IT Security Audit Specialist

ING Corporate Services is looking for an IT Security Audit Specialist, who will conduct and coordinate the execution of technical IT audit activities. The IT Security Audit Specialist has strong technical expertise and experience in performing hands-on IT Security assessments (penetration testing, ethical hacking, threat and vulnerability assessments), as well as excellent data analytics skills combined with excellent communication skills to strengthen its IT audit team for the area of Tech Retail Netherlands.

The team

Corporate Audit Services is ING’s internal audit department and consists of around 410 team members globally. As IT Security Audit Specialist you will be located in Amsterdam within the Global Tech Infrastructure and Cybersecurity team. This team consists of 6 members located in Amsterdam and is part of the CAS Audit Division IT.

You will work in a positive working atmosphere where people are used to an open communication style. Education and training is highly supported and innovation is stimulated.

Roles and responsibilities

As IT Security Audit Specialist you are the subject matter expert within the team for IT Security and technical IT audit topics and as such you:

• Coordinate and execute the IT Security assessments and technical IT audit work. These are performed as part of IT audit assignments.
• Supervise the technical audit work performed by other auditors on multiple assignments in an area of expertise, e.g. identity & access management.
• Train and coach colleague IT auditors in auditing technical topics and performing hands-on IT Security assessments.
• Develop approach to audit and assess new technologies.
• Use data analytics to target the technical audit work and increase efficiency.

How to succeed

• You have in-depth technical knowledge of IT Security aspects concerning IT components such as (but not limited to) networks, servers, operating systems, databases, web applications, APIs, virtualization platforms and public cloud platforms (e.g. MS Azure, Google Cloud, AWS).
• You have strong analytical skills to identify IT Security weaknesses, the ability to effectively communicate related business risks and recommend on the implementation of IT Security controls or risk mitigating actions.
• You are naturally proactive, critical and curious, you know how to ask the right questions and get the right information, even when you have to overcome resistance.
• You are a team player who enjoys working in an international team and able to work effectively under minimal supervision.
• You have the ability to share your knowledge and provide technical hands-on training to colleagues.

Furthermore, you adhere to the ING values and you are also prepared to take the Banker's Oath.

Skills required

• A bachelor, master degree or equivalent in the field of IT, IT Security or IT Audit;
• In possession of valid industry certifications such as CISSP or CISA.
• At least 5 years of experience in planning and executing IT Security assessments including ethical hacking and penetration testing on complex IT services, platforms, infrastructure and applications.
• Relevant working experience in an IT (cyber) security, IT Risk Management or IT Audit department.
• Experience with working in international and complex organizations, such as the financial services industry.
• Continuously staying up to date in the IT Security work field by for example attending trainings or conferences.
• Fluently in English. Dutch or other languages are also appreciated.
• Willing to travel abroad 6-8 weeks per year, depending on assignments

Rewards and benefits
We want to make sure that you can strike the right balance between your career and your private life. You can find out more about our employment conditions at Benefits in the Netherlands
The benefits of working with us at ING include:

• A salary tailored to your qualities and experience
• 24-27 vacation days depending on the contract
• Pension scheme
• 13th-month salary
• Individual Savings Contribution (BIS), 3.5% of your gross annual salary
• 8% Holiday payment
• Hybrid working to blend home working for focus and office working for collaboration and co-creation
• Personal growth and challenging work with endless possibilities
• An informal working environment with innovative colleagues

We redefine banking. What about you?
There has never been a more interesting time to work at ING. We are on a journey that is centred around our customers, powered by technology and driven by smart, determined people. Our customers feel our people are empowering them to stay a step ahead in life and business. We are proud of that!

Please add a (brief) motivation why you would like to work in this position.