Cyber Risk Architect - Assistant Vice President

Deutsche Bank   •  

Mc Lean, VA

Industry: Accounting, Finance & Insurance


Not Specified years

Posted 172 days ago

This job is no longer available.

Role Description

This position is aligned within the CISO Architecture team of the CSO group of Deutsche Bank. The team is responsible for developing and enforcing the enterprise security architecture across the Bank.  Specifically, the Cyber Risk Team develops, refines, and implements the cyber architecture risk management process with a focus on holistic security risk reduction, efficiency and effectiveness.

As a Cyber Risk Architect, you will be responsible for assessing the security architecture design of various applications within the Bank using a risk-based approach to confirm compliance.  As a member of the security architecture team, you will facilitate in the understanding and shaping of the end-to-end security strategy, governance, and architecture across IT projects, architectures, and designs. You will provide key contribution into thoughts and ideas for protecting the overall enterprise security of the Bank.


  • Engage with other elements of the Bank to all security architecture assessment efforts integrating with Bank's overall IT vision/strategy/architecture
  • Participate in the identification and assessment of technology solutions and work with engineering teams to develop a strategic implementation roadmap for security technologies as necessary
  • Provide direction, oversight, advice and guidance to direct reports and functional teams to create and foster a culture of architectural excellence: ‘Do it once, do it right’
  • Support the Lead Cyber Risk Architect on IT security strategic planning, risk analysis and other related topics as necessary

Essential Skills:

  • Documented experience assessing risk, developing cyber and information security, process, and frameworks, especially requirements definition and specifications
  • Detailed understanding of cybersecurity threats, vulnerabilities, protection measures, and technologies organizations face
  • Knowledge of the cybersecurity industry and measures/techniques applied to both measure and reduce risk
  • Excellent team member, able to work in virtual teams and a matrix organization
  • Strong customer service and communication skills

Technical Skills and Certifications:

  • At least one of the following certifications: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Information Systems Manager (CISM)

Desirable Skills and Certifications:

  • Experience working in large multilayer global organizations with competing IT interests and goals
  • Project Management Professional (PMP) certification

Language Required:

  • Fluent English (written/verbal)

Special Circumstances:

  • Expected travel for this position is up to 10%

People Management:

  • Actively supports the business strategy, plans and values, contributing to the achievement of a high performance culture
  • Takes ownership for own career management, seeking opportunities for continuous development of personal capability and improved performance contribution
  • Acts as a role model for new employees, providing help and support to facilitate early integration and assimilation of their new environment
  • Supports tough people decisions to ensure people performance is aligned with organization imperatives and needs. Addresses individual performance issues, where necessary, to drive for high performance

Required Skills:

  • Experience with information security governance in an enterprise setting
  • Familiarity with cyber security architecture using trusted computing model
  • Working knowledge of security services such as encryption, authentication, and intrusion detection and prevention architectures, Identity & Access Management, application security and network security
  • Working knowledge of IT management frameworks such as Control Objectives for Information and Related Technology (COBIT) and Information Technology Infrastructure Library (ITIL)
  • Familiarity with ISO 27001, 27002, and 27005.