Information Security Officer (ISO)
London, 45 Cannon Street
Deutsche Bank
Discover Deutsche Bank, one of the world’s leading financial services providers. News and Information about the bank and its productsJob Description:
Employer: DWS Group
Title: Information Security Officer (ISO)
Location: London
About DWS:
Today, markets face a whole new set of pressures – but also a whole lot of opportunity too. Opportunity to innovate differently. Opportunity to invest responsibly. And opportunity to make change.
Join us at DWS, and you can be part of an industry-leading firm with a global presence. You can lead ambitious opportunities and shape the future of investing. You can support our clients, local communities, and the environment.
We’re looking for creative thinkers and innovators to join us as the world continues to transform. As whole markets change, one thing remains clear; our people always work together to capture the opportunities of tomorrow. That’s why we are ‘Investors for a new now’.
As investors on behalf of our clients, it is our role to find investment solutions. Ensuring the best possible foundation for our clients’ financial future. And in return, we’ll give you the support and platform to develop new skills, make an impact and work alongside some of the industry’s greatest thought leaders. This is your chance to achieve your goals and lead an extraordinary career.
This is your chance to invest in your future.
Team / division overview
DWS Group operates in a business environment with an almost complete dependence on information, which is processed and transmitted by information systems and interconnected computer networks and stored physically and electronically. Information security risk and threat landscape are dynamic and requirements for security are constantly growing. It is essential for DWS that confidentiality, integrity (authenticity) and availability of information are protected, and risk is managed according to DWS’ Risk Appetite and in accordance with legal and regulatory requirements.
The role of the DWS Information Security Officer (ISO) is aligned to the DWS COO divisional unit and will report into the Divisional Information Security Officer (D-ISO). DWS ISO assumes ownership for the assigned IT Assets from an information security (IS) perspective.
Role Details:
As an Information Security Officer you will (be):
To assume ownership and responsibility for assigned IT assets, in line with the Group Information Security management processes and the DWS ISMS
To execute IS Risk assessments and compliance evaluations for assigned IT assets
To assign accurate information classification to assigned IT assets based on
confidentiality of Information
To maintain the Information Security related documentation of assigned IT assets in the Group’s asset inventory
To establish a good working relationship with Business Application Owners (BAO) and other Subject Matter Experts (SME) of the divisions and functions of the assigned assets and develop profound knowledge of the supported processes and data
To support key role holders such as ITAOs and TISOs to develop a secure environment by evaluating the Information Security requirements as early as possible in the system development life cycle to select the applicable Information Security Controls for implementation
To give guidance to ITAOs and TISOs on the implementation of compensating Controls in case of deviations from the applicable Information Security Controls
To execute and document periodical recertification of user access rights in their area of responsibility in compliance with the Group’s identity and access processes
To support implementation of Segregation of Duty (SoD) rules for the assigned IT assets
To contribute to the Information Security incident management process in the case of a security breach
To deliver all items requested during regulatory and internal Information Security related audits
To remain fully trained and skilled by completing the required Information Security
trainings provided by CSO or as requested by the Divisional CISO or the Divisional ISO.
We are looking for:
Candidate should have proven experience of working in Information Security and/ or Information Technology, ideally in a regulated financial institute
Strong communication (written and verbal) skills with the ability to effectively communicate with different stakeholders within IT and business functions with excellent command of the English language.
Knowledge on Information Security Controls, Data Protection Policy, Information classification principles and segregation of duties requirements within a financial organization
Positive attitude and a team player
Proactive and ability to work independently in a global team
Open to learn, adapt and work with new technologies
Outstanding problem solving, analytical and project management skills
Proficiency with Microsoft Office programs
Fluent English and communication skills
Degree-level IT and/or information security qualification, or equivalent experience in Information Security and IT Security
General understanding of current security industry standards, best practices, and/or frameworks i.e.: NIST, ENISA, ISO27001, OWASP
What we’ll offer you:
At DWS we’re serious about diversity, equity and creating an inclusive culture where colleagues can be themselves sand it’s important to us that you enjoy coming to work - feeling healthy, happy and rewarded. At DWS, you’ll have access to a range of benefits which you can choose from to create a personalised plan unique to your lifestyle. Whether you’re interested in healthcare, company perks, or are thinking about your retirement plan, there’s something for everyone.
Some of our core benefits:
30 days’ holiday + bank holidays, with the option to purchase additional days
A non-contributory pension scheme, up to 10%
Physical and Mental Health Well-Being benefits including (but not limited to) Private Medical Cover, a complimentary GP service and the support of Mental Health First Aiders
Family friendly benefits including generous parental leave packages (supporting all variations of family set-ups), to healthcare plans and travel insurance
The opportunity to support our CSR strategy which is focused on combatting climate change and achieving greater social justice. You can make donations to our partner organisations or take part in corporate volunteering opportunities in your local communities by providing on hand support.
DWS’ Hybrid Working model in the UK is designed to find the right balance between in-person collaboration and engagement in the office, which is core to our working culture, and working from home. Employees who wish to sign-up to our Hybrid Working model are required to work in the office two days a week, and given the flexibility to work from home for the remaining three.
Some business groups may need you to spend more time in the office, but this will be discussed and made clear as part of your application and interview process. We will continue to review and evolve our working environments and methods to ensure that we are working in the best way possible for our people.
If you require any adjustments or changes to be made to the interview process for any reason including, or related to a disability or long-term health condition, then please contact your recruiter and let them know what assistance you may need. Examples of adjustments include providing a change to the format of the interview, or providing assistance when at the DWS office. This will not affect your application and your recruitment team will discuss options with you.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CISO Compliance ISMS ISO 27001 NIST OWASP Risk assessment Strategy
Perks/benefits: Career development Health care Home office stipend Insurance Medical leave Parental leave
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.