We are looking for a knowledgeable Information Security Analyst to operating as a member of the Chief Security Office (CSO) Third Party Security team (TPS). As an Information Security Analyst, you will be responsible for supporting the development, execution, and maintenance of Deutsche Bank’s information security strategy and program under the management of the CSO. You will work in strategic alignment and partnership with Deutsche Bank’s Third Party Risk Management (TPRM) program under Third Party Management (TPM).

What We Offer You

A diverse and inclusive environment that embraces change, innovation, and collaboration
A hybrid working model, allowing for in-office / work from home flexibility, generous vacation, personal and volunteer days
Employee Resource Groups support an inclusive workplace for everyone and promote community engagement
Competitive compensation packages including health and wellbeing benefits, retirement savings plans, parental leave, and family building benefits
Educational resources, matching gift and volunteer programs

What You’ll Do

Conduct Information Security Third Party risk assessments as part of the overall Third-Party Risk Management process (incl. onsite visits/reviews at our Third Parties) as well as risk review and business impact analysis of the identified gaps, and provide comprehensive documentation of the identified gaps
Review Third Party policies and evidence related to Information Security, review Third Party security gap analysis against the Deutsche Bank security requirements, while tracking Third Party and services, escalate issues when necessary
Formulate remediation recommendations, and actively work with Third Partys and project managers on Information Security related findings to resolve issues as quickly as possible to help build and strengthen the relationship
Support and coordinate Third Party Information Security Review processes, track Third Partys and services, escalate issues when necessary, negotiate with Third Party, business units, and legal team on the contractual security obligations, in addition to assisting with compliance and risk assessment programs which support corporate wide security programs, and participating in additional key control projects related to the overall enhancement of the assessment function
Able to provide constant communication with involved stakeholders (within in the Bank and outside the Bank), as well as document and present information security risks in a clear, concise, and understandable manner at various management levels in the bank and/or to the Third Party
Provide response and necessary artifacts for Regulatory queries across all regions (globally), in addition to supporting the team to improve the overall security control framework (e.g. new controls, enhancement of existing controls)

Skills You’ll Need

Overall experience in Information Technology (IT) Security and Information Security (both technical and organizational controls), as well as Experience with ISO27001 standard and current industry and agency standards, best practices and frameworks including NIST, ENISA, ISO27001, ISO27017, SOC2, PCI, MITRE ATT&CK, Cloud Security Alliance (CSA), Cloud Controls Matrix (CCM), and CSS Consensus Assessment Initiative Questionnaire (CAIQ)
Knowledge of technical and organizational controls regarding Information Security, and Risk Management principles
General understanding of banking/financial industry and services and the ability to evaluate impact of security risks on banking/financial institutions
Understanding of financial regulations or guidance’s which impact information security (e.g.: EU Cybersecurity Act, MAS & HKMA TRM, EBA Guidelines, DORA, GDPR, NYDFS, SoX, etc), as well as of Governance Risk and Control (GRC) tools, services, frameworks, and best practices
Highly proficient in MS Office Suite - Microsoft Word, Excel, PowerPoint, etc. for reporting purposes

Skills That Will Help You Excel

Excellent communication skills, both written and spoken
Experience with (or Knowledge of) Shared Assessment Programs(e.g.: SIG, FSQS, etc) (a plus)
Experience with (or Knowledge of) in Data Reporting including definition of metrics and data sources (a plus)

Expectations

It is the Bank’s expectation that employees hired into this role will work in the Jacksonville office in accordance with the Bank’s hybrid working model.

Deutsche Bank provides reasonable accommodations to candidates and employees with a substantiated need based on disability and/or religion.

The salary range for this position in Jacksonville, FL is $78,000 to $111,800. Actual salaries may be based on a number of factors including, but not limited to, a candidate’s skill set, experience, education, work location and other qualifications. Posted salary ranges do not include incentive compensation or any other type of renumeration.

Deutsche Bank Benefits

At Deutsche Bank, we recognize that our benefit programs have a profound impact on our colleagues. That’s why we are focused on providing benefits and perks that enable our colleagues to live authentically and be their whole selves, at every stage of life. We provide access to physical, emotional, and financial wellness benefits that allow our colleagues to stay financially secure and strike balance between work and home. Click here to learn more!

Learn more about your life at Deutsche Bank through the eyes of our current employees https://careers.db.com/life

The California Consumer Privacy Act outlines how companies can use personal information. If you are interested in receiving a copy of Deutsche Bank’s California Privacy Notice, please email HR.Direct@DB.com.

#LI-HYBRID

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.

We are an Equal Opportunity Employer - Veterans/Disabled and other protected categories. Click these links to view the following notices: EEOC Know Your Rights; Employee Rights and Responsibilities under the Family and Medical Leave Act; Employee Polygraph Protection Act and Pay Transparency Nondiscrimination Provision.

Apply now

See more open positions at Deutsche Bank

Privacy policy Cookie policy