Invent our next digital future
Long before it became fashionable to talk about the need to be ‘digital first’, ING has recognised and invested in the power of new technologies to transform our customers’ banking experience.
To work at ING Tech is to be surrounded by inspiring colleagues who insist constantly on being more tomorrow than we are today: not just by embracing a digital future — but by inventing it. Who work continually to optimise pioneering, reliable and feasible technological ways to improve our customers’ lives. Add the complexity of working across international environments and a career with ING Tech becomes even more challenging and rewarding.
Working at Europe’s biggest online bank
With 40 million customers depending on our technologies, ING is the Europe’s largest online bank and the biggest employer of IT professionals in The Netherlands. At ING you will only work with the best technologies, the latest methodologies and the most talented people.
A real engineering culture
We recruit only the very best engineers: superior technical knowledge is the basis for superior products. As an ING Tech professional, you will work on projects that make a real difference: either to our customers or to your colleagues.
ING Office of the CISO focuses on Information Security steering, threat management and assurance. We translate key risks & threats, high-level business requirements and applicable law & legislation into IT Security Standards & Architectures and enterprise wide Information security initiatives to achieve ING's objectives, by delivering support and solutions to the business, delivering threat intelligence and monitoring the external threat landscape.
The objective of the Global Identity and Access Management (IAM) department is to ensure that corporate employees have the correct access to ING’s data and services, both from a security and a compliance perspective. The main activities are:
· Defining, and maintaining the IAM framework .
· Performing root cause analysis and work closely with IAM stakeholders of the business, IT and regulatory bodies on remediating defects
· Managing IAM-related projects and requests from (business) users to our Global Service centre and to meet security and compliance objectives.
· Drive change into operations by providing ING’s units with adequate guidance at through all organisational levels.
The Global IAM team consists of 14 professionals that operate from Amsterdam with a Bank-wide focus on IAM. Its members are typically experienced and highly educated and they have diverse interdisciplinary backgrounds.
o Gathering requirements, collecting data, analysing business requirements, analysing root causes and providing input to support the strategic decision-making processes. Challenging the validity of given procedures, processes, policies and systems regarding IAM.
o Advice on improving the current way of working
o Advice on integrating control frameworks and solutions with other domains
o Advice business units on risk & compliance within the scope of IAM, including the use of High Privileged Accounts.
o Developing the Global IAM control framework and perform impact analysis’.
o Maintaining and update the Global IAM control framework, while taking relevant (technological, organisational) changes into consideration as well as keeping pace with developments and trends in the industry/market.
o Assessing and improving underlying test plans and evidence gathering processes together with the involved units and (junior) risk and compliance professionals.
o Delivering support on demand to the IAM community in the business lines
o Specifically designing key components that must be enforced and can be measured automatically.
· Communication and verification
o Defining and presenting control framework and analysing impact on the organisation, and sustaining the rationale for the defined controls.
o Facilitating training, workshops, video conferences and work with international (virtual) teams on the topic of risk and compliance within the scope of IAM.
o Enforcing and verifying the correct implementation of the controls throughout the ING organisation.
o Helping to set-up, build and maintain a sustainable network of specialists inside and outside ING.
· Intellectual Capital & Knowledge Sharing
o Initiating knowledge sharing activities.
o Keeping professional knowledge up-to-date and translate external developments and trends into useable information.
You speak in audit jargon and fully understand risk management, and have strong communication skills (verbally and in written)
- Background and experience in IT Security Management
- Background and experience in Risk management / IT-Audit
- Background in Information Technology
- Experience in process management is considered as a benefit
- Experience in project management is considered as a benefit
For this role it’s a prerequisite to be experienced in and affiliated with Identity & Access Management
Furthermore you recognize yourself in the following personal profile:
Related to the job profile:
- Team player and problem solver
- Eagerness to learn and to grow professionally
- Profound networking skills
- Should be able to work in stressfull conditions
- Delivery focus
· Big4 experience;
· experience in producing and improving control frameworks;
· experience in effective communication on senior management level;
· excellent writing & reporting skills in English;
· determination to continuously develop your expertise and knowledge;
· willingness to travel (up to 25%, mainly in Europe).
ING’s office of the CISO offers a challenging international Information Security work environment with far-reaching and innovative developments which are implemented globally within ING. Cybercrime threat patterns will stay very fluid over the next years and the organisation need to continuously signal and prepare for this. The pervasiveness of these threats means ING Security, on a global base, must quickly develop cutting-edge response on top of basic security capabilities, while improving plans preparing for the worst case scenarios. Possibilities for training and personal development. The actual job level depends on knowledge and experience.
You work in Amsterdam but you might also visit the regions where ING Lines of Business and/or ING Security Capability Providers are active.
An extended screening is part of the onboarding process.
Apply directly online, click on Apply for this job.
Please send your CV including your motivation to apply, and an overview of relevant knowledge and working experience. For more information on vacancies please check www.ING.nl/carriere