CSO - CTO, ISTO and Office of the CSO - Information Security & Risk Advisory Specialist (VP)

Job ID:R0318517Full/Part-Time: Full-timeRegular/Temporary: RegularListed: 2024-02-22Location: Bucharest

Position Overview

The Risk Lead Function covering CSO CTO, IS Threat Operations and Office of the CSO is looking for an Information Security Senior Specialist who will support the Risk Lead in managing the risk, audit and regulatory portfolio. The job plays a vital role to fulfil internal and external control requirements, ensuring transparency around the current risk exposure and guiding the organization within an ever changing regulatory landscape.

This role will require someone with a self starting and independent work attitude. The candidate will perform with minimum supervision the tasks as a risk lead delegate with a global focus and demonstrate skills as lateral, innovative and creative thinker who can work on multiple tasks in parallel and can cope with tight timelines.

Tasks

• Senior Risk Lead Delegate for CTO, IS Threat Operations and Office of the CSO
• Partner and build strong relationships with Embedded Risk Teams, Risk Lead Peers, CSO teams, regulatory engagement groups and Subject Matter Experts
• Issue (Audit and Self Identified) Tracking and Reporting
• Track and guide stakeholders throughout the issue lifecycle from MAP creation up to closure of the finding
• Identify delays in remediation and escalate to management timely to avoid overdue deliverables
• Support stakeholders in solution design and implementation to ensure the solutions meet internal and external requirements
• Risk Advisory for Subject Matter Experts stakeholders
• Help stakeholders to navigate the Policy and Regulatory Landscape
• Support in the identification and creation of SIIs
• Support Risk Initiatives e.g., Internal and External Self-Assessments
• Question existing processes and their efficiency and effectiveness and drive change on optimization and automation
• Coordinate regulatory engagement and responses by partnering with internal stakeholders across the globe
• Interface with the Internal Audit function during audit engagements, issue remediation and issue closures
• Understand new findings, confirm factual accuracy and verify and challenge the risk ratings
• Support internal stakeholders in the discussions and responses with internal audit
• Act as an escalation point of contact for team members and stakeholders
• Provide technical and risk advice to Senior Management
• Develop presentations for Senior Management on Audit/Regulatory or other related responsibilities.

Experience | Skills

• Bachelor’s degree in Computer Science, Engineering, Information Security or equivalent
• At least 7 years of IT Security and Risk management experience
• A strong understanding of risk and security concepts.
• Regulatory experience in the financial industry is a plus
• A good understanding of security hardening techniques.
• Written and verbal fluency in English is important as majority of communication will be in English language.
• Very good analytical skills, with the ability to breakdown complex problems into actionable and understandable steps.
• Ability to communicate IT security issues to other business areas in technical and non-technical language
• CISSP, CISM, CISA and / or CRISC would be from benefit
• Experience in project management is a plus

Location: Bucharest

Corporate Title: Vice President

Our values define the working environment we strive to create – diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer.

We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation.

Visit Inside Deutsche Bank to discover more about the culture of Deutsche Bank including Diversity, Equity & Inclusion, Leadership, Learning, Future of Work and more besides.