3 Itao Jobs

The Associate ITAO supports the technical infrastructure required to supply IT services to the bank. They are involved in the strategy, design, development, and deployment of IT solutions. They are able to troubleshoot complex issues, being aware of overlapping and different technology areas. Based on their business knowledge, they are able to identify where IT designs can be strengthened and provide value to the businesses. They are responsible for providing detailed technical feedback into the Engineering function to deliver more robust IT solutions. They understand in detail, how IT needs to be supported and can create appropriate processes and controls which ensure IT failings are captured and remediated to ensure stability. They provide technical direction on all related IT platforms and are considered technical experts for level 3 support in outage coordination. The Lead Technologist is counted upon to provide technical guidance and recommendations for complicated business IT problems. They embrace a Continuous Service Improvement approach to drive efficiencies and remove repetition to streamline support activities, reduce risk, and improve system availability. The successful candidate is expected to have at least 5+ years experience in IT, preferably with Asset Management Business Applications and Processes. The IT Application Owner (ITAO) has sound IT risk management skills. They follow one of several possible service delivery approaches, acknowledge interference with the IT applications life cycle and assist with incorporating the adopted approach into best practice. The focus is on applications moving onto cloud. Here you support tracking of the application control status and help application dev-teams with practical advice. Make sure that all steps in Identity & Access Management cycle (on-boarding, recertification, off-boarding) are compliant against DB Policies and application is on-boarded to central tools. The ITAO is aware of the gap in the current infrastructure solutions and where industry innovations are along the maturity lifecycle. They work with application stakeholders to improve the infrastructure, ensuring compliance with the technical roadmap. The ITAO has a sound knowledge of development methodologies and the IT policies necessary to perform effectively in the organisation, aligned to the banks appetite for risk. The ITAO acts to improve safety and security of the application, compliance with regulations, policies and standards, enhance operational readiness, and ease maintenance of the environment for delivering change into production. The ITAO supports the banks audit function in the remediation of audit points and self-identified issues in order to reduce risk. The ITAO is responsible for producing and maintaining accurate documentation on compliance with methodologies, IT policies and IT security requirements. The ITAO interacts with and influences colleagues on the governance of IT platform reliability and resilience ITAOs will also be responsible for Application Decommissioning ITAOs will be driving activity that helps incidents reduction against an application Support compliance on all steps of SDLC process and make sure that all SDLC controls are green. You support the teams role as key contact for all security controls in the software delivery process and ensure that the security controls are evidenced by driving automated evidence. You are consulting with the ITAO community, information security specialists in our CSO organization, and other infrastructure teams like the ORR/SDLC teams. Your key responsibilities Enterprise IT Governance: Responsible for review of current and proposed information systems for compliance with the organisation's obligations (including legislation, regulatory, contractual and agreed standards/policies) and adherence to overall strategy Information security : Communicates information security risks and issues to business managers and others. Performs basic risk assessments for small information systems. Contributes to vulnerability assessments. Applies and maintains specific security controls as required by organisational policy and local risk assessments. Investigates suspected attacks. Responds to security breaches in line with security policy and records the incidents and action taken. Information content publishing : Understands technical publication concepts, tools and methods and the way in which these are used. Uses agreed procedures to publish content. Obtains and analyses usage data and presents it effectively. Understands, and applies principles of usability and accessibility to published information. Business risk management : Investigates and reports on hazards and potential risk events within a specific function or business area. Continuity management : Implements and contributes to the development of a continuity management plan. Coordinates the assessment of risks to the availability, integrity and confidentiality of systems that support critical business processes. Coordinates the planning, designing, and testing of maintenance procedures and contingency plans. Data management : Assists in providing accessibility, retrievability, security and protection of data in an ethical manner. Methods and tools : Provide support on the use of existing method and tools. Configures methods and tools within a known context. Creates and updates the documentation of methods and tools Overall Responsibilities Summary: Make sure that all critical activities in application are monitored and logs are reviewed. Ensure appropriate controls onboarded and implemented where appropriate. Make sure that all steps in Identity & Access Management cycle (on-boarding, recertification, off-boarding) are compliant against DB Policies and application is on-boarded to central tools. Manage Internal and external application audits and Audit issue remediation activities. Completion of regular/recurring assessments Timely response to audit & regulatory requirements with evidence, were compliant. Make sure that infrastructure is compliant and has up-to-date patches. Plan for Application Hardware Software License upgrades or migration activities to align to the compliant platforms. Keep up-to-date DR Test Plan and manage regular DR Tests Manage application capacity forecasting and monitoring. Manage any IT Security incidents that may occur in the application. Support compliance on all steps of SDLC process and make sure that all SDLC controls are green. Application Decommissioning Drive