Information Security Expert / Team Lead 2nd LoD – Non Financial Risk (d/m/w)

Information Security Expert / Team Lead 2nd LoD – Non Financial Risk (d/m/w)

Deutsche Bank

Discover Deutsche Bank, one of the world’s leading financial services providers.

Details of the role and how it fits into the team:

An information security expert and lead of the 2nd LoD Information Security Risk Team should have a proven depth of knowledge on the various cyber and information security technologies and their application in large financial institutions. Leading a team of specialists, the team lead will foster subject matter expertise and drive innovative approaches in applying risk management in an evolving threat environment. The Information Security Expert needs to effectively communicate and challenge senior management and be comfortable in presenting on Information Security Risk 2nd LoD opinions and challenges to regulators. The team has a global footprint in Germany, Singapore and USA.

Your key responsibilities:

1. Define, agree and maintain Information Security Risk Appetite tolerance and thresholds.
2. Continuously improve Information Security Risk framework and governance processes to identify, manage and report mitigation of risks.
3. Ensure the delivery of Non-Financial Risk Management (NFRM) priorities such as risk & control assessments, scenario analysis, risk appetite.
4. Reporting and presenting on the Group Information Security Risk rating, any risk appetite breaches, key remediation glide path.
5. Challenging 1LOD Risk Owners on risk breaches and their remediation glide paths.
6. Leading the team, day to day support and management of the teams priorities and delivery.
7. Providing career development opportunities, SME training to the team.

Your skills and experiences:

1. University degree (Computer Science, Business Administration, Natural Sciences, or equivalent), majors in Information Security and/or Risk Management are a plus.
2. Experience (8+ years) in Information Security with experience in the Finance industry and/or a major Technology company.
3. Experience of people and team management - developing, coaching and mentoring diverse teams.
4. Knowledge of industry/regulatory standards (e.g. EBA Guidelines ISO/27000 Series, COBIT5) are required.
5. Relevant professional certifications are required: e.g. CISSP, CISA, CISM, ISO27001 Lead Auditor or similar.

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.