Job Description:
Job Title: ITAO, AS
Location: Bangalore, India
Corporate Title: AS
Role Description
The Risk and Control Enablement specialist will support the domain CIO, CIO-1, IT Application Owners, and ERT CTO in managing technology risks, including Identity and Access Management, Application Code Security, and standard SDLC tools. The role will coordinate ITAO activities across IT, Information security, and audit programs. In collaboration with DWS Risk and Control and the DWS CSO team, the RnC specialist will clarify control owner and stakeholder requirements, coordinate required approvals, and implement outcomes in Control Workbench or the relevant JIRA project.
- The successful candidate is expected to have at least 7-10 years’ experience in IT, preferably with Asset Management Business Applications and Processes.
- Candidates should possess strong IT Application Owner (ITAO) knowledge and IT risk management skills, with the ability to apply appropriate delivery approaches, understand their impact on the application lifecycle, and support their adoption in line with best practices.
- The Risk and Control Specialist should have a strong understanding of development methodologies and IT policies and apply this knowledge to support effective control execution in line with the bank’s risk appetite.
- The Risk and Control Specialist support application safety, security, and compliance with regulations, policies, and standards while helping improve operational readiness and maintainability for changes delivered into production.
- Engage with the ITAO community, CSO information security specialists, and infrastructure teams such as ORR and SDLC to support effective risk and control management.
What we’ll offer you
As part of our flexible scheme, here are just some of the benefits that you’ll enjoy
- Best in class leave policy
- Gender neutral parental leaves
- 100% reimbursement under childcare assistance benefit (gender neutral)
- Sponsorship for Industry relevant certifications and education
- Employee Assistance Program for you and your family members
- Comprehensive Hospitalization Insurance for you and your dependents
- Accident and Term life Insurance
- Complementary Health screening for 35 yrs. and above
Your key responsibilities
The Risk and Control Specialist is responsible for coordinating with application owners and technology stakeholders to track IT metrics compliance, monitor control gaps, support remediation activities, and provide a forward-looking view of technology risks, audit actions, and regulatory obligations
Drive/Support the automation process of risk task management and CTO end-to-end reporting. Help translating the DWS/TDI requirements to a system-based IT solution to converge to overall strategic objectives. This involves:
- Support the CTO level reporting’s to determine key data input, outputs and functional processes from a front to back perspective.
- Determine the golden sources for the information, investigate the ways of automation.
- Identify processes suitable for automation and support their delivery.
Enterprise IT & IS Governance:
- Coordinate with application owners to track IT metrics compliance, identify areas requiring attention, and provide a forward-looking view of risks, control gaps, and remediation actions to support adherence to organizational obligations, policies, standards, and overall strategy.
- Coordinate with Application Owners, ITAOs, CSO, infrastructure, SDLC, and risk/control stakeholders to support effective technology risk and control management.
- Track IT metrics compliance across applications, identify non-compliant or deteriorating areas, and provide timely follow-up with responsible owners. Support governance over key technology risk areas including Identity and Access Management, SDLC controls, application security, operational resilience, and infrastructure compliance.
- Monitor open risk, audit, control, and regulatory actions, ensuring timely updates, evidence collection, and closure readiness. Assist application owners in understanding policy requirements, control expectations, and actions required to maintain compliance.
- Prepare and support regular Risk and Control reporting for CTO LT members, and Information Security stakeholders through dashboards, metrics, and timely status updates.
- Support internal and external audit activities by coordinating evidence, tracking management actions, and following up on remediation commitments.
Your skills and experience
- Experience working in the financial industry (7+ years) and in particular risk technology
- Broad understanding of data and its usage within financial industry including reference, trade, market and risk data
- Ability to assimilate large quantities of information in short periods of time
- Understanding and experience of the SDLC
- Hands on experience of script languages (PowerShell), Excel VBA, Rest API
- Excellent verbal and written communication skills
- Ability to relay complex information to a variety of end users from developers to senior managing directors within the business.
- Proactively, initiate, develop and maintain effective working relationships with team members and the business
- GCP-Cloud foundation knowledge
- Self-driven behaviour
Business Competencies:
- Change Leadership (Experienced)
- Managing Security (Experienced)
- Customer/stakeholder Relationship Management (Experienced)
Technical Competencies:
- ITAO and/or DevOps background preferably
How we’ll support you
- Training and development to help you excel in your career
- Coaching and support from experts in your team
- A culture of continuous learning to aid progression
- A range of flexible benefits that you can tailor to suit your needs
About us and our teams
Please visit our company website for further information:
https://www.db.com/company/company.html
We at DWS are committed to creating a diverse and inclusive workplace, one that embraces dialogue and diverse views, and treats everyone fairly to drive a high-performance culture. The value we create for our clients and investors is based on our ability to bring together various perspectives from all over the world and from different backgrounds. It is our experience that teams perform better and deliver improved outcomes when they are able to incorporate a wide range of perspectives. We call this #ConnectingTheDots.