incidents reduction against an application Planning/Organizing: Able to manage work but also to make the estimate, scheme in detail, work on deployment plans and manage deadlines. Manage the technical roadmap of the application (technology roadmap compliance), estimate/budget capacity needed. Expertise in Planning and execution of Releases, Changes, Patches. Exposure of handling L3 role, incident analysis, patch preparation and implementation. Skilled individual to interact with L2 teams for incident and problem management cases. Your skills and experience Degree-level IT and/or information security qualification, or equivalent experience in Information Security and IT Security Experience in Software Development Lifecycle (SDLC) - from idea to production to understand our customer journey, these mostly application owners, business ISOs and development teams GCP-Cloud foundation knowledge General understanding of current security industry standards, best practices, and/or frameworks i.e.: NIST, ENISA, ISO27001, OWASP Problem-solving and analyticalskills with the ability to oversee complex processes Ability to educate a technical and non-technical audience about varioussecuritymeasure Excellent communications skills and very service oriented and customer friendly behaviour even in stressful situations Self-driven behaviour Fluent in English (written/verbal) Preferable Knowledgeofinformation securitytools e.g., security scan and testing tools Understanding of cloud engineering and native security features to support the migration path for applications onto the cloud environment Firm understanding of DevSecOps and the banks shift left agenda to integrate security in the software development lifecycle as earliest as possible. ISO or ITAO certification (for internals only)

Role Description The applicant will act as an Application Owner for set of applications in PTA space. The Application Owner (AO) is accountable for the Application Management of a single or a portfolio of applications. The Application Owner must ensure that the application(s) are enhanced and maintained in accordance with the Banks IT Security Risk and Compliance requirements of the client and other stakeholders as included in the application strategy and service levels. The AO identifies and manages the risks and issues associated with the application(s) and escalates appropriately. This position is based out of India Service Centre, Bangalore. The Application Owner is in charge of a broad set of duties. On one hand an Application Owner has a management responsibility for an application instance. On the other hand the Application Owner is requested to provide detailed administrative information in self-assessments to comply with the IT Policies & Standards. The following are typically some of the tasks for which an Application Owner is responsible for: Facilitate Disaster Recovery activities by reviewing DR plans and coordinating the execution of DR exercise for the application. Manage Internal and external application audits and Audit issue remediation activities. Manage remediation of gaps in application lifecycle management activities such as Account recertification, remediation of Application configuration gaps etc. Manage application related Risk and Compliance Evaluation tasks and resolution of gaps in this area. Manage any IT Security incidents that may occur in the application. Plan and Manage Application Events and Database Events monitoring using Bank wide standard monitoring tools. Manage application capacity forecasting and monitoring. Plan and manage Application user access related tasks. Plan for Application Hardware / Software / License upgrades Remediation activities Problem/Release Management Participate and Manage Project Delivery Involve in project management tasks end to end. Technology Roadmap Compliance - align to Banks strategy. Defines application services in collaboration with stakeholders. Facilitating L0 estimates, reviewing the functional/technical design. Your key responsibilities There are a number of common expectations that all experts should demonstrate over and above their technical/specialist contribution. These are also important for reinforcing our Deutsche Bank Values and Beliefs: Overall 6+ years of relevant experience in ITAO. Acts as role model for individuals aspiring to follow an expert career path by passionately promoting the merits of expert roles and the contribution of their Profession. Challenges the status quo and influences key stakeholders to ensure industry best practice is adhered to within their area of expertise. Mentors individuals across the Bank who wish to follow an expert career path through sharing their experience, expertise and insight. Acts as training faculty on key internal technical/specialist development programmes (NB Annual number of hours/days to be agreed at start of year with Manager in consultation with the Profession Owner). Designs innovative, sustainable solutions which are congruent with the strategic direction of the Bank. Challenges colleagues to do the same, pushing the boundaries of what is possible to deliver potential for higher levels of organisational performance. Builds, captures and manages the transfers of knowledge across the Professional community. Provides Profession Owners with input that shapes the curriculum. Defines and implements best practices, solutions and standards related to their area of expertise. Demonstrates thought leadership through seeking out opportunities to shape the agenda with Regulators, Government Departments and Professional bodies. Cultivates and maintains effective working relationships with stakeholders and clients by articulating the contribution, commercial impact and benefits of expert roles. Your Skill and Experience Experience and Exposure Excellent communication and influencing skills. Open minded Ability to work in fast paced environment. Ability to manage the expectations of stakeholders. Passion about sharing knowledge and best practice. Ability to work in virtual teams and in matrix organizations. Proven project management and people management skills Fluent English (written/verbal) Business Competencies Exposure to Banking Domain Change Leadership Industry Knowledge Transition/Transformation experience Risk Management Technical Competencies Application Architecture Software Technology tools (Unix, Java, Databases Oracle, Sybase, Web concepts) IT Security, Risk & Compliance Systems Development Lifecycle Dev-Ops tools/concepts ITIL understanding.

