IT Application Security Engineer

Clearstream Global Securities Services Ltd. • Cork

Learn. Develop. Grow. But always: Share value

Join our international team that drives positive change, united by a spirit of openness and curiosity. We empower you to have an impact and to grow – personally and professionally. With us, you work at the heart of financial systems and evolve the way markets operate. We’re excited about the future because we are the ones shaping it. Let´s do this together by sharing value!

Who we are

Who we are

Tracing its origins to 1585, Deutsche Börse Group has become one of the world’s leading exchange organisations and an innovative market infrastructure provider. In this role, we provide investors, financial institutions and companies access to global capital markets. What’s your part in all this? With your commitment you contribute to the success of our unique business model: offering a wide range of products, services and technologies for security, transparency and integrity on the markets. By creating trust in the markets of today and tomorrow we foster growth and contribute to the prosperity of future generations.

Cork

Your career at Deutsche Börse Group

 

Your area of work
The Investment Funds Service (IFS) IT department builds, maintains and operates a portfolio of applications which provide Clearstream clients state of the art solutions to standardise processing and to increase efficiency and safety in the investment funds sector. Our global funds processing platform Vestima allows for reaching all types of funds, from mutual funds to ETFs and hedge funds.

 

Your responsibilities
As part of the IT Engineering Unit acting in the domains of architecture, infrastructure and information security, you will report to the IFS IT Security Lead and take responsibilities in a broad range of application security engineering activities covering the entire IFS IT landscape. Your assignments will include:

  • Analysing and documenting the security of 20+ applications according to the criteria defined by the corporate Information Security department
  • Your expertise typically ranges from operating systems to Web applications, and includes third-party software and public Cloud services
  • Identifying the information security impacts caused by business and technical projects, based on the projects’ requirements and architecture
  • Performing and documenting the information security risk assessment of the applications along the ISO/IEC 2700x controls
  • Managing the open information security risks and vulnerabilities for the IFS IT landscape; accurately maintaining the corresponding risk and vulnerability registries; ensuring mitigating measures are properly assigned, implemented and delivered in due time
  • Defining application penetration test scope, scenarii and following-up on execution; analysing penetration test finding reports
  • Analysing the information security risks and vulnerabilities; designing, documenting and promoting innovative solutions at application level to mitigate them; analysing relevant third-party patches; analysing and implementing for specific information security projects (e.g. SIEM onboarding, Privileged Access Management…)
  • Closely interacting with IT development, infrastructure, operation and project management teams as well as with third-party vendors to collect information/communicate on technical security topics
  • Going hands-on with the IFS IT systems to extract necessary security design information when it is not readily available
  • Managing the relation with the corporate Information Security department, adequately interacting with their expert resources
  • Answering to information security enquiries coming from customers, corporate Information Security, or internal/external auditors 


Your profile

  • University Degree (or equivalent) in computer science, with at least 3 years professional experience in IT
  • Very good technical writing skills; ability to clearly describe complex concepts
  • Good communication skills with the ability to justify and challenge security design decisions
  • Sound experience with critical multi-tier Web application security design as architect, security engineer or full-stack application designer
  • Solid background understanding of base information security concepts such as encryption, authentication, access control, digital signature, data integrity etc.
  • Practical experience with the following technologies: Web server, Git, TLS and public-key cryptography, Linux and Windows OS, at least one major Public Cloud Service Provider (Azure, AWS, Google), Shell scripting, RDBMS, Messaging middleware
  • Ability to digest various abstract requirements in the field of security, and map them to practical situations
  • At least basic software development skills in a modern object-oriented programming language
  • Proficiency in written and spoken English; French and German language skills are an asset
  • The following are not required but are highly desirable:
    • Knowledge of ISO/IEC 2700x standard
    • Experience with enterprise application software development, esp. using Java and .net
    • Experience with identity management/federation/SSO platforms, esp. SAML2 and OpenID Connect
    • Experience with containers – ideally using RedHat OpenShift
    • Experience with the specific security challenges posed by Internet-facing Web applications

Why Deutsche Börse Group?

We are committed to providing a work environment which makes our employees both feel at ease and reach their full potential. Our standards go far beyond simply matching candidates with the right position.

Exciting, cutting-edge projects

“Boredom” is a concept unknown to us. With us you are part of a growing company that is shaping the future and where you can make a difference and actively participate – by supporting companies and start-ups going public, developing trading technologies or designing the cloud infrastructure for a highly regulated environment.

International environment

Our market infrastructures are connected globally: whether in Singapore, London, Chicago, Luxembourg or Dubai – working with us means collaborating with like-minded colleagues and teams across over 60 locations from more than 100 nations.

Security and growth

Our company is experiencing healthy growth, not least due to our diversified business model. As a globally active exchange organiser, we provide market participants with consistently safe infrastructures that stimulate growth along the entire value chain. For you this means: a secure and promising workplace!

Diversity & Inclusion

We embrace diversity. As the cornerstone of our success, your contribution counts – irrespective of gender, nationality, ethnic or social background, religion or worldview, disability, age, sexual preference and identity.

Our values

We at Deutsche Börse create trust in the markets of today and tomorrow. We want to achieve this common goal with performance, reliability, integrity, openness and responsibility. Mutual respect and appreciation are of particular importance. Our values shape our culture and behaviour – both within our organisation and externally.

Team spirit

Our employees work in great teams that drive positive change – and therefore they enjoy working with us. This is reflected in our annual employee surveys. No matter how great the challenges posed by the markets might be – we support each other, work together closely to successfully complete projects and face change with a positive, collaborative approach.

Work-life balance

We offer a work environment, in which professional and private life can interact individually. Flexible working time models, allowance for childcare, working remotely, studying alongside your job or part-time models – we give you the opportunity to adapt your job to your life situation.

Careers with a future

Whether you are an apprentice, a trainee, a young or experienced professional – with us your career is off to a good start that holds many different paths to develop and reach the next level. Your professional future is in your hands – as a manager, expert or project manager. You can count on our support as well as further education and training measures.

Healthcare

Your well-being is important to us! We provide you with a comprehensive healthcare scheme that covers you and your civil partner and/or dependants. It gives you access to public and prive hospitals as well as a great cover for everyday medical expenses.

Pension scheme

Top up your pension! We pay you an annual pension contribution which is meant to build up additional retirement savings for you.

Contact
Campus Recruiting

Campus Recruiting

Are you interested in an internship, an apprenticeship or a working student job?
 

+4906921111810

Our Campus Recruiting Team is looking forward to your call or e-mail.

Recruiting Team

Recruiting Team

Take your career to the next level with us and embrace new challenges!
 

+496921111810

Our Recruiting Team is looking forward to your call or e-mail.

Ready to start your career with us?

Apply now!