Tdi - Cyber Threat Analyst - Analyst

**Details of the Division and Team**:
Everyday Deutsche Bank observes thousands of intrusion attempts. DB’s COO Chief Security Office (CSO) integrates both Corporate Security (CS) and Information Security (CISO) as both teams are responsible for mitigating these risks.

The CSO team enables the business of Deutsche Bank by providing agile security operational capabilities. The teams: Cyber Threat Operations, Malware Response & Research, Security Monitoring, Incident Response, Forensics and Vulnerability Management provides global services from key locations in Frankfurt, Jacksonville, and Singapore.

**What we will offer you**:
A healthy, engaged and well-supported workforce is better equipped to do their best work and, more importantly, enjoy their lives inside and outside the workplace. That’s why we are committed to providing an environment with your development and wellbeing at its center.
- You can expect: _
- Flexible benefits plan including virtual doctor consultation services
- Comprehensive leave benefits
- Gender Neutral Parental Leave
- Flexible working arrangements
- 21 days of annual paid leave, plus public holiday & Flexible Working Arrangement

**Your key responsibilities**:

- As Cyber Threat Analyst, you will work in close cooperation with Cyber Intelligence, Incident Response and the Security Operations Centre for the purpose of extending and strengthening the division’s capabilities relating to threat detection and analytics
- This will include managing and overseeing a range of sophisticated tools and services aimed at detecting cyber threats/incidents and responding to them in a determined manner
- In this role, you will contribute to the development of Security Information and Event Management (SIEM) content, including use cases, reports, network and asset model management, dashboards, rules/logic, and documentation and process improvements to help us detect cyber threats.
- To improve detection capabilities the role implies comprehensive understanding of industry standard MITRE ATT&CK framework to drive detection coverage forward
- Additionally, the position of Cyber Threat Analyst will involve liaising with various IT teams and business divisions to drive security-related topics forward and improve the bank’s cyber monitoring (SIEM, Big Data) and threat intelligence capabilities.
- The role implies coordination and validation of infrastructure data source onboarding activities into SIEM to support Cyber Threat Analytic targets as well as documentation of available Data Source in SIEM
- The position includes regular briefing of Cyber Threat Analytic Management on status and progress of Data Source Quality and Improvement of Detection Coverage

**Your skills and experience**:

- Technical Experience: _
- 2 years Hands-on experience relating to TCP/IP networking, server administration and web servers is considered equally important, complemented by knowledge of information security issues as well as risk assessment, threats and vulnerabilities.
- Ability to collect, process, and analyse data and information to create threat intelligence indicators.
- Comprehensive understanding of Windows endpoint detection methods on network or window endpoint
- Additional security (e.g. GCIH, GCIA, ECIH, CEH, OSCP, OSCE, GCFA, CSIH, CISSP) and/or technical certifications (e.g. CCNP, MSCE) would be a valuable asset in this challenging role.
- Mature understanding of industry standard MITRE ATT&CK framework
- Basic understanding of DevOps supporting Tool such as Git and Bitbucket
- It goes without saying that you will also have to display well-developed analytical and problem-solving skills as well as excellent conceptual abilities, which will be underpinned by unimpeachable personal and professional integrity.
- Experience of working in high-calibre teams and a solid understanding of the dynamics of teamwork in an international environment are essential, as are excellent communication skills and a fluent command of English, both written and spoken.
- Non-Technical Experience: _
- Self motivated, investigative and analytical problem-solving skills.
- Critical thinking and contextual analysis abilities.
- Ability to communicate professionally and efficiently both verbally and in writing.
- Ability to research and characterize security threats to include identification and classification of threat indicators.
- Experience working in a Security Operations Centre (SOC) or Computer Emergency Response Team (CERT/CIRT).

Role is required to be performed on-site at One Raffles Quay office. Relevant vaccination requirement applies

**How we’ll support you**:

- Flexible working to assist you balance your personal priorities
- Coaching and support from experts in your team
- A culture of continuous learning to aid progression
- A range of flexible benefits that you can tailor to suit your needs
- Training and development to help you excel in your career

**About us and our teams**:
Deutsche Bank is the