Deutsche Bank | Technology, Data And Innovation (Postbank Systems AG)
- IT security & compliance in over 15 projects to merge Postbank IT systems with Deutsche Bank systems based on regulatory requirements from banks and BaFin
- Creation of security documents and relevant chapters in compliance documents (detailed design, permission concept, operations manual)
- Assessing criticality of Postbank security test findings in the context of Deutsche Bank group
- Defining protections to meet basic controls
- Compliance evaluation with bank specialists and application owners
- Analysis of applications and data centers (physical security) affected by both banks and creating security concepts
- Aligning ISMS manuals between Deutsche Bank and Postbank
- Aligning SOC and SIEM procedures between Deutsche Bank and Postbank
- Reviewing use of MITRE ATT&CK
- Checking compliance with legal requirements (BAIT; MaRisk; ITSiG; GDPR)
- Comparing implemented measures with BSI technical guidelines
- Handling and closing internal and external (BaFin) audit notes
- Creating and evaluating risk analyses and reports based on Deutsche Bank risk grid
- Supporting project management to follow new processes in the approach model (Pre-DeuBa)
- Staff training on projects (interim)
- System environment and software: Databases: Oracle, MS-SQL; OS: Windows, Linux, AIX; Software: SAP; SAS; Citrix Webex; HADOOP; Docker; VMware; ECM