Incident Response Lead

Job ID:R0262964Full/Part-Time: Full-timeRegular/Temporary: RegularListed: 2024-02-29Location: Bucharest

Position Overview

Team description and details of role

The Threat Detection & Response Manager works within the Security Operations Center (dbSOC), which is set up within a Follow-The-Sun model. He/She is responsible for the monitoring, detection and analysis of information security events and incidents.

Additionally, he/she acts as a specialist for information security incident response processes to protect the Bank, its partners, and clients of any potential loss. Besides operations tasks, he/she will be supporting to evaluate and adjust processes, tools, and reporting, as well as lead smaller projects.

The objective is to identify and close gaps in the event detection, as well as improving the detection, analysis, and response of security events, ideally in an automated way.

Focus is on events in the area of network, endpoint and cloud security (GCP/Chronicle and Microsoft Azure/Sentinel). Disciplinary leadership of a small team, as well as the organization and maintenance of daily Operations also belong to this role.

Main responsibilities

In this function, your main responsibilities are:

• Perform risk assessments to evaluate the criticality of information security events
• Monitoring, detection, and analysis of security-relevant events, including response and documentation
• Improvement of the current threat detection capabilities, ideally via automation of standard processes
• Ensuring of effective daily Operations, managing workload of the Threat Detection & Response Team
• Acting as escalation and contact point for more critical cases, complaints or process queries.
• Definition, review and enhancement of Threat Detection & Response processes and tools
• Ensuring that predefined processes and SLAs get met.
• Reporting of Information Security Incidents to Senior Management and regulators.
• Supporting the entire SOC team with your security expertise and process know-how
• Disciplinary leadership of a small team.

Skills and experiences

• Study in IT, Information Security or any other comparable profession or any other comparable apprenticeship
• Good understanding of enterprise technologies especially focusing on security devices, network engineering, operating systems, databases and security configurations on application level
• Experience with analyzing system logs including network traffic logs, payload, event logs, application logs, firewall logs, Active Directory etc.
• Experience with Security Incident and Event Management (SIEM) systems, ideally with Splunk Enterprise Security
• Good knowledge of current threat landscape and attack scenarios/tactics, as well as containment and protection measures
• Fluent German and English skills
• Very good communication, analytical and documentary skills
• Independent way of working with strong problem-solving ability
• Experienced in communicating with higher management levels
• Cyber Security expertise, proven by industry-standard certifications, such as CISSP, CISM, GCIH or similar
• Ideally experience with cloud monitoring (Azure, Google)
• Ideally project management skills and experience
• Ideally experience in KPI reporting
• Ideally first leadership experience

Our values define the working environment we strive to create – diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer.

We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation.

Visit Inside Deutsche Bank to discover more about the culture of Deutsche Bank including Diversity, Equity & Inclusion, Leadership, Learning, Future of Work and more besides.