Specialist ICT Risk Strategy & Methodology (f/m/d)

Apply now »

Date: 1 Nov 2024

Location: Frankfurt am Main, DE

Company: Deutsche Börse Group

Your area of work:

The ICT Risk Strategy & Methodology unit as part of the Deutsche Börse Group (DBG)’s ICT risk second line of defense, is responsible for the development, maintenance and continuous improvement of the digital operational resilience strategy, the ICT risk management methodology, the threat landscape and the shaping and promotion of a security culture within Deutsche Börse Group. Further, we act as independent challengers & advisors to large scale transformation and security programs within the group.

As a Specialist you will significantly contribute to Deutsche Börse Group strategic ambitions of operating a threat-based ICT risk management and thereby contribute to strengthening our resilience against increasing threats such as cyber attacks.

 

Your responsibilities:

  • Maintenance and continuous advancement of the digital operational resilience strategy
  • Developing, monitoring and reporting risk indicators to track the progress of strategical objectives and potential new risks 
  • Identifying and assessing new threats, specifically as part of development and refinement of the threat landscape
  • Promoting awareness and an ICT security culture, among others via conducting phishing campaigns, designing and providing specific training to different (senior) target audiences
  • Designing methodological improvements of the ICT risk management process including maintenance, development and documentation of ICT risk scoring models
  • Support the implementation of DORA requirements for DBAG

 

Your profile:

  • You have completed your university degree in a field related to information security, IT, risk management or business informatics 
  • You have already gained relevant work experience in the area of IT risk management, information security, IT governance or comparable functions
  • You are familiar with regulatory frameworks (in particular: Digital Operational Resilience Act) and industry frameworks and standards such as ISO2700x, NIST or COBIT
  • You own strong analytical, social and methodological skills and are eager to develop these further
  • A result-oriented working method in a team is self-evident for you
  • Proficiency in written and spoken English; German language skills will be an asset