Technical Information Security Officer (TISO)

Position Overview

DB Global Technology is Deutsche Bank’s technology centre in Central and Eastern Europe. Since its set-up in 2013, Bucharest Technology Centre (BEX) has constantly proven its capacity to deliver global technology products and services, playing a dynamic role in the Bank’s technology transformation.

We have a robust, hands-on engineering culture dedicated to continuous learning, knowledge-sharing, technical skill development and networking. We are an essential part of the Bank’s technology platform and develop applications for many important business areas.

Shared Applications and Services organization came to life in 2023 as a direct result of the initiative of organizing shared assets in the bank, like Workflow Platforms, Document Systems, Process Automations etc. Workflow Tribe is a core domain within Deutsche Bank’s Shared Applications and Services (SAS), responsible for delivering scalable, secure, and consumable workflow solutions across the bank. It fosters a culture of innovation, agility, and ownership and it’s recognized as a strategic pillar within SAS, contributing to bank-wide initiatives. It operates under an agile model structured around Squads and Centers of Expertise (CoEs), enabling cross-functional collaboration and continuous delivery.

Responsibilities:

• Be the subdomain-centric Technical Information Security Officer (TISO) and the technology specialists for applications or infrastructure, with an in-depth knowledge of the technologies used in the area they represent, as well as having a clear understanding of the IT security and control issues that may be in place
• Complete Compliance Evaluation against Security Policies & Standards
• Define remediation steps in collaboration with IT Application Owners
• Support group wide remediation efforts
• Support formal risk assessments for applications
• Ensure Asset Security Testing and Security Scanning is performed for own assets
• Security Incident management: review reporting and security monitoring, protect data and re-establish the confidentiality of information
• Ensure Privileged access management good practice
• Recertify technical user access rights
• Enforce policies, standards and guidelines
  
  
  

Skills:

• Experience with working on risk and control topics in a regulated industry
• Experience working with Security Policies and Standards
• Experience conducting formal compliance evaluations of technical and process requirements and risk reviews
• Knowledge of security capabilities (TLS, OAuth2, certificate-based authentication, encryption, Identity and Access Management).
• Good Knowledge of the Software Development Life Cycle processes and the related security controls
• Proactive can-do attitude
• A creative approach towards solving technical problems
• Ability to collaborate and problem solve across teams
• Ability to support incident response when required
• Able to work efficiently with colleagues in multiple locations
• Willing to collaborate across domains, for efficiency in technology sharing and reuse
• Excellent communication skills in English.
  
  
  

Well-being & Benefits

Emotionally and mentally balanced: We support you in dealing with life crises, maintaining stability through illness, and maintaining good mental health.

• Empowering managers who value your ideas and decisions. Show your positive attitude, determination, and open-mindedness.
• A professional, passionate, and fun workplace.
• A modern office with fun and relaxing areas to boost creativity.
• Continuous learning culture with coaching and support from team experts.
• A culture where you can openly speak about mental health.
  
  
  

Physically thriving: We support you in managing your physical health by taking appropriate preventive measures and providing a workplace that helps you thrive. For example, Private healthcare and life insurance with premium benefits for you and discounts for your loved ones, healthier ways of working and check-ups.

Socially connected: We strongly believe in collaboration, inclusion and feeling connected to open up new perspectives and strengthen our self-confidence and well-being.

• 24 days holiday, loyalty days, and bank holidays (including weekdays for weekend bank holidays).
• Hybrid working model with 40% remote work.
• Options for flexible working hours.
• Enjoy retailer discounts, cultural and CSR activities, workshops, and more.
  
  
  

Financially secure: We support you in meeting personal financial goals during your active career and for the future.

• Competitive income, performance-based promotions, and a sense of purpose.
• Meal vouchers, bonuses for referrals
  
  
  

JR: R0424652

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.