Information Security Expert

Job Title: Information Security Expert

Corporate Title: Vice President

Location: Pune, India

Role Description

• The Information Security Senior Specialist role at Deutsche Bank is integrated within the Chief Security Office (CSO)'s Information Security Threat Operations team. This team is responsible for mitigating information security risks and proactively establishing agile security operational capabilities that prioritize robust cyber hygiene, particularly within GCP Cyber Hygiene Operations and Cloud Workload Protection (CWPP), to enable the business effectively.
• The primary focus of this role is to establish, implement, and continuously improve Cyber Hygiene practices across Deutsche Bank's cloud workloads, with a strong emphasis on the Google Cloud Platform and Azure, leveraging cloud-native security tools and platforms, including Cloud Workload Protection Platforms (CWPP). The Cloud Operations team is dedicated to designing and implementing secure cloud architecture, platforms/systems, and operational processes that inherently promote excellent cyber hygiene and workload protection, thereby preventing threats and ensuring a resilient security posture. Beyond initial setup, the role will evolve to focus on developing innovative methods for monitoring and enforcing cyber hygiene standards within GCP and other cloud environments, specifically including CWPP strategies, performing proactive posture management, and continuously adapting hygiene strategies in an evergreen cloud environment. This involves maintaining close communication with various units and stakeholders to ensure consistent application of security best practices, identify potential hygiene gaps, and assess risks to critical business infrastructure and services.

What we’ll offer you

As part of our flexible scheme, here are just some of the benefits that you’ll enjoy,

• Best in class leave policy.
• Gender neutral parental leaves
• 100% reimbursement under childcare assistance benefit (gender neutral)
• Sponsorship for Industry relevant certifications and education
• Employee Assistance Program for you and your family members
• Comprehensive Hospitalization Insurance for you and your dependents
• Accident and Term life Insurance
• Complementary Health screening for 35 yrs. and above

Your key responsibilities

• Identify areas for improvement in existing cloud security postures and proactively drive the implementation of enhanced Cyber Hygiene standards and policies, with a significant focus on GCP Cyber Hygiene Operations and CWPP strategies, within and across teams.
• Contribute to the development of security content for cloud monitoring platforms, focusing extensively on the Google Cloud Platform and Azure. This includes establishing detection use cases, reports, network and asset model management, dashboards, rules/logic, documentation, and processes that actively monitor and reinforce strong cloud cyber hygiene, especially for GCP environments and protected workloads through CWPP.
• Collaborate with other security specialists and experts to support the architecture, design, and implementation of services and processes that bolster our mission of threat prevention through rigorous cyber hygiene adherence and effective CWPP deployment in GCP and other cloud platforms.
• Work closely with Cyber Intelligence and the Security Operations Centre to enhance proactive security capabilities for cloud services, with a focus on identifying and remediating GCP-specific cyber hygiene deficiencies and CWPP misconfigurations that could lead to vulnerabilities or exploitation.
• Manage and oversee a range of sophisticated cloud-native security tools and services, with a strong emphasis on GCP security tooling and Cloud Workload Protection Platforms, aimed at proactively enforcing cyber hygiene compliance, identifying misconfigurations, and continuously assessing the security posture of cloud environments.

Your skills and experience

• Minimum 5 years of hands-on experience with GCP/AWS or MS Azure, with a strong understanding of their security features and best practices for maintaining robust cyber hygiene, particularly within Google Cloud Platform and effective CWPP implementation.
• At least 5 years of experience in developing, modifying, enhancing, and fine-tuning detection and alerting/threat hunting use cases within security platforms. This includes extensive experience in building rules that specifically detect deviations from expected cyber hygiene policies, security baselines, and CWPP configurations in GCP environments.
• At least 12 months of experience working with cloud-native security solutions, with a proven track record in GCP security and compliance tooling, including CWPP solutions, specifically leveraging them for Cloud Security Posture Management (CSPM), compliance monitoring, and hygiene enforcement.
• Experience with industry-known detection query languages including YARA, YARA-I, and SPL, applied to proactively identify security misconfigurations, policy violations, and other indicators of poor cyber hygiene across GCP resources and within protected workloads (CWPP).
• Familiarity with security operations processes, with a strong emphasis on how cyber hygiene failures and CWPP gaps in GCP contribute to an elevated risk profile and a keen interest in developing preventative measures.
• Experience automating tasks using scripting languages like GCP CLI, PowerShell, Go, and Python, particularly for enforcing security configurations, automating hygiene checks, CWPP policy enforcement, and remediating compliance drift across Google Cloud Platform environments.
• Experience with assessment, development, implementation, optimization, and documentation of a wide range of security technologies and processes (e.g., secure software development/Application Security, data protection, cryptography, key management, identity and access management, network security) within SaaS, IaaS, PaaS, and other cloud environments, always with a paramount focus on establishing and improving cyber hygiene, especially within GCP and through CWPP solutions.
• At least 3 years of work experience in fields such as Encryption, IAM (Identity & Access Management), Security Monitoring, Network Security, Pen Testing, Security Operation, or Application Security, with a demonstrated understanding of their critical role in achieving and maintaining robust cyber hygiene, particularly in a GCP context and with CWPP tools.

Education and Certifications

• Bachelor's or master's degree in cloud and network technology, software development, or IT security.
• Certifications like CompTIA Security+, Google Cloud Associate Engineer, Google Cloud Professional Cloud Security Engineer, Google Cloud Professional engineer, or Google Cloud Architect are a plus but not mandatory, especially if they demonstrate a strong focus on GCP security engineering, CWPP, compliance, and hygiene best practices.
• Any relevant Cyber Security Certifications.

How we’ll support you

• Training and development to help you excel in your career.
• Coaching and support from experts in your team.
• A culture of continuous learning to aid progression.
• A range of flexible benefits that you can tailor to suit your needs.

About us and our teams

Please visit our company website for further information:

https://www.db.com/company/company.html

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.