Lead Information Security Expert

Job Description:

Job Title: Cyber Security Risk and Controls Lead

Location: Pune, India

Role Description

• DWS Group (DWS) is one of the world's leading asset managers with EUR 963bn of assets under management (as of 31 Oct 2024). Building on more than 60 years of experience, it has a reputation for excellence in Germany, Europe, the Americas and Asia. DWS is recognised by clients globally as a trusted source for integrated investment solutions, stability and innovation across a full spectrum of investment disciplines.
• We offer individuals and institutions access to our strong investment capabilities across all major asset classes and solutions aligned to growth trends. Our diverse expertise in Active, Passive and Alternatives asset management – as well as our deep environmental, social and governance focus – complement each other when creating targeted solutions for our clients. Our expertise and on-the-ground-knowledge of our economists, research analysts and investment professionals are brought together in one consistent global CIO View, which guides our investment approach strategically.
• DWS is transforming its internal information and cyber security team. As the Cyber Risk and Controls Lead reporting to the Head of Security Assurance you will be responsible for ensuring the effective security risk and control management for DWS Group.
• We are open for candidates located in TBD.

What we’ll offer you

As part of our flexible scheme, here are just some of the benefits that you’ll enjoy

• Best in class leave policy
• Gender neutral parental leaves
• 100% reimbursement under childcare assistance benefit (gender neutral)
• Sponsorship for Industry relevant certifications and education
• Employee Assistance Program for you and your family members
• Comprehensive Hospitalization Insurance for you and your dependents
• Accident and Term life Insurance
• Complementary Health screening for 35 yrs. and above

Your key responsibilities

• Defining and implementing a risk management process that is aligned to the DWS Enterprise Risk Management Framework
• Supporting ICS colleagues in delivering security risk assessments including review of ICS related regulatory requirements
• Performing security risk assessments and creating reports for senior stakeholders
• Maintaining the KCI definition and resolution tracking
• Recommending risk mitigation solutions and strategies to business stakeholders
• Ensuring a consistent approach to risk management across ICS
• Establishing proportionate risk governance activities to support business objectives

Your skills and experience

• Comprehensive experience of providing consultancy-style services to advise, guide and influence decisions on cyber risk to senior business stakeholders and security advisors, preferably within large financial organisations
• Demonstrated ability to analyse and coherently present complex threat risk information relevant to the audience that clearly articulates business impact(s)
• Comprehensive knowledge of, and experience using one or more best practice frameworks and standards for information security such as ISO 27001, NIST, BS EN 31111 CoBIT etc

How we’ll support you

• Training and development to help you excel in your career
• Coaching and support from experts in your team
• A culture of continuous learning to aid progression
• A range of flexible benefits that you can tailor to suit your needs

About us and our teams

Please visit our company website for further information:

https://www.db.com/company/company.htm