InfoSec Specialist
Bucharest
Deutsche Bank
Discover Deutsche Bank, one of the world’s leading financial services providers. News and Information about the bank and its productsJob Description:
Job Description Summary
Integrated in Deutsche Bank’s Chief Security Office (CSO), the Information Security Threat Operations team is responsible for mitigating these risks. The Information Security Threat Operations team enables the business of Deutsche Bank by providing agile security operational capabilities.
You will be responsible for the full range of tasks associated with the detection of cyber threats in a fast-paced environment for Deutsche Bank’s cloud workloads, using cloud based SIEM/SOAR solutions. Our Cloud Operations team is focused on helping develop Deutsche Bank’s new cloud architecture, platforms/systems, organizational and operational processes to allow for the detection of cyber threats. Once established the focus will shift stronger into the development to detect new threats and perform threat hunting while incorporating change in an evergreen cloud environment.
This will involve maintaining a close dialogue with various units and stakeholders for the purpose of detecting and assessing potential risks to critical business infrastructure and services.
Activities:
• You will be expected to be able to identify areas for improvement and take accountability to drive security topics forward within and outside the team.
• In this role, you will also contribute to the development of Security Information and Event Management (SIEM) content, focusing on the Cloud Platform, including detection use cases, reports, network and asset model management, dashboards, rules/logic, documentation, and process establishment.
• Collaborate with other security specialists and experts to support the architecture, design and implementation of services and processes to support our mission of detecting cyber threats.
• Work in close cooperation with Cyber Intelligence, Incident Response, and the Security Operations Centre for the purpose of extending and strengthening the division’s capabilities relating to threat analytics for cloud service.
• This will include managing and overseeing a range of sophisticated tools and services aimed at detecting cyber threats/incidents and responding to them in a determined manner.
Knowledge and Experience:
• Minimum 3 years hands-on experience with GCP/AWS or alternatively MS Azure.
• Having at least 1-year experience in developing, modifying, enhancing, and fine-tuning detection and alerting/threat hunting use-cases in any type of SIEM solution (Splunk, LogRhythm, QRadar) or at least 6 months of experience of working with cloud based SIEM solutions (Splunk, Chronicle, Sentinel).
• Experience with industry known detection query languages: YARA, YARA-l, SPL, etc.
• Familiarity with Cyber Security Incident Response or computer forensic processes, or a strong interest and capability to learn the fundamentals of security operations within a short time.
• Experience of automating smaller tasks in a short amount of time, e.g., with scripting languages such as GCP CLI, PowerShell, Go, Python, etc.
• Experience with assessment, development, implementation, optimization, and documentation of a comprehensive and broad set of security technologies and processes (secure software development /Application Security, data protection, cryptography, key management, identity and access management, network security) within SaaS, IaaS, PaaS, and other cloud environments
• Have at least 3 years’ work experience in the fields of either: Encryption; IAM (Identity & Access Management), Security Monitoring & Incident Response, Network Security, Pen Testing, Security Operation, Application Security.
Education and Certifications:
• Bachelor’s or master’s degree from an accredited college or university with a focus on cloud and network technology, software development, or IT security.
• Certifications as CompTIA Security +, Google Cloud, Azure platforms can be considered a plus but they’re not mandatory.
• Any relevant Cyber Security Certifications.
Our values define the working environment we strive to create – diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer.
We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation.
Visit Inside Deutsche Bank to discover more about the culture of Deutsche Bank including Diversity, Equity & Inclusion, Leadership, Learning, Future of Work and more besides.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Analytics Application security AWS Azure Cloud CompTIA Cryptography Encryption GCP IaaS IAM Incident response LogRhythm Monitoring Network security PaaS Pentesting PowerShell Python QRadar SaaS Scripting SIEM SOAR Splunk
Perks/benefits: Flex hours
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs