Cyber Threat Analyst

at  Deutsche Bank

JOB DESCRIPTION SUMMARY

Integrated in Deutsche Bank’s Chief Security Office (CSO), the Information Security Threat Operations team is responsible for mitigating these risks. The Information Security Threat Operations team enables the business of Deutsche Bank by providing agile security operational capabilities.
You will be responsible for the full range of tasks associated with the detection of cyber threats in a fast-paced environment for Deutsche Bank’s cloud workloads, especially on the Google Cloud Platform, using cloud based SIEM/SOAR solutions. Our Cloud Operations team is focused on helping develop Deutsche Bank’s new cloud architecture, platforms/systems, organizational and operational processes to allow for the detection of cyber threats. Once established the focus will shift stronger into the development to detect new threats and perform threat hunting while incorporating change in an evergreen cloud environment.
This will involve maintaining a close dialogue with various units and stakeholders for the purpose of detecting and assessing potential risks to critical business infrastructure and services.

KNOWLEDGE AND EXPERIENCE:

• Minimum 1 years hands-on experience with GCP/AWS or alternatively MS Azure.
• Having at least 1-year experience in developing, modifying, enhancing, and fine-tuning detection and alerting/threat hunting use-cases in any type of SIEM solution (Splunk, LogRhythm, QRadar) or at least 6 months of experience of working with cloud based SIEM solutions (Splunk, Chronicle, Sentinel).
• Experience with industry known detection query languages: YARA, YARA-l, SPL, etc.
• Familiarity with Cyber Security Incident Response or computer forensic processes, or a strong interest and capability to learn the fundamentals of security operations within a short time.
• Have at least 1 year work experience in the fields of either: Encryption; IAM (Identity & Access Management), Security Monitoring & Incident Response, Network Security, Pen Testing, Security Operation, Application Security

EDUCATION AND CERTIFICATIONS:

• Bachelor’s or master’s degree from an accredited college or university with a focus on cloud and network technology, software development, or IT security.
• Certifications as CompTIA Security +, Google Cloud Associate Engineer, Google Cloud Professional engineer, Google Cloud Architect can be considered a plus but they’re not mandatory.
• Any relevant Cyber Security Certifications.
  Our values define the working environment we strive to create – diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer.
  We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation.
  Visit Inside Deutsche Bank to discover more about the culture of Deutsche Bank including Diversity, Equity & Inclusion, Leadership, Learning, Future of Work and more besides

Please refer the Job description for details