The Security department as a service provider for DBG’s product organization and the Second Line of Defense of Deutsche Börse Group is responsible to protect information assets in terms of safety, integrity, confidentiality, authenticity and availability. Information Security risk management tasks and procedures are based on the requirements published as the ISO 27000-standard-series (information security management systems).
Field of Activity
The privileged access management specialist is responsible to ensure that all privileged users are managed appropriately and work compliantly to applicable policies and regulations. He/she furthermore works actively with product development and infrastructure teams together to ensure security-by-design in the product development and operation lifecycle. Automation and infrastructure as code will be just two of various fields, where security goals like least privilege must be enforced from the beginning of the design phases.
Tasks/Responsibilities
* You will develop and continuously improve privileged access management governance and architecture controls
* You act as subject matter expert within the group for the PAM topic
* You will define and maintain information security policy framework with privileged access management requirements and controls
* You will design and implement identity and access lifecycle workflows and controls of use for privileged accounts in infrastructure and application support areas
* You will design and implement together with product development and infrastructure teams, effective solutions for secure and reliable credential management solutions of privileged personal and technical accounts
* You ensure and regularly report the compliance status of privileged account usage group wide
Qualifications/required skills
* You have successfully completed your Bachelor/Master degree in Information Technology, Management and Engineering, Industrial Engineering or equivalent
* You gained minimum of 3 years’ experience in security or security-oriented engineering function in infrastructure
* You have experience with privileged access management solutions and their integration into existing infrastructure and applications
* You have experience in common scripting languages is a benefit
* You own knowledge of privilege management solutions like Cyberark PAS
* Proactive thinking and self-paced work on solutions is self-evident for you
* You ideally already have process and business role modelling experience
* You are fluent in English. German could be beneficial
* Optional: CISSP, CISM or comparable certifications
* You have strong, proven analytic and problem-solving skills
* Your profile is rounded off by Good presentation skills