Detailansicht des Stellenangebots

Willkommen im Team als

Security Problem Manager/ Engineer Operations

Das Unternehmen:

Commerzbank is the leading bank for the Mittelstand and with a comprehensive portfolio of financial services a strong partner for corporate client groups and private and small-business customers in Germany. We are a bank that is characterized by a fair and cooperative relationship with one another and with our customers.

We appreciate working in inspiring teams of people who bring a diverse background. We offer a creative environment and excellent career development opportunities. Work Life Balance is very important to us. And of course, we know that a good job also includes an attractive salary.

Aufgabe:

Problem Identification & Analysis

• Development and control of a structured security problem management process
• Systematic evaluation of security incidents (e.g. SOC data, SIEM, threat intelligence)
• Identification of recurring patterns and causes as well as performance of trend and clustering analyses

Root-Cause-Management

• Leading root cause analyses (e.g. using 5-Why, Ishikawa,...)
• Identification of technical, organizational and procedural causes as well as their risk assessment
• Documentation of problem causes in a central register

Driving remediation and preventing measures

• Definition and implementation of sustainable measures for risk reduction (no pure workarounds)
• Control and follow-up of measures, including success monitoring (post-implementation review)
• Development of KPIs/KRIs to reduce recurring problems

Governance & Reporting

• Preparation of regular reports for CISO, IT steering committees and risk management
• Preparation of decision templates and reporting on trend analyses and risk areas
• Support in internal and external audits (audit, supervisory authorities)

Profil:

• Bachelor's degree or higher in information security, computer science, computer engineering, or a related field

• Several years of professional experience in the cyber security environment, ideally in a regulated industry such as banking or financial services

• Sound knowledge of:

• Incident response and SOC processes

• ITIL Problem Management and Root Cause Methods

• risk management as well as regulatory requirements (e.g. BAIT, MaRisk, DORA)

• Experience working with SIEM/case management systems and analytically evaluating incident data

• Familiarity with typical attack vectors (e.g., MITRE, ATT&CK)

• Strong analytical and systemic thinking skills

• Ability to communicate technical and complex issues in a clear and structured manner

• High level of ownership, assertiveness and sustainability orientation

• Strong communication and moderation skills, especially in stakeholder management

• Ideally, the following certifications: CISSP, GCIH, ITIL v4/v5, CISM

Kontakt:

Would you like to become a member of a strong and dedicated team? If so, please submit your application online. If you have any further enquiries about this role, please contact Linh Jasmin Vo +49 69 935349407 or email her at linhjasmin.vo@commerzbank.com.