Network Security Engineer - Assistant Vice President

Network Security Engineer - Assistant Vice President

Job ID: 3154215
Full/Part-Time: Full-time
Regular/Temporary: Regular
Listed: 2018-06-07
Location: New York, United States of America

Our technology teams are responsible for the Bank's entire information technology ("IT") infrastructure, and the development, implementation, and protection of the software required to support all of the Bank's businesses. We move over EUR 1.6 trillion across the Bank's platforms, support thousands of trading desks, and enable millions of banking transactions, share trades and emails every day.

With award-winning mobile banking apps and trading systems, our technology platforms help Deutsche Bank deliver high quality products to clients. Naturally, we make sure that the phones work, emails are delivered and PCs run - but we also develop collaboration platforms and workspaces that help our people share their knowledge, expertise and passion for our business.

Developments in technology are changing the way we communicate, work and think. Join us here, and you'll constantly be looking ahead. We'll look to you to capitalize on new technological trends that can reshape our business and deliver value for our clients, whilst still meeting the demands of customers, regulators and the markets.

Position Overview

Job Title: Network Security Engineer
Corporate Title: Associate
Location: New York, New York

About Deutsche Bank

We are Germany's leading bank with strong positions in Europe and significant presence in the Americas and Asia Pacific. We're driving growth through our strong client franchise, investing heavily in digital technologies, prioritizing long-term success over short-term gains, and serving society with ambition and integrity. We serve our clients' real economic needs in commercial and investment banking, retail banking and transaction banking, and provide ground-breaking products and services in asset and wealth management. That means a career packed with opportunities to grow and the chance to shape the future of our clients.

The COO Chief Information Security Office (CISO) is responsible for addressing information security risks to the Deutsche Bank global IT real estate. We are focused on delivering a multi-layered "defense in depth" approach to ensuring Deutsche Bank's information assets are adequately protected.

  • This role will be part of the CISO CTO Security Engineering team. This position will engineer solutions used by the global network segmentation program. This role will provide overall technical guidance overseeing/supporting: requirements, architecture, design, use cases, review test reports, vendor selection, and implementation plans. The envisioned role will work closely with key stakeholders such as the network teams, Active Directory, desktop engineering and others. This will help to ensure, the security solution is managed end-to-end, where necessary support from other teams is clearly understood and managed
  • Provide experienced, highly skilled network engineering to support a wide range deployment activities with a focus on routing and switching and the Cisco product line. Support both routine changes and large projects in the network backbone, data center, extranets, the trading floor, and the branch network. Projects will range from the design and build-outs of new locations and silos to the rollout of new features and functionality for global initiatives in support of global network segmentation
  • The engineer will be responsible for designing and implementing solutions leveraging and expanding on existing design standards, liaising with internal customers, raising changes and deploying new technologies as required by the project. He/she will also responsible for delivering the requisite level of network resiliency and for testing network failover
  • Additionally, the engineer will support project managers and the regional management team in project planning, tracking, and reporting when required
  • Provide technical oversight of the Network Segmentation program with an emphasis on requirements, architecture, design, use cases, vendor selection and the security posture of the solution
  • Ensure architecture and subsequent designs (HLD and LLD) are well vetted
  • Thoroughly analyze use cases/scenarios for the various environments (current and future). This includes: 3rd Party Data Centers, Azure, AWS, and PaaS
  • Understanding of technology risk concepts, including controls and control frameworks, technology risk domains, risk measurements and methodologies in line with GTO technology risk management but specific to the business of operation DB's global network in global consistent way
  • Analyze and manage the impact and dependencies of new controls to other functions. Make the necessary support transparent to senior management for their prioritization and support
  • Provide technology expertise and thought leadership with an emphasis on security and network technologies

Essential Skills:
  • Strong knowledge in Security, Network Architecture, Networks- and Infrastructure security technologies including ISE, IBAC/RBAC and SDP (Software Defined Perimeter)
  • Working knowledge of the following systems/technologies: I&AM, AD, Radius, IBAC, 802.1x, Linux, Windows 7/10 and networking
  • Strong knowledge in current security threats and corresponding technologies.
  • Experienced in working with various level of stakeholders and multi-cultural/global teams
  • An excellent technical and non-technical communicator both written and verbal, with excellent team building skills and the passion to deliver the very best service to the business
  • A highly proactive self-starting ethos, with strong customer focus
  • A strong work ethic, high professionalism and exceptional problem solving skills
  • A high standard of personal presentation with the ability to imbue confidence in colleagues and clients
  • The ability to effectively manage quality and to ensure a consistently high degree of successful delivery within resource, time and cost constraints
  • Experience of successfully working with global teams across multiple time zones
  • Exemplary co-ordination skills and the ability to understand business drivers / IT requirements
  • Proven ability to initiate, develop and maintain relationships with technical and non-technical teams and individuals
  • Strong Microsoft Office skills
  • Ability to work under pressure and to tight deadlines whilst maintaining attention to detail

Technical Skills and Certifications:
  • Degree or equivalent level with appropriate Industry standard qualifications
  • Security Certification i.e. CISSP, CISA
  • 5-10+ years of experience in IT Security including requirements, architecture, design, and vendor engagements

• Experience in risk assessment, interpretation, analytical and negotiation skills
  • Strong experience in technical problem resolution skills
  • Experience with large scale Global Security infrastructure projects such as Network Segmentation or migration effort
  • Experience working in an Investment Bank or similar environment

Language Required:
  • English (Fluency)

Special Circumstances:
  • Based in the DC Metro area
  • able to occasionally travel to New York, London, Frankfurt and other locations as required

Required Skills:
  • Experience in Security and networking
  • Strong analytical skills
  • Strong experience in technical problem resolution skills

Education/ Qualifications:
  • Technical degree (desirable)

For candidates applying for positions in the US:

Deutsche Bank is an Equal Opportunity Employer - Veterans/Disabled and other protected categories. Click these links to view the "EEO is the Law" poster and pay transparency statement.

Meet Some of Deutsche Bank's Employees


AVP—Anti-Financial Crime

Laura coordinates Deutsche Bank’s global efforts to combat criminal behavior by introducing and enforcing important policies and procedures.


Associate—Chief Security Office

Jamal works in the Chief Security Office, supporting the regional execution of the Information Security program and analyzing the effectiveness of information security controls across group wide products and services.

Back to top