensure that management reporting covers compliance with internal policies and external regulatory requirements.

Skills:

• 3–5 years of experience in information security, IT risk management, or IT audit, preferably in a complex or regulated environment.

• Understanding of information security principles, risk management, and regulatory requirements.

• Basic understanding of the relationship between IT risk and how this applies to business processes.

• Project experience with good analytical and problem-solving skills

• Effective communication and strong interpersonal skills

• Experience in global and diverse teams across different time zones and within a matrix environment

• University degree in Computer Science / (Commercial) Information Technology or equivalent qualification

• Ability to monitor, track and clearly communicate progress, escalate issues when appropriate

• Positive attitude and proactive behavior

• appearance and strong verbal and written communication skills and the ability to communicate on all hierarchy levels. Fluent in English.

• Self-driven, eager to learn and well-organized team player

• Professional / industry recognized certifications (e.g. CISA, CCSP, CISSP, OSCP) are highly beneficial to cover a broad range of Information Security areas where relationship with the business or IT is required - optional

• Strong knowledge of IS threat analysis and frameworks (e.g MITRE ATT&CK Framework) - optional

• Strong understanding of cyber security standards (e.g. NIST, OWASP, ISO27001) and knowledge of the regulatory environment in the financial sector (e.g. KAIT, BAIT, ESMA cloud guidelines) optional

• German language is beneficial

Well-being & Benefits

Emotionally and mentally balanced: We support you in dealing with life crises, maintaining stability through illness, and maintaining good mental health.

• Empowering managers who value your ideas and decisions. Show your positive attitude, determination, and open-mindedness.

• A professional, passionate, and fun workplace.

• A modern office with fun and relaxing areas to boost creativity.

• Continuous learning culture with coaching and support from team experts.

• A culture where you can openly speak about mental health.

Physically thriving: We support you managing your physical health by taking appropriate preventive measures and providing a workplace that helps you thrive. For example, Private healthcare and life insurance with premium benefits for you and discounts for your loved ones, healthier ways of working and check-up's.

Socially connected: We strongly believe in collaboration, inclusion and feeling connected to open up new perspectives and strengthen our self-confidence and well-being.

• 24 days holiday, loyalty days, and bank holidays (including weekdays for weekend bank holidays).

• Hybrid working model with flexible working options

• Enjoy retailer discounts, cultural and CSR activities, workshops, and more.

Financially secure: We support you to meet personal financial goals during your active career and for the future.

• Competitive income, performance-based promotions, and a sense of purpose.

• Meal vouchers, bonuses for referrals

Interested in more: discover what our employees value in the Well-being & Benefits hub!

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.