Your area of work:
As part of the Cyber Protection – Detect & Prevent unit, you will act as the Group’s senior specialist for Data Leakage Prevention (DLP) governance, with end‑to‑end accountability for the DLP governance framework and the effective delivery of the DLP service. The role focuses on policy and rule‑setting, governance oversight, risk management, and assurance, while also ensuring that the DLP service is reliably operated, performance‑managed, and continuously improved through close coordination with IT delivery teams and business stakeholders. Technical implementation is executed by dedicated operational teams; this role is responsible for direction, oversight, and service outcomes.
Your responsibilities:
1. Define, maintain, and evolve DLP governance requirements, internal security policies, and written rules in alignment with the ICT risk framework and regulatory expectations.
2. Establish clear requirements for information handling, classification, data transfer, endpoint usage, and media protection etc.
3. Ensure governance documentation is clear, consistent, risk based, and fit for practical adoption across the organisation.
4. Define and oversee the DLP control framework, including mandatory controls, criteria, and governance expectations.
5. Ensure clear accountability across governance, operational, and delivery functions, with appropriate separation of duties.
6. Monitor adherence to DLP requirements and support corrective actions where gaps are identified.
7. Support responsible teams with data leakage risk assessments, deviations, and exception handling, advising stakeholders on risk implications and mitigation options.
8. Assess the impact of regulatory, organisational, or technology changes on DLP governance and service obligations.
9. Manage audit and assurance activities by providing governance evidence, expert input, and remediation oversight.
10. Act as the governance owner of the enterprise DLP service, ensuring it is delivered in line with defined policies, risk expectations, and service objectives.
11. Oversee service performance, operational stability, and lifecycle evolution, including monitoring and reporting on KPIs, SLAs, and recurring issues.
12. Coordinate incidents, changes, and improvement initiatives with responsible delivery teams to ensure timely resolution and risk aligned outcomes.
13. Drive continuous improvement of the DLP service to enhance effectiveness, efficiency, and user experience.
14. Serve as the primary point of contact for DLP related governance and service matters for business units, IT, and risk stakeholders.
15. Provide expert guidance on DLP requirements, service capabilities, and acceptable data handling practices.
16. Support projects, new solutions, and organisational changes by advising on DLP governance and service implications.
Your profile:
17. Bachelor’s or Master’s degree in Cybersecurity, Information Security, IT, Risk Management, or a related discipline.
18. Experience in information security governance, data protection, or risk management within a regulated or complex environment.
19. Solid understanding of Data Leakage Prevention principles, including information handling, classification, secure data transfer, email and endpoint controls.
20. Experience in information security governance, data protection, or risk management within a regulated environment, including practical application of requirements arising from GDPR, DORA, and related industry standard frameworks such as ISO/IEC 27001, NIST
21. Strong analytical, documentation, and stakeholder management skills.
22. Ability to translate governance requirements into practical, business aligned rules and service expectations.
23. Proficiency in English; German language skills are an advantage.
24. High degree of ownership, adaptability, and a proactive, quality driven mindset.
Why Deutsche Börse Group?
We are committed to providing a work environment where everyone feels welcome and can reach their full potential. Our standards go far beyond simply matching candidates with the right position.
Mobility
We enable you to move freely with our job tickets, job (e-)bikes and free parking opportunities.
Work environment
Collaboration, communication, or deep focus – in our modern office buildings you will find the perfect work environment. Free drinks and food and meal allowances included.
Health and wellbeing
We care for your health and wellbeing and besides various health promotion measures we offer you a group accident insurance and additional insurance offers at discounted rates.
Financial stability
We provide financial stability by offering attractive salaries, company pension schemes, participation in our Group Share Plan, as well as bonuses, subsidies and discounts.
Hybrid work
Collaborate and exchange on-site or work remotely several days a week in line with business needs and local regulations. Our hybrid working model combines the best of both worlds.
Flexible working hours
We want your job to fit your life situation and offer flexible working time models, childcare allowance, or the possibility to study alongside your job.
Internationality
Our market infrastructures are globally connected. Working with us means collaborating with like-minded colleagues across over 60 locations from more than 100 nations.
Development
We promote individual development by offering internal development programmes, mentoring, further education and training budgets.