SOAR/Threat Center Engineering Lead (f/m/x))

DB Global Technology is Deutsche Bank’s technology centre in Central and Eastern Europe. Since its set-up in 2013, Bucharest Technology Centre (BEX) has constantly proven its capacity to deliver global technology products and services, playing a dynamic role in the Bank’s technology transformation.

We have a robust, hands-on engineering culture dedicated to continuous learning, knowledge-sharing, technical skill development and networking. We are an essential part of the Bank’s technology platform and develop applications for many important business areas.

About the business area

The Chief Security Office (CSO) comprises the Chief Information Security Office (CISO) and the Corporate Security unit. The CISO organization guarantees information security for Deutsche Bank.

In order to do this, we provide the Information Security teams with solutions through implemented different projects to support their operations and automate their processes. Furthermore, our team monitors and ensures the compliance of CSO application to DB policies on technical level.

About the Role:

Deutsche Bank is looking for a Threat Response Engineering Lead. You will be involved in exciting projects in our company and our worldwide business network. The successful candidate would be responsible for the Security Monitoring and Response Architecture across the pillar of Chief Security Office (CSO).

The successful candidate would lead defining of engineering and architecture workloads to guide solution design, develop the target technology estate to support the organization’s business strategies, develop roadmaps to enable transition to the target estate, govern the transition and provide guidance and support throughout the implementation process, ensuring that solutions are built according to architecture principles and align to the roadmaps and organization’s target deliveries. They often act as a bridge between technical teams and business stakeholders, helping to communicate technical concepts in a clear and understandable manner.

Responsibilities

• Leadership and Vision: Develop and execute a comprehensive security automation strategy that aligns with the bank’s overall cybersecurity objectives. Guide engineers in planning, execution, and evolution of the infrastructure to meet current and future security demands.
• Budgeting and Resource Allocation: Supporting the budgeting process, ensuring resources are allocated efficiently to support security operations, project initiatives, and technology upgrades.
• Team Leadership and Development: Lead a group of engineers, setting clear objectives, promoting a culture of innovation, and ensuring the development of high-performance teams capable of executing the organization's security strategy effectively. Build and maintain a strong collaboration with SIEM platforms owners Chronicle SIEM, Sentinel, Splunk, in order to deliver a good  end-to-end security posture. Collaborate with cross-functional teams to ensure alignment and coordination across operations as it relates to project execution.
• Technology Implementation and Optimization: Spearhead the selection, engineering, and deployment of security automation solutions to enhance security operations. Ensure these technologies are leveraged to their fullest for sophisticated security monitoring and automated threat response.
• Contract Management: Forge partnerships with key technology vendors and service providers. Manage contracts that align with the bank’s strategic goals and budgetary constraints, ensuring access to premier services and support.

Skills

• 7-10 years of security engineering experience with SIEM, Security Orchestrations, and Incident Response, Application Cybersecurity, Vulnerability Management
• GCP and Azure experience, Cloud Cybersecurity Principles, Cloud Application Hardening, Cloud Solutions Hardening
• Professional certifications such as CISSP, CISM, GIAC, or similar education desirable.
• Demonstrated technical leadership experience in security automation, and cybersecurity within a large, global enterprise. Experience leading engineering team is required.
• Comprehensive knowledge of SOAR platforms like Chronicle, Splunk
• Excellent communication and interpersonal skills, with the ability to effectively convey strategic visions and complex security concepts to a wide range of stakeholders.
   

Well-being & Benefits

Well-being & Benefits

Emotionally and mentally balanced: we support you in dealing with life crises, maintaining stability through illness, and maintaining good mental health

• Empowering managers who value your ideas and decisions. Show your positive attitude, determination, and open-mindedness.
• A professional, passionate, and fun workplace with flexible Work from Home options.
• A modern office with fun and relaxing areas to boost creativity.
• Continuous learning culture with coaching and support from team experts.

Physically thriving we support you managing your physical health by taking appropriate preventive measures and providing a workplace that helps you thrive

• Private healthcare and life insurance with premium benefits for you and discounts for your loved ones.

Socially connected: we strongly believe in collaboration, inclusion and feeling connected to open up new perspectives and strengthen our self-confidence and wellbeing.

• Kids@TheOffice - support for unexpected events requiring you to care for your kids during work hours.
• Enjoy retailer discounts, cultural and CSR activities, employee sport clubs, workshops, and more.

Financially secure: : we support you to meet personal financial goals during your active career and for the future

• Competitive income, performance-based promotions, and a sense of purpose.
• 24 days holiday, loyalty days, and bank holidays (including weekdays for weekend bank holidays).

Interested in more: discover what our employees value in the Well-being & Benefits hub!

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.