Information Security Specialist – Cloud Security Engineering

Job Description:

DB Global Technology is Deutsche Bank’s technology center in Central and Eastern Europe. Opened in January 2014, the Bucharest office is constantly expanding.

The team is made up of enthusiastic professionals that work in an international environment adapting to different context and learning new technologies and parts of Deutsche Banks’ businesses.

Every day we look at what needs to be done to support continuous business and how to improve current activities. Changing the Bank is a challenging endeavour which we tackle every day and enjoy our success when our efforts fundamentally change how Deutsche Bank works.

Our team focuses on Cloud Security Engineering and specializes in developing in-cloud security controls (guardrails) using infrastructure-as-code, policy-as-code techniques, and a mix of cloud-native and third-party solutions. We are looking for an information security specialist in Cloud Security Engineering to analyse and specify how to secure cloud services in Azure, with the objective to help the Bank innovate and adopt public cloud at scale, while protecting its data. You’ll need to have a blend of security, engineering, and cloud skills, and a passion for cloud security.

Responsibilities

• Analyse the security features and needs of Azure cloud services that have been requested by the Bank’s End User Computing developer community.
• Specify security rules for guardrails that can be enforced both at build time and at run time, using third party and cloud-native tooling.
• Identify other security-enforcing measures that are needed to make the cloud services safe to use, and work with the owners of those solutions to plan the implementation.
• Clearly document your analysis, any residual risks that you have identified, and the implementation plan for controls; and present this to stakeholders for their review and agreement.
• Collaborate with other engineers to ensure specifications are implemented in policy-enforcing tools, and contribute to the team’s tooling strategy, and act as an internal expert in the security features of cloud services, to advise other teams on options for improving and maintaining security; contributing to or reviewing architectural reference documents for those cloud services.

Skills

• Understanding of cloud platforms, Microsoft Azure preferred, with the ability to go hands-on to investigate the platforms’ security features.
• Exposure to current development techniques such as agile, CI/CD pipelines, Terraform.
• Awareness of security products such as Cloud Security Posture Management (CSPM) or Cloud Native Application Protection Platform (CNAPP) tools.
• The ability to write and explain your ideas in a very clear and concise way, tailoring your style to the knowledge of the audience.
• Understanding of an international, complex, matrix-management organization and working with audit, control, and risk functions in a regulated organization.

Well-being & Benefits

• ·A rewarding work: we offer a purpose, a competitive income and promotions based on performance  
• ·Managers that empower your ideas and your decision-making abilities. You’re encouraged to show your good vibe, determination, and open mindedness  
• ·A professional, passionate, driven, but at the same time fun workplace. It is also flexible, including Work from Home opportunities  
• Medical insurance with premium benefits for you and discounted for your loved ones   
• The better you feel, the better you work. We nurture you with highly modern office that includes plenty of fun and relaxing areas to boost your creativity. We also facilitate copiously retailer discounts, cultural and CSR activities, employee sport clubs, workshops & more. 

Our cultural aspiration is to be ‘empowered to excel together every day’. This means we strive for the highest standards of integrity, are accountable while learning from mistakes, promote speaking up and constructively challenge each other to further innovation. Seeking out conversations, proactively embracing change, new facts and different perspectives helps our talented and diverse teams to work in partnership across the globe and drive business results.

We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, be liefs and generations and are committed to providing a positive and fair working environment free from harassment, discrimination and retaliation.

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.