DB Global Technology is Deutsche Bank’s technology center in Central and Eastern Europe. Since its set-up in 2013, Bucharest Technology Centre (BEX) has constantly proven its capacity to deliver global technology products and services, playing a dynamic role in the Bank’s technology transformation.

We have a robust, hands-on engineering culture dedicated to continuous learning, knowledge-sharing, technical skill development and networking. We are an essential part of the Bank’s technology platform and develop applications for many important business areas.

As a Threat Detection & Response Analyst in our global Cyber Threat Operations Centre, you'll protect Deutsche Bank, partners, and clients through continuous monitoring, detection, and in-depth analysis of information security events. You'll be a key specialist in incident response, mitigating potential losses. Beyond operations, you'll optimize processes, tools, and reporting, focusing on automated event detection, analysis, and response.

Responsibilities

• Manage security events from diverse channels (monitoring tools, Cyber Security Hotline & Mailbox).
• Monitor, detect, analyze, respond to, and document security-relevant events; conduct/contribute to risk assessments.
• Support alert data triage, enrichment, and detection use case improvement.
• Enhance threat detection capabilities, ideally through process automation.
• Execute daily operations within defined processes and SLAs, and share your knowledge and expertise to the global CTOC team.

Skills

• Solid background and good understanding of enterprise technologies especially focusing on security devices, network engineering, operating systems, databases and security configurations on application level as well as Cloud security (Google and Azure).
• Experience with analyzing system logs including network traffic logs, payload, event logs, application logs, firewall logs, Active Directory etc.
• Experience with Security Incident and Event Management (SIEM) systems. (Splunk, GCP Chronicle , and/or Sentinel).
• Cyber security expertise and familiarized with incident response / SOC activities.
• Good knowledge of current threat landscape and attack scenarios/tactics, as well as containment and protection measures, familiar with MITRE ATTACK framework.
• Always a plus: CISSP, CISM, GCIH/GIAC, CompTIA Security+ or other relevant certifications in the field.

Well-being & Benefits

Emotionally and mentally balanced: We support you in dealing with life crises, maintaining stability through illness, and maintaining good mental health.

• Empowering managers who value your ideas and decisions. Show your positive attitude, determination, and open-mindedness.
• A professional, passionate, and fun workplace.
• A modern office with fun and relaxing areas to boost creativity.
• Continuous learning culture with coaching and support from team experts.
• A culture where you can openly speak about mental health.

Physically thriving: We support you managing your physical health by taking appropriate preventive measures and providing a workplace that helps you thrive. For example, Private healthcare and life insurance with premium benefits for you and discounts for your loved ones, healthier ways of working and check-up's.

Socially connected: We strongly believe in collaboration, inclusion and feeling connected to open up new perspectives and strengthen our self-confidence and well-being.

• 24 days holiday, loyalty days, and bank holidays (including weekdays for weekend bank holidays).
• Hybrid working model with flexible working options
• Enjoy retailer discounts, cultural and CSR activities, workshops, and more.

Financially secure: We support you to meet personal financial goals during your active career and for the future.

• Competitive income, performance-based promotions, and a sense of purpose.
• Meal vouchers, bonuses for referrals

Interested in more: discover what our employees value in the Well-being & Benefits hub!

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.