Information Security Analyst

Job Description:

Job Title- Information Security Analyst

Location- Bangalore, India

Role Description

The role of an Information Security Officer (ISO) is of a role holder aligned to a portfolio of applications (Application ISO). The ISO has the responsibility for the operational aspects of ensuring compliance with the Information Security Principles. The ISO is the primary contact for information security relevant matters within their area of responsibility. The ISO has a disciplinary reporting line into their Line Manager and a functional reporting line into the Divisional CISO.

What we’ll offer you

As part of our flexible scheme, here are just some of the benefits that you’ll enjoy

• Best in class leave policy
• Gender neutral parental leaves
• 100% reimbursement under childcare assistance benefit (gender neutral)
• Sponsorship for Industry relevant certifications and education
• Employee Assistance Program for you and your family members
• Comprehensive Hospitalization Insurance for you and your dependents
• Accident and Term life Insurance
• Complementary Health screening for 35 yrs. and above

Your key responsibilities

• To ensure the execution of information security risk assessments and compliance evaluations for applications assigned to them. From an information security perspective, the ISO assumes ownership for these applications
• To ensure the execution of information security risk management requirements in their area of responsibility as additionally defined by the Divisional CISO (e.g,. conducting risk assessments on an organizational basis, preparing and implementing management action plans to mitigate identified risks)
• To ensure the implementation of controls for identified information security risks in their area of responsibility. The ISO ensures that an appropriate dispensation to accept the residual risk identified due to the lack of controls is obtained
• To ensure the implementation of Identity and Access Management Processes and the execution of a periodic recertification of User Access Rights in their area of responsibility
• To provide timely updates to the Divisional CISO regarding the aforementioned information security management tasks
• To ensure that application entries regarding information security (e.g., Data Protection and Data Privacy fields) in the Group’s inventory of applications are accurate and up to date
• Keep oneself informed of the Information Security Principles and its subordinate documents and liaise with any other necessary parties to accomplish their tasks. These resources may be e.g., the TISO, ITAO or any other subject matter experts
• To ensure appropriate documentation of information security risk management in area of responsibility. This includes major decisions including identified and assessed risks as well as risk mitigation measures
• To initiate processes with the management to obtain appropriate funding to facilitate the enforcement of the information security management in their area of responsibility. If it is necessary, the respective Divisional CISO should be involved in risk mitigation decisions
• To escalate to Divisional CISO, if internal/external auditors or regulators are holding an Audit/exam that involves information security in their area of responsibility and to get clearance from Divisional CISO before providing any responses or documentation to auditors or regulators.

Your skills and experience

Essential

• Candidate should have a minimum of 8 years of business experience in an operation management /   project management capacity, working knowledge in various banking products with strong communications skills
• Knowledge on Information Security Controls, Data Protection Policy, Information classification principles and segregation of duties requirements within Banking Operations
• Good understanding of Regulatory, Compliance, Risk & Control Knowledge
• Have sound knowledge of Identity and Access Management Process
• Ability to multitask and manage multiple deliverables / projects that are highly visible and of strategic importance to our clients
• Ability to effectively communicate with clients internally and externally
• Must be a team player and facilitator

Desirable

• Solid technical understanding of the business (CB Operations) including strong knowledge of application security related processes.
• Knowledge of electronic banking products and flow of instructions
• Computer proficiency in MS Office and ability to utilize IT initiatives to achieve a high degree of operational efficiency, optimize costs and add value to the service provided
• Innovative approach to work and continuously identify and implement process improvements
• Seek opportunities to improve service processes, minimize operational risk and reduce costs
• Strong analytical skills, detail orientation, service commitment and solid people management skills
• Strong awareness of risk control

Education/ Qualifications

• Graduation degree
• ISO 27001

How we’ll support you

• Training and development to help you excel in your career
• Coaching and support from experts in your team
• A culture of continuous learning to aid progression
• A range of flexible benefits that you can tailor to suit your needs

About us and our teams

Please visit our company website for further information:

https://www.db.com/company/company.htm

Our values define the working environment we strive to create – diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer.

We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation.

Visit Inside Deutsche Bank to discover more about the culture of Deutsche Bank including Diversity, Equity & Inclusion, Leadership, Learning, Future of Work and more besides.