Overview
Job Title: AVP – Information Security Specialist
Job Description Summary
The candidate will support the team’s role in ensuring security compliance in the SDLC Governance process and act as ITAO delegate for the Secure Tooling application.
You’ will work with all of Chief Information Security Office (CSO) as well as with the business aligned technology functions and group CIO
What we’ll offer you
As part of our flexible scheme, here are just some of the benefits that you’ll enjoy
- Best in class leave policy
- Gender neutral parental leaves
- 100% reimbursement under child care assistance benefit (gender neutral)
- Flexible working arrangements
- Sponsorship for Industry relevant certifications and education
- Employee Assistance Program for you and your family members
- Comprehensive Hospitalization Insurance for you and your dependents
- Accident and Term life Insurance
- Complementary Health screening for 35 yrs. and above
Your key responsibilities
- Ensuring verifications of the SDLC Governance (SDLC G) Controls are done on a daily basis and in an accurate and timely manner.
- Ensuring sound consultancy and advice are delivered to all relevant business units and Application teams
- Engaging with application development teams globally
- Maintaining relationship with our CSO control owner as well with the central owners required for the implementation of agreed security related solutions (e.g.: Application Penetration Testing (APT), Application Code Scanning (ACS & VAST), Identity and Access (I&A) and RACER.
- Representing all CSO SDLC G controls at Operational Readiness Review (ORR)
- Representing all CSO SDLC G controls in the SDLC Governance Forum
- Acting as a key subject matter expert (SME) on the Application Security team as well as acting as an interface between IT and related functions across business units and application groups to embed service delivery
- Supporting, as appropriate, group wide security and information risk management initiatives
- Supporting the production of accurate monthly reporting with key metrics and measures as well as timely, risk focused management information (MI) and reporting for Security Management, Business units and Application teams
- Drive and implement automation for the CSO SDLC G controls to reduce all manual verification steps
- Maintain the CSO SDLC G control and ORR related confluence content together with control owners
- Act as ITAO delegate for Secure SDLC Tooling
Your Skills and Experience:
- Experience in Information Technology /Cyber Security
- Experience in the Financial Services/Management industry
- Secure Development Lifecycle (SDLCG) exposure to development processes would be desirable
- Communications – excellent communications skills
- Very friendly service oriented behavior even in stressful situation
- Very reliable and accurate
- Fluent in English (written/verbal)
Preferable
- Familiarity with Secure SDLC technologies e.g. Veracode, SonarQube, Sonarlint, ZAP, goSDL
- Firm understanding of DevSecOps and the banks shift left agenda
- ITAO certificated
How we’ll support you
- Training and development to help you excel in your career
- Flexible working to assist you balance your personal priorities
- Coaching and support from experts in your team
- A culture of continuous learning to aid progression
- A range of flexible benefits that you can tailor to suit your needs
About us and our teams
Please visit our company website for further information:
https://www.db.com/company/company.htm
Our values define the working environment we strive to create – diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation. We build talented and diverse teams to drive business results and encourage our people to develop to their full potential. Talk to us about flexible work arrangements and other initiatives we offer.
We promote good working relationships and encourage high standards of conduct and work performance. We welcome applications from talented people from all cultures, countries, races, genders, sexual orientations, disabilities, beliefs and generations and are committed to providing a working environment free from harassment, discrimination and retaliation.