Senior Network Engineer, AVP
Deutsche Bank View all jobs
- Pune, Maharashtra
- Permanent
- Full-time
- Best in class leave policy
- Gender neutral parental leaves
- 100% reimbursement under childcare assistance benefit (gender neutral)
- Sponsorship for Industry relevant certifications and education
- Employee Assistance Program for you and your family members
- Comprehensive Hospitalization Insurance for you and your dependents
- Accident and Term life Insurance
- Complementary Health screening for 35 yrs. and above
- Data Security Posture Management (DSPM):
- Design, implement, and manage DSPM solutions (e.g., Varonis, Securiti.ai, Symmetry Systems, Cyera, Laminar, Microsoft Purview) to discover, classify, and protect sensitive data across on-premises and multi-cloud environments (AWS, Azure, GCP).
- Develop and enforce data security policies, standards, and controls based on risk assessments and regulatory requirements (e.g., GDPR, CCPA, BaFin, EBA).
- Monitor DSPM tools for data security incidents, policy violations, and anomalous activities, and lead incident response efforts related to data breaches.
- Conduct regular data risk assessments, identifying vulnerabilities and recommending remediation strategies to enhance data security posture.
- Generate reports and dashboards on data security posture, compliance, and risk for management and audit purposes.
- Stay abreast of the latest DSPM technologies, threats, and best practices, continuously evaluating and recommending improvements to our data security program.
- DevOps Security Integration:
- Integrate security controls and best practices into the entire DevOps pipeline (CI/CD) to ensure security is "shifted left."
- Collaborate with development and operations teams to embed data security considerations into application design, development, and deployment processes.
- Implement and manage security tools for static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), and infrastructure as code (IaC) security scanning.
- Automate security tasks and workflows using scripting (e.g., Python, PowerShell) and orchestration tools.
- Provide security guidance and training to development and operations teams on secure coding practices and data protection principles.
- Networking and Infrastructure Security:
- Design, implement, and maintain secure network architectures, including firewalls (next-gen, web application), intrusion detection/prevention systems (IDS/IPS), VPNs, and micro-segmentation solutions.
- Configure and manage network security policies, access controls, and routing to protect sensitive data flows.
- Perform network vulnerability assessments and penetration testing to identify and remediate security weaknesses.
- Monitor network traffic for suspicious activity, anomalies, and potential threats, utilizing SIEM and network forensics tools.
- Troubleshoot network security issues and provide expert guidance on remediation.
- Ensure secure configuration and hardening of operating systems, databases, and other infrastructure components.
- General Security Responsibilities:
- Contribute to the development and enhancement of Deutsche Bank's overall cyber security strategy.
- Participate in security incident response, forensic analysis, and post-mortem activities.
- Collaborate with internal and external auditors, providing evidence and support for compliance reviews.
- Mentor junior team members and share knowledge on data security best practices.
- Maintain detailed documentation of security configurations, procedures, and architectural diagrams.
- Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
- 5+ years of hands-on experience in Information Security, with a strong focus on Data Security.
- Proven hands-on experience with DSPM tools (e.g., Varonis, Securiti.ai, Symmetry Systems, Cyera, Laminar, Microsoft Purview) including implementation, configuration, and operational management.
- Strong understanding and practical experience with DevOps methodologies and tools (e.g., Git, Jenkins, Azure DevOps, GitLab CI/CD, Ansible, Terraform).
- In-depth knowledge and hands-on experience in network security concepts and technologies, including firewalls (e.g., Palo Alto, Check Point, Cisco ASA), IDS/IPS, VPN, WAF, DNS security, and network segmentation.
- Experience with cloud security principles and services in at least one major cloud provider (AWS, Azure, or GCP).
- Proficiency in scripting languages such as Python or PowerShell for automation and data analysis.
- Solid understanding of security frameworks and standards (e.g., NIST, ISO 27001, CIS Benchmarks).
- Experience with regulatory compliance requirements relevant to financial services (e.g., GDPR, CCPA, BaFin, EBA).
- Excellent analytical, problem-solving, and communication skills, with the ability to articulate complex security issues to both technical and non-technical audiences.
- Ability to work independently and as part of a team in a fast-paced, global environment.
- Relevant industry certifications (e.g., CISSP, CISM, CISA, CCSP, OSCP, Azure/AWS Security Specialty).
- Experience with data loss prevention (DLP) solutions.
- Familiarity with containerization technologies (Docker, Kubernetes) and their security implications.
- Experience with Security Information and Event Management (SIEM) platforms (e.g., Splunk, Microsoft Sentinel).
- Knowledge of database security and data encryption technologies.
- Strong problem-solving and analytical skills to assess security threats and data exposure risks.
- Ability to work cross-functionally with Security, IT, and Risk teams.
- Effective written and verbal communication skills, especially when documenting security configurations and investigations.
- Professional certifications such as CISSP, CISM, CCSP, GIAC (GCIH, GCFA)
- Training and development to help you excel in your career
- Coaching and support from experts in your team
- A culture of continuous learning to aid progression
- A range of flexible benefits that you can tailor to suit your needs