Deutsche Bank - AVP - Technology Infrastructure Principal Auditor

Role Description

About Deutsche Bank:

We are Germany's leading bank with strong positions in Europe and significant presence in the Americas and Asia Pacific. We're driving growth through our strong client franchise, investing heavily in digital technologies, prioritizing long-term success over short-term gains, and serving society with ambition and integrity. We serve our clients' real economic needs in commercial and investment banking, retail banking and transaction banking, and provide ground-breaking products and services in asset and wealth management. That means a career packed with opportunities to grow and the chance to shape the future of our clients.

Group Audit:

- The Group Audit (GA) function comprises over 700 staff located in our four hub locations New York, London, Frankfurt, Singapore and 26 other countries across the globe.

- The function is a professional, business focused, proactive risk-based global audit team that operates with transparency, integrity and independence, and assists the Bank's business and infrastructure areas to identify key control weaknesses.

- The GA team prides itself in ensuring the highest standard in professional delivery. The function provides a systematic, disciplined approach to examine, evaluate and report objectively on the adequacy of both the design and operating effectiveness of the systems of internal control and the effectiveness of risk management and governance processes.

- Being Deutsche Bank's 'third line of defense' we have a high profile in the Bank acting as an independent and forward looking challenger and adviser to Senior Management and are increasingly relied upon by the Regulators.

- Our global connectivity provides a stimulating environment and the opportunity to collaborate, network and share knowledge with intelligent colleagues and specialists around the world. Our colleagues are known for their agile minds, looking beyond the obvious, and challenging the status-quo in an open collaborative way. We consistently invest in our people, offering genuine opportunities for development and advancement.

What we'll offer you:

As part of our flexible scheme, here are just some of the benefits that you'll enjoy:

- Best in class leave policy

- Gender neutral parental leaves

- 100% reimbursement under childcare assistance benefit (gender neutral)

- Sponsorship for Industry relevant certifications and education

- Employee Assistance Program for you and your family members

- Comprehensive Hospitalization Insurance for you and your dependents

- Accident and Term life Insurance

- Complementary Health screening for 35 yrs. and above

Your key responsibilities:

In your role as Principal Auditor, Infrastructure Technology you will carry out the planning, preparation, co-ordination and execution of audits, mainly in the area of Information

Technology, security, databases, networks and support Cyber infrastructure as well as IT application auditors with technology infrastructure related topics.

- Evaluate the adequacy and effectiveness of controls relating to technology risks

- Discovering and assessing risks along with communicating them to the responsible management/stakeholder teams

- Planning, preparing, coordinating and executing audits to evaluate the adequacy and effectiveness of controls within the Information Technology and security

- Support the implementation of the Group Audit risk-based methodology including; performing coverage of Infrastructure technology processes and the respective cyber technology environment along with supporting structured ongoing risk assessments via the Continuous Audit Assessment process.

- Undertaking audit assignments, drafting and consolidating audit reports for review by Audit Management and facilitate issue tracking and validating the closure of audit findings

- Completing all assigned assignments on a timely basis, including ad hoc projects and special enquiries

- Developing relationships across the Bank and communicating the results of the work to stakeholders on all levels

- Serve as a subject matter expert (SME) for colleagues on issues or questions related to within Group Audit

- Work as a teammate on a global team, interacting with colleagues in Singapore, Frankfurt, London, and the United States

- Pro-actively developing and maintaining professional working relationships with colleagues, the Business and respective support areas

- You will be expected to remain constantly aware of emerging and technology trends and remain abreast of the general cyber environment

Your skills and experience:

Successful candidates will be self-starters, combining enthusiasm for the role with the ability to work in partnership with the other audit teams across the globe in delivering 'one face' to our stakeholders and external stakeholders including regulators. Individual must be able to operate at management level of the Bank.

It is expected that the candidate will:

- Have multiple years of audit experience in the following topics: Information Security, IT infrastructure, IT production, IT operations, and IT Vendor Risk Assessments

- Be familiar with various Information Technology Frameworks; e.g. FFIEC handbook, CAT tool, CoBit, ISO 27k, NIST 800 series, CSC Top 20 Security Controls and be able to use these as guides to evaluate the state of controls within the bank

- Have experience in performing audits and security assessments, with particular focus on technology infrastructure, cyber security, information security, cloud technology, technology management, governance and compliance with regulatory and policy requirements

- Show experience in IT Audit, IT Risk Management, IT Compliance Management, Information Security, PCI Compliance, SOX Compliance, and/or Vendor

- Excellent written and communication skills along with presentation skills

Risk:

- Must have a good understanding of IT controls, security control processes, information security and regulatory requirements in the financial sector

- Have experience of analyzing and articulating IT risks from current threat vectors, combined with technical and process skills in an enterprise environment.

- Have excellent written / verbal communication skills and the ability to communicate effectively and at all management levels

- Be adaptable, pro-active, self-sufficient and innovative with strong organizational skills to take ownership and responsibility of agreed targets, meeting time-lines within budget to enable a timely and efficient completion of audit projects

- Show ability to multi-task assignments, prioritize workload with limited supervision and be able to perform under pressure delivering to deadlines without sacrificing on quality

Qualifications:

- Bachelor's degree level with a concentration in Computer Science (or equivalent qualification / work experience required), Master's degree preferred

- Have certifications demonstrating familiarity with Technology Information, Security and audit practices; e.g. CISSP, CISA, CISM, CIPP/IT, SANS GIAC, CCNA,

- Strong written, verbal, and communication skills