Security Incident Response Manager
at Deutsche Bank
București, Municipiul București, Romania -
| Start Date | Expiry Date | Salary | Posted On | Experience | Skills | Telecommute | Sponsor Visa |
|---|---|---|---|---|---|---|---|
| Immediate | 05 Feb, 2025 | Not Specified | 06 Nov, 2024 | N/A | Enterprise Security,Decision Making,Sentinel,Security Devices,Databases,English,Network Engineering,Operating Systems | No | No |
Required Visa Status:
| Citizen | GC |
| US Citizen | Student Visa |
| H1B | CPT |
| OPT | H4 Spouse of H1B |
| GC Green Card |
Employment Type:
| Full Time | Part Time |
| Permanent | Independent - 1099 |
| Contract – W2 | C2H Independent |
| C2H W2 | Contract – Corp 2 Corp |
| Contract to Hire – Corp 2 Corp |
Description:
JOB OVERVIEW
Deutsche Bank (DB) Chief Security Office (CSO) is looking for a senior Information Security professional to support the Bank’s Security Threat Detection & Response (TDR) capabilities.
The TDR Security Incident Manager is responsible for timely acting on security events and incidents, taking decisions to ensure the corresponding course of action for rapid containment and mitigation.
Additionally, he/she acts as a specialist for information security incident response processes to protect the Bank, its partners, and clients of any potential loss. Besides operations tasks, he/she will be supporting to evaluate and adjust processes, tools, and reporting.
SKILLS AND CAPABILITIES REQUIRED
- Good understanding of enterprise technologies especially focusing on security devices, network engineering, operating systems, databases and security configurations on application level.
- Familiar with the MITTRE ATT&CK framework, good knowledge of current threat landscape and attack scenarios/tactics, as well as containment and protection measures .
- Background on incident management, preferrable in the cyber-security field.
- Reasonable understanding on system logs analysis, network traffic logs, payload, event logs, application logs, firewall logs, Active Directory etc.
- Reasonable understanding of Security Incident and Event Management (SIEM) systems, ideally on Splunk Enterprise Security, or Chronicle GCP, or Sentinel.
- Fluent in English, very good communication skills and confident assuming timely decisions.
- Independent way of working with strong decision making and problem-solving ability.
- Appetite for continuous learning.
- Comfortable/experienced with working in international & multicultural teams.
Responsibilities:
- Pre-evaluation of information security alerts raised.
- Support the assessment of financial, reputational, client, market or regulatory impact associated with an information security incident.
- Leadership and management of information security incidents with TDR and involved SMEs.
- Decision taking on the information security incident’s severity, category, and course of action.
- Containment of an information security incident
- Providing accurate information security incident communication to the relevant stakeholders.
- Ensuring proper information security incident documentation and hand over to additional Information Security Incident Manager or SOC shifts as needed.
REQUIREMENT SUMMARY
Min:N/AMax:5.0 year(s)
Information Technology/IT
IT Software - Network Administration / Security
IT
Graduate
Proficient
1
București, Romania
