Centre of Expertise Lead IT Cyber Risk Management

Centre of Expertise Lead

IT & Cyber Risk Management

The opportunity

We are looking for an experienced and inspiring (Global) Centre of Expertise Lead IT & Cyber Risk Management to globally steer the Information Technology and Cyber Risk (teams) within Wholesale Banking (WB) Tech. You will lead a diverse team of highly skilled IT Security Chapter Leads, where we expect all the people within the squads to take responsibility when it comes to ensuring our data and systems are secured. You act as an ambassador for IT Risk to all stakeholders within or outside of WB Tech through frequent interaction and alignment. You are reporting directly to the Wholesale Banking CISO.
 

The team

As a Centre of Expertise Lead IT & Cyber Risk Management it is expected that you’ll maintain a holistic overview of the Wholesale Banking entity to measure and determine which IT Risk areas require improvements, harmonize the chosen approach, and steer the IT Risk & Cyber activities for WB Tech to safeguard that IT Risk remains within Risk Appetite.

The Wholesale Banking organisation has been designed with a global structure in mind, the majority of the products offered to our clients are benefitting from a global delivery and consumption model.

For the Centre of Expertise Lead IT & Cyber Risk Management this global structure is reflected by also having global responsibility. In practice this means that besides the three chapters reporting to you that reside in the Netherlands, the position also includes functional steering of the four regional IT Risk & Security teams covering the Wholesale Banking entities outside of the Netherlands. And next to that you functionally steer five chapters in 3 ING HUBS locations that perform IT Security activities and execute IT Generic Control testing for Wholesale Banking Tech. Amounting to a total of around 90 FTE.

Are you ready for this?
 

Role and responsibilities

As Global Centre of Expertise Lead IT & Cyber Risk Management you are at least:

• Managing IT Risk to remain within Risk Appetite (Strategic Roadmap/Path to Green)
• Steering improvements based on imminent threats, as well as evolving requirements from IT Risk & IT Security Standards
• Coordinating SOx testing for IT General Controls
• You transform, scale and further professionalize the current way of working in the IT Security and Tech domain to a way of working that is applied bank-wide and more data driven (IT Risk Paradigm Shift)
• Overseeing the implementation of (new) IT Process Control Standards and setting priority for Wholesale Banking applications to consume strategic security services
• Executing the IT (entity) controls related to activities within your teams
• Steering on IT Generic Controls testing as part of first line monitoring (FLM) activities performed in the ING HUBS
• Ensuring IT Sourcing contracts are assessed on their IT & Cyber posture
• Responding to regulatory and/or Third-Party request and/or questionaries
• You are responsible for engagement and development of people, steering on craftmanship to maintain a highly skilled and motivated workforce
• You build and maintain a strong working relationship with global business stakeholders in all Wholesale Banking areas, WB Tech colleagues and other members of the global and local Tech community, including vendors
   

Given the nature of the work and access to confidential and sensitive information, the role is deemed to be ‘sensitive’. An extra security clearance is required by the Corporate Special Investigations (CSI) team to be appointed to this role.
 

About you

• Master’s degree in Information Technology, Computer Science or IT Security
• Experienced senior IT Security lead or CISO manager with at least 10 years work experience in IT Risk and/or IT Security
• In possession of valid industry certifications such as CISSP, CISM, CCSP etc.
• Proven deep knowledge of Risk Frameworks (e.g.: NIST CSF, ISF SoGP, ISO27001, etc) and corresponding IT (Process) Control Standards
• Visionary to guide the organisation to a more threat-based approach on IT Risk Management and staying on top of the trends as technology changes (e.g. cloud, containerization and GenAI)
• Proven experience in complex stakeholder management including senior management and C-suite level
• Collaborative team player, with excellent communication skills to work seamlessly with ease with your business stakeholders / second line
• Passion for and proven track record of working in an agile BizDevOps environment
• Must have worked with a geographically complex organization at scale
• Proven track record in finding, growing, and promoting talent
   

What do we offer?

We want to make sure that it’s possible for you to strike the right balance between your career and your private life. You can find out more about our employment conditions at https://careers.ing.com/en/benefits-NL

The benefits of working with us at ING include:

• A salary in the range of 8387.01-13272.27
• 24-27 vacation days depending on contract
• Pension scheme
• 13th month salary
• Individual Savings Contribution (BIS), 3.5% of your gross annual salary
• 8% Holiday payment
• Personal growth and challenging work with endless possibilities
• An informal working environment with innovative colleagues
• Work Agile, so new ideas come to life faster
   

Questions?

Contact Malgorzata Witczak in our Tech recruitment team for more information about this role. Want to apply directly? Please upload your CV and motivation letter by clicking the “Apply” button.
 

About us

With 57,000 employees and operations in approximately 40 countries, there is no shortage of opportunities for people with initiative who want to help people take a step ahead in life and in business. Do you want to work at the cutting edge of what’s possible and at the same time ensure you work with integrity and hold the customer’s interests at heart? Do you want to be surrounded by progressive, inspiring, diverse and supportive colleagues? Then there is no better place to invest your talents than at ING. Join us. Apply today.