Swiss Infrastructure Tiso - Geneve, Schweiz - Deutsche Bank

Deutsche Bank

Geprüftes Unternehmen

Geneve, Schweiz

vor 2 Wochen

Geschrieben von:

Lena Schneider

beBee Recruiter

Beschreibung

The Technical Information Security Officer is a Senior IT security professional responsible for implementing and maintaining the required level of security within their specified Infrastructure Assets.

The Swiss Infrastructure TISO will oversee local critical infrastructure components and requires a good general technical background on UNIX, Windows, Networks, and databases as well as an in-depth knowledge on specific technologies such as CyberArk, Active Directory, PKI, Log management with Splunk and HSM.

Key tasks are:

Responsible for Swiss CyberArk platform in the bank (L1, L2, L3)
Responsible for Active Directory privileged access maintenance and operations (L2)
Responsible for HSM platform (L1, L2 and L3)
Data recovery and export: eDiscovery manager with responsibility to coordinate and deliver the local requests
Internet access and DLP exception management. Risk evaluation and permission granting
Infrastructure changes reviewer and approver (CAB). Identify potential conflicts and risks
Business continuity management coordinator
Audit support, responsible to collate and deliver the required evidences
Input as SME on IT security topics on local projects
Provide technical guidance and support to IT staff on security matter
Collaborate with crossfunctional teams for incidents resolution
Application TISO role holder for several infrastructure assets

General responsibilities:

Ensure the compliance of the IT assets with the Information Security Principles ( need to know, segregation of duties ) in cooperation with the Security department
Ensure that the Group's projects and requests are not in contradiction with the Swiss regulations and if required propose adaptations in order remain compliant with Swiss standards
Ensure implementation of controls for identified IS risks in their infrastructures. If this is not possible or not desired, ensure that an appropriate dispensation to accept the residual risk identified due to the lack of controls is obtained as described in the Information Security Policy
Ensure that infrastructure entries regarding IS in the group's inventory of infrastructures are accurate and up to date
Ensure appropriate documentation of IS risk management in their area of responsibility; this includes major decisions, identified and assessed risks as well as risk mitigation measures

Qualifications:

Experience in the following Information Security processes: Identity and Access management, Information Security Incident and Problem Management, Information Security Governance for business and technology
Good analytical skills to evaluate problem, root cause analysis and development of a solution
Positive teamwork mentality, willing to support colleagues and business
Ability to work in virtual global teams in a matrix organisation
Experience in private banking environment (5 years +)
Information Security certification is an asset (CISSP, CISM, CISA, etc.)
Experience on above listed technologies and products
Good communication skills, fluency in English (written/verbal) and local language as appropriate

Our values define the working environment we strive to create - diverse, supportive and welcoming of different views. We embrace a culture reflecting a variety of perspectives, insights and backgrounds to drive innovation.

We build talented and diverse teams to drive business results and encourage our people to develop to their full potential.

Talk to us about flexible work arrangements and other initiatives we offer.