COO - Regional Security Controls Lead - VP
Operations provides support for all of Deutsche Bank's businesses to enable them to deliver transactions and processes to clients. Our people work in established global financial centres such as London, New York, Frankfurt and Singapore, as well as specialist development and service centres in locations including Bucharest, Moscow, Pune, Dublin and Cary. We process payments in excess of a trillion euros across the bank's platforms, support thousands of trading desks and enable millions of banking transactions, share trades and emails every day.
A dynamic and diverse division, our objective is to make sure that all our services are executed in a timely and professional manner, that risk is minimised and that the client experience is positive. We are proud of the professionalism of our people, and the work they do. In return, we offer excellent career development opportunities to foster skills and talent. Position Overview Overview:
Data Centre Services (DCS) is accountable for demonstrating both governance and control over the suppliers who run and manage Data Centers (DCs), Co-Locations (Co-Lo), Technology Equipment Rooms (TER) and Telecommunications Rooms (TR) across the organisation. This includes, but is not limited to, physical security, asset protection, deployment, capacity management and assurance.
Reporting to the Head of Data Centre Services Governance & Control, this role is responsible for all activity relating to audit and operational risk management. This includes working with vendors and across team to identify and actively ensure risk is effectively reported and managed. The role holder needs to manage, track and report Data Centre Services audit findings and actions and self-identified issues (SIIs), as well as ensuring security operations, security policies and procedures for DCS are in line with DB and relevant regional / country regulatory requirements. Roles and Responsibilities:
The Regional Security Controls Lead will support the following activities as directed by the Head of Data Centre Services Governance & Control.
- Provide proactive management of security controls for DCS in region, working closely with key stakeholders including Compliance, Chief Security Office (CSO), Corporate Real Estate (CRES) and the Divisional Control and Risk Office (DCRO).
- Ensure site security team is following all DB policies, including global security standards, protocols and Standard Operating Procedures (SOPs).
- Where no global standards, protocols or SOPs exist, the Regional Security Controls Lead must work in collaboration with the Head and other Regional Leads to develop and maintain standards and procedures to ensure the effective execution of global physical security strategies.
- Work closely with IT operational teams, CRES and CSO for effective and efficient BAU operation of data centre facilities.
- Assist in the coordination of security and risk services to support planned and unplanned operations, and support reporting or incident investigation efforts with CSO.
- Provide oversight and support of the training of site personnel on new security and risk procedures.
- Monitor the vendors' training of teams on all current and new technologies and processes.
- Ensure vendor SOPs address risk and security policy. This includes oversight and reporting where third party managed services exist.
- Compile monthly reporting of risk position for DCS in region, covering operational risk, audit findings and self-identified issues (SIIs). This includes oversight when this is provided by third party managed services.
- Manage audit findings and SIIs to satisfactory closure in collaboration with relevant teams and stakeholders.
- Manage and provide oversight of all audits, liaising with Group Audit through the Risks, Insights & Control team.
- Manage security pilots and projects, providing physical and operational security and DCS expertise for implementation. Communicate project updates to the Head of Data Centre Services Governance & Control Operations and others impacted.
- Monitor key performance indicators, determine gaps in performance metrics, and recommend / execute change management techniques for efficiency / quality improvements.
- Develop and support strategic plans and projects to meet site security goals and objectives.
- Influence and improve upon existing processes through innovation and operational change.
- Evaluate the performance of existing data centre security technologies and systems and ensure the identification and escalation of issues or opportunities for improvement.
- Ensure security and risk assessment is performed for new site construction and facility retrofit initiatives in accordance with Global Physical Security standards.
- Manage the data centre crisis management function, ensure activities in support of resiliency, business continuity, and incident response support site's circle of leadership decision-making processes
Education / qualifications:
- 8-10 years' experience in risk and audit management within Banking & Finance technology governance.
- Experience in a similar role, preferably within Banking & Finance.
- Experience with security technologies including CCTV, access control, incident management systems and Security Operations Centre.
- Experience in root cause analysis, industry benchmarking, survey evaluation and data interpretation.
- Experience in the areas of emergency / disaster management, physical security, critical incident stress management, risk management and business resiliency.
- Experience with emergency procedure protocols and regulatory interfaces.
- Experience in safety and security management in a data centre environment.
- Experience presenting in formal settings and to senior management.
- Experience working with or in support of diverse communities.
- Undergraduate degree from an accredited college or university (or equivalent) and relevant practical experience
Deutsche Bank offers a challenging and rewarding career where your contribution is valued and rewarded. We have an inclusive and friendly working environment coupled with excellent facilities and benefits.
Deutsche Bank is an equal opportunity employer who seeks to recruit and appoint the best available person for a job regardless of marital status, sex (including pregnancy), age, religion, belief, race, nationality and ethnic or national origin, colour, sexual orientation or disability.
Deutsche Bank does not accept unsolicited curriculum vitae from third party vendors.