Senior Engineer, AVP

Position Overview

Job Title: Senior Network Engineer, AVP

Location: Pune, India

Corporate Title: Assistant Vice President

Role Description

We are seeking a highly skilled and experienced Network Engineer to join our dynamic Data Security team. This role is critical in protecting Deutsche Bank's sensitive data assets across our hybrid cloud environment, ensuring compliance with regulatory requirements, and safeguarding against evolving cyber threats. The ideal candidate will possess deep technical expertise in Data Security Posture Management (DSPM) tools, a strong understanding of DevOps principles and practices, and hands-on experience in network security.

What we’ll offer you

As part of our flexible scheme, here are just some of the benefits that you’ll enjoy

• Best in class leave policy

• Gender neutral parental leaves

• 100% reimbursement under childcare assistance benefit (gender neutral)

• Sponsorship for Industry relevant certifications and education

• Employee Assistance Program for you and your family members

• Comprehensive Hospitalization Insurance for you and your dependents

• Accident and Term life Insurance

• Complementary Health screening for 35 yrs. and above

Your key responsibilities

• Data Security Posture Management (DSPM):

  • Design, implement, and manage DSPM solutions (e.g., Varonis, Securiti.ai, Symmetry Systems, Cyera, Laminar, Microsoft Purview) to discover, classify, and protect sensitive data across on-premises and multi-cloud environments (AWS, Azure, GCP).

  • Develop and enforce data security policies, standards, and controls based on risk assessments and regulatory requirements (e.g., GDPR, CCPA, BaFin, EBA).

  • Monitor DSPM tools for data security incidents, policy violations, and anomalous activities, and lead incident response efforts related to data breaches.

  • Conduct regular data risk assessments, identifying vulnerabilities and recommending remediation strategies to enhance data security posture.

  • Generate reports and dashboards on data security posture, compliance, and risk for management and audit purposes.

  • Stay abreast of the latest DSPM technologies, threats, and best practices, continuously evaluating and recommending improvements to our data security program.

• DevOps Security Integration:

  • Integrate security controls and best practices into the entire DevOps pipeline (CI/CD) to ensure security is "shifted left."

  • Collaborate with development and operations teams to embed data security considerations into application design, development, and deployment processes.

  • Implement and manage security tools for static application security testing (SAST), dynamic application security testing (DAST), software composition analysis (SCA), and infrastructure as code (IaC) security scanning.

  • Automate security tasks and workflows using scripting (e.g., Python, PowerShell) and orchestration tools.

  • Provide security guidance and training to development and operations teams on secure coding practices and data protection principles.

• Networking and Infrastructure Security:

  • Design, implement, and maintain secure network architectures, including firewalls (next-gen, web application), intrusion detection/prevention systems (IDS/IPS), VPNs, and micro-segmentation solutions.

  • Configure and manage network security policies, access controls, and routing to protect sensitive data flows.

  • Perform network vulnerability assessments and penetration testing to identify and remediate security weaknesses.

  • Monitor network traffic for suspicious activity, anomalies, and potential threats, utilizing SIEM and network forensics tools.

  • Troubleshoot network security issues and provide expert guidance on remediation.

  • Ensure secure configuration and hardening of operating systems, databases, and other infrastructure components.

• General Security Responsibilities:

  • Contribute to the development and enhancement of Deutsche Bank's overall cyber security strategy.

  • Participate in security incident response, forensic analysis, and post-mortem activities.

  • Collaborate with internal and external auditors, providing evidence and support for compliance reviews.

  • Mentor junior team members and share knowledge on data security best practices.

  • Maintain detailed documentation of security configurations, procedures, and architectural diagrams.

Your skills and experience

• Bachelor's or Master's degree in Computer Science, Information Security, or a related field.

• 5+ years of hands-on experience in Information Security, with a strong focus on Data Security.

• Proven hands-on experience with DSPM tools (e.g., Varonis, Securiti.ai, Symmetry Systems, Cyera, Laminar, Microsoft Purview) including implementation, configuration, and operational management.

• Strong understanding and practical experience with DevOps methodologies and tools (e.g., Git, Jenkins, Azure DevOps, GitLab CI/CD, Ansible, Terraform).

• In-depth knowledge and hands-on experience in network security concepts and technologies, including firewalls (e.g., Palo Alto, Check Point, Cisco ASA), IDS/IPS, VPN, WAF, DNS security, and network segmentation.

• Experience with cloud security principles and services in at least one major cloud provider (AWS, Azure, or GCP).

• Proficiency in scripting languages such as Python or PowerShell for automation and data analysis.

• Solid understanding of security frameworks and standards (e.g., NIST, ISO 27001, CIS Benchmarks).

• Experience with regulatory compliance requirements relevant to financial services (e.g., GDPR, CCPA, BaFin, EBA).

• Excellent analytical, problem-solving, and communication skills, with the ability to articulate complex security issues to both technical and non-technical audiences.

• Ability to work independently and as part of a team in a fast-paced, global environment.

Desired Skills and Experience (Nice to have):

• Relevant industry certifications (e.g., CISSP, CISM, CISA, CCSP, OSCP, Azure/AWS Security Specialty).

• Experience with data loss prevention (DLP) solutions.

• Familiarity with containerization technologies (Docker, Kubernetes) and their security implications.

• Experience with Security Information and Event Management (SIEM) platforms (e.g., Splunk, Microsoft Sentinel).

• Knowledge of database security and data encryption technologies.

Soft Skills & Collaboration

• Strong problem-solving and analytical skills to assess security threats and data exposure risks.

• Ability to work cross-functionally with Security, IT, and Risk teams.

• Effective written and verbal communication skills, especially when documenting security configurations and investigations.

• Professional certifications such as CISSP, CISM, CCSP, GIAC (GCIH, GCFA)

How we’ll support you

• Training and development to help you excel in your career

• Coaching and support from experts in your team

• A culture of continuous learning to aid progression

• A range of flexible benefits that you can tailor to suit your needs

About us and our teams

Please visit our company website for further information:

https://www.db.com/company/company.html

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.
Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.
We welcome applications from all people and promote a positive, fair and inclusive work environment.