Job Title - Information Security Specialist, Vice President

Location - Pune, India

Role Description

Information Security Risk Analyst - TDI CSO

The Technology Data Innovation (TDI) Chief Security Office (CSO) comprises both Corporate Security and Information Security. We run security operations globally to protect the bank’s people, infrastructure, processes, and information.

CSO Governance and Control conducts proactive Information Security (IS) controls assess ability and applicability reviews for the emerging technologies to design adaptable IS assessment framework to appropriately assess the security requirement for relevant applications and infrastructures.

The role holder would mainly work on Innovation and automation across the globe to ensure that the Information Security requirements for all assets within the Bank are safeguarded and mitigated from any potential risks which can include - Reputational, Financial & Regulatory.

This role offers significant career progression within a dynamic and forward-thinking security organization, with ample opportunities for leadership, specialized training, and continuous professional development.

Join Deutsche Bank's Technology Data Innovation (TDI) Chief Security Office (CSO) to play a pivotal role in safeguarding our global operations. As an Information Security Specialist, Vice President, you will be instrumental in shaping our proactive security posture, mitigating critical risks, and driving innovation through advanced technologies.

What we’ll offer you:

As part of our flexible scheme, here are just some of the benefits that you’ll enjoy.

• Best in class leave policy.
• Gender neutral parental leaves.
• 100% reimbursement under childcare assistance benefit (gender neutral).
• Sponsorship for Industry relevant certifications and education.
• Employee Assistance Program for you and your family members.
• Comprehensive Hospitalization Insurance for you and your dependents.
• Accident and Term life Insurance.
• Complementary Health screening for 35 yrs. and above.

Your key responsibilities

• Display strong knowledge of Information Security. Work with governance, risk, and compliance (GRC) team, should be familiar with national and international regulatory frameworks like NIST, ISO, SOX, EU DPD, PCI DSS and GDPR and additional knowledge on Regulatory requirements/controls like MAS, CAM, DORA and PSDII to support stakeholder requirement.
• Senior expert of GRC process, Archer, Expertise on Service platform, IRM platform with the skill set to translate business requirement into technology solution scope and Automation to take it to next level
• Drive end-to-end AI adoption and implementation, go-live and testing.
• Lead automation identification and Inform leadership strategy with insights on AI adoption ensuring future readiness.
• Accelerating AI initiatives and automation, directly impacting efficiency, innovation, and risk posture.
• Demonstrated ability to identify strategic opportunities for AI/ML and automation to enhance security posture, operational efficiency, and risk intelligence.
• A passion for continuous learning and exploring emerging technologies to anticipate future security challenges
• Exceptional ability to bridge the gap between complex technical security requirements and business objectives, translating intricate automation concepts into clear, actionable strategies for non-technical stakeholders.
• Communicates openly with management and the internal stakeholders; keeps them informed of potential risk and escalating problems/delays accordingly to avoid/minimize the impact.
• Work with multiple distributed teams across different locations

Your skills and experience

• Significant, proven work experience in the Information Technology / Information Security domain, with a focus on enterprise-level security architecture and operations.
• SME Knowledge on Application Governance, Ability to assess and integrate security requirements into application design and architecture from inception to automation with next level AI tools
• Advanced proficiency and hands-on experience in configuring, customizing, and integrating ServiceNow Integrated Risk Management (IRM) and RSA Archer GRC platforms. This includes developing workflows, dashboards, reports, and custom applications to automate GRC processes
• Deep understanding of advanced security concepts such, AI Security (e.g., AWS, Azure, GCP security services), and Security Orchestration, Automation, and Response (SOAR).
• Experience in developing and implementing security control frameworks based on industry’s best practices (e.g., CIS Controls, MITRE ATT&CK)
• Track record of successfully designing, piloting, and scaling AI-driven solutions from concept to production within an enterprise environment
• A proven storyteller, capable of articulating the value proposition of AI and automation initiatives in terms of risk reduction, cost savings, and operational efficiency
• Professional / industry recognized certifications (e.g., CISA, CISM, CRISC etc.) are highly beneficial to cover a broad range of Information Security areas where relationships with business or IT is required.
• People management, working / managing global teams across different time zones and within a matrix environment.
• Project management, Agile methodology, analytical and practical problem-solving skills.
• Ability to monitor, track and clearly communicate progress, escalate issues when appropriate.
• Professional and strong verbal and written communication skills and the ability to communicate on all hierarchy levels.
• Self-driven, eager to learn and well-organized team player.

How we’ll support you

• Training and development to help you excel in your career
• Coaching and support from experts in your team
• A culture of continuous learning to aid progression
• A range of flexible benefits that you can tailor to suit your needs

About us and our teams

Please visit our company website for further information:

https://www.db.com/company/company.html

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.