The ITAO is the function responsible on the application lifecycle governance. The applicant must have advanced IT risk management skills and must promote different service delivery approaches that best suit IT applications life cycle and contribute to the implementation of policy and strategy. The ITAO Specialist responsibilities covers identifying the gaps in the current infrastructure solutions and where industry innovations are along the maturity lifecycle, choosing the right balance between compliance requirements and delivery pace.The IT Application Owner (ITAO) specialist is accountable for the Application Management of portfolio of applications. They have to ensure that the application(s) are enhanced and maintained in accordance to the Banks IT Security Risk and Compliance requirements. The ITAO specialist should work with relevant stakeholders of the application and ensure that to effectively identify and manage risks, issues, compliance gaps in line with DB IT risk and compliance policies and also the road map of the business stakeholders. They formulate the remediation of audit points and self-identified issues that increase the banks risk and are responsible for application documentation and knowledge management. The ITAO specialist advises and coaches teams on thegovernance of the IT platform reliability and resilience and is a recognized contributor to internal and external forums, fostering a passion for technology risk management. The ITAO specialist brings in automation into current manual processes, drive the initiatives independently. Have hands on experience in Java and should be able to review codes and work with Dev team members to build and support applications as full stack developer wherever required. Your key responsibilities Monitoring Portfolio and align with them on deliveries and strategy of NARs. Make sure Applications portfolio is compliant, considering tasks and activities coming from: Control Workbench, and other requirements from the stakeholders. Lead Risk and compliance process for the set of application that applicant is the IT owner. Facilitate Disaster Recovery activities by reviewing DR plans and coordinating the execution of DR exercise for the application. Manage Internal and external application audits and Audit issue remediation activities. Manage remediation of gaps in application lifecycle management activities such as Account recertification, remediation of Application configuration gaps etc Manage application related Risk and Compliance Evaluation tasks and resolution of gaps in this area. Manage any IT Security incidents that may occur in the application. Plan and Manage Application events and Database Events monitoring using Bank wide standard monitoring tools. Manage application capacity forecasting and monitoring. Plan and manage Application user access related tasks. Plan for Application Hardware Software License upgrades or migration activities to align to the compliant platforms. Co-ordinate Essential Maintenance Change management process Contributes to Go Live transitions. Prepare project-related documentation Confluence, JIRA updates, provide support on compliance and audit checking Project relevant documentation, ensure compliance and audit policies are strictly followed. Ability to manage the L3 activities in-terms of application fixes, Build and support applications as full stack developer - Java, React, angular, micro services, Sql. Should be able to review code and help team in fixing issues. Ability to bring in strong Engineering culture within the team Functional expertise working in a financial bank domain would be huge benefit. Your skills and experience Desirable experience at least 12-14+ plus years in the IT industry Prior ITAO experience is preferrable. Strong understanding of the SDLCs and current IT trends in managing Projects. Java technical background is highly desirable with Database experience. IT Risk Frameworks experience is needed. Banking Financial industry Exposure is a plus. Business Risk audits experience is needed. Project/Development/ Release/Support Management/ Technology Infrastructure management , and Digital Assets knowledge would be a plus. Hands on experience with technologies such as Java , SpringBoot, React JS, Kafka, Cloud, DevOps , Unit testing tools like Junit. Strong agile skills with running app Dev , Dev Ops , ITAO and RTB squads. Knowledge on build tools Jenkins , Git , TeamCity. Strong team player who also can work under pressure, independently and proactively while balancing competing priorities to achieve results on complex new development and integrations.