COO - Cyber Threat Operations Analyst - Assistant Vice President

  • Competitive
  • Singapore
  • Permanent, Full time
  • Deutsche Bank APAC
  • 20 May 19

COO - Cyber Threat Operations Analyst - Assistant Vice President


Operations provides support for all of Deutsche Bank's businesses to enable them to deliver transactions and processes to clients. Our people work in established global financial centres such as London, New York, Frankfurt and Singapore, as well as specialist development and service centres in locations including Bucharest, Moscow, Pune, Dublin and Cary. We process payments in excess of a trillion euros across the bank's platforms, support thousands of trading desks and enable millions of banking transactions, share trades and emails every day.

A dynamic and diverse division, our objective is to make sure that all our services are executed in a timely and professional manner, that risk is minimised and that the client experience is positive. We are proud of the professionalism of our people, and the work they do. In return, we offer excellent career development opportunities to foster skills and talent.

Position Overview

CSO-Chief Security Office Overview

Everyday DB observes thousands of intrusion attempts. Deutsche Bank's COO Chief Security Office (CSO) integrates both Corporate Security (CS) and Information Security (CISO) as both teams are responsible for mitigating these risks.

The CSO team enables the business of Deutsche Bank by providing agile security operational capabilities. The teams: Threat Intelligence, Cyber Threat Analytics, Malware Response & Research, Security Monitoring, Incident Response, Forensics and Vulnerability Management provides global services from key locations in Frankfurt, Jacksonville and Singapore.

Job Overview:

The position calls for an operatonal individual who understands intelligence in the context of cyber threats. The Cyber Threat Intelligence Analyst will primarily be exposed to a variety of information from multiple sources. The individual will pro-actively assess and analyse data in order to protect the organistion from a range of potential threats. The individual will posses a range of operational skills that enables them to identify threats, co-ordinate on emerging issues and clearly communicate identified risks.

The ideal candidate will understand that this is an operational position which will require working in time critical situations for extended times on occasions.

Roles and Responsibilities overview:

  • Pro-actively identify cyber related threats and develop timely actionable intelligence for action (inc prevention and disruption of threats)
  • Product strategic and tactical threat assessments/products in response to threats (new or developing threats, TTPs, ongoing campaigns
  • Analyse multiple data/intelligence sources and sets in order to identify patterns of activity that could be attributed to threats and develop informed recommendations to a bredath of stakeholders
  • Work closely with a range of specialist security teams to mitigate threats
  • Undertake analysis of security alerts and network traffic to determine the existence or extent of potential threats
  • Conduct analysis on files/binaries, packet captures, and supporting materials to extract relevant artifacts, observables and IOC
  • Identify risks and escalate these in a timely and effective manner
  • Proactively drive improvements of internal processes, procedures, and workflows.
  • Participate in the testing and integration of new security monitoring tools
  • Meet strict deadlines to deliver high quality reports on threats, findings and brodare technical analysis
  • Take ownership for personal career development and management, seeking opportunities to develop personal capability and improve performance contribution.

  • Experience working in a Threat Intelligence environment (e.g. law enforcement, military or corporate environment)
  • Experience with Threat Intelligence platforms and workflows
  • Strong operational backgrouind in intelligence related operations
  • Experience with Splunk or other database query languages (i.e. SQL)
  • Experience creating customized security log analysis and detection capabilities using programming and development expertise, including Java, Python, Shell Scripting and regular expression
  • A good or developing understanding of virtual environments and cloud (e.g., VSphere, Hypervisor, AWS, Azure)
  • Experience with network analysis tools (e.g., Wireshark)
  • Operational understanding of TCP/IP and computer networking. Knowledge of the functions of security technologies such as IPS/IDS, Firewalls, Security Information and Event Management tools, etc
  • Ability to collect, process, and analyse data and information to create threat intelligence indicators.

Non-Technical Experience:
  • Investigative and analytical problem solving skills
  • Ability to communicate effectively both verbally and in writing
  • Self-motivated with ability to work with minimal supervision.
  • Ability to collect, process, and analyse data and information to create threat intelligence indicators.
  • Identify new opportunities for strategic directions and innovation based on existing and emergent cyber threat concepts.
  • Provide recommendations to senior management on strategic issues based on cyber threat expertise and knowledge of industry trends combined with business needs.
  • Ability to research and characterize security threats to include identification and classification of threat indicators.
  • Experience working in a Security Operations Centre (SOC) or Computer Emergency Response Team (CERT/CIRT).

Education and Certifications:

Desired Education:
  • Prefered - Degree in computer science, networking, engineering, or other field associated with cyber, intelligence or analaysis.

Desired Experience or Certifications:

Deutsche Bank offers a challenging and rewarding career where your contribution is valued and rewarded. We have an inclusive and friendly working environment coupled with excellent facilities and benefits.

Deutsche Bank is an equal opportunity employer who seeks to recruit and appoint the best available person for a job regardless of marital status, sex (including pregnancy), age, religion, belief, race, nationality and ethnic or national origin, colour, sexual orientation or disability.

Deutsche Bank does not accept unsolicited curriculum vitae from third party vendors.