IT Area Lead CISO

The role is to manage the capability CISO of Shared Tech in Manila. You, as an IT Area Lead, are the lead of this domain. This is your shop.

You are expected to work with your team, Shared IT (Area) Leads and Global CISO Leads to provide services (ranging from staffing services, professional services and end-to-end sourcing) from the chapters under your leadership. The services can range from stories to features to complete purposes of co-located squads. Examples of teams under your care include CISO development and support services, Identity & Access Management, IT General Controls, IT Risk and various CISO expertise areas. Whatever the services, you are responsible for the resource and capability planning to match the demand on the short and long term.

All services are provided in line with the One Agile Way of Working and, obviously, in alignment with the core values and compliance requirements that underpin everything that is done at ING.

In terms of your personality, you are a people person first. The morale and energy of your team is at the forefront of every decision you make. Your gift to humanity is that you can get things done while maintaining a highly engaged and positive team. You build high performance teams based on trust and collaboration. And of course, you are still an engineer at heart, credible and authentic in driving an engineering culture.

Major Responsibility Areas:

Maintain a Safe and Healthy team

• Build and maintain a team of IT security professionals, engineers and business & control specialists that provide agreed levels of service and expertise.
• Keep staff retention levels better than the market.
• Manage the hybrid work set-up.
• Your team is highly engaged, involved and contributing to the evolution of the domains.
• Talent recognition and proactive development and coaching of all staff
• You work with peer leaders to ensure balanced rotation.
• Continually in-tune with staff needs and addresses challenges in a timely manner.
• Ensure HR processes are done completely and timely.
• Ensure Orange Code and be a role model.

Get Features Delivered and Supported

• Ensure resources allocations across the organization to get commitments done.
• Maintain great relationship with stakeholders
• Conducting service and delivery review and managing threats and opportunities.
• Optimizing and improving service and delivery processes.
• Ensuring all staff have the right skills and fully allocated to consuming entities.

Keep the Bank Safe

• Manage assets in scope as per the ING Risk Management model.
• ING standards and regulatory requirements are followed.
• ING security and other control mechanisms are implemented.

Other skills and competencies

• Lead, influence and motivate a team of specialists
• Strong communication skills
• Effective interpersonal skills
• Client focus
• Ability to liaise with a broad range of people, including line management, senior management, external suppliers.
• Strong organizational, analytical and problem-solving skills.
• Ability to identify practical solutions.
• Ability to solve complex issues and problems.
• Certifications?

Education: University qualifications in IT or other engineering or audit discipline.

Technical Skills:

• You have a demonstrable engineering, audit or IT security background.
• You are familiar with modern architectures, specifically in computing, software, cybersecurity.
• You are familiar with programming languages, security governance, ethical hacking, cyber risk and intelligence.
• You have expertise in agile, software development, DevOps, Agile Scrum and Kanban or other approaches to software and service delivery.
• You have experience with Continuous Improvement of Continuous Delivery & Software Engineering Practices, specifically with Incident and Problem management.
• Any ITIL certification is a plus.
• Risk or IT Security certifications are a plus.

Previous Experiences:

• You have 10+ years IT, IT Security & Risk experience
• You have 5+ years of experience in financial services (a plus but not required)
• You have a track record in leading strategic business change, in a senior role
• You have experience leading a team to delivering and supporting business services or domains in a matrix model
• You have exposure to multiple, diverse infrastructure, application and information technologies and processing environments.
• You know audit and specifically IT control areas (e.g. user access management, change controls, physical security, cyber security).
• You understand systems development processes, SDLC and coding.