ING Office of the CISO focuses on cybersecurity steering, threat & vulnerability management, and response. We translate key risks, business requirements and applicable laws & legislations into architectures and accompanying enterprise-wide security programmes to achieve ING's strategic objectives, while delivering threat detection and response services to the ING organization on a global level.
The objective of the Security Architecture department is to ensure that IT strategy and cybersecurity implementations are aligned on an ongoing basis, considering applicable technology solutions, good practices, risk appetite and cost targets. As such the department delivers both conceptual designs as well as technical/physical designs in close consultation with DevOps engineers.
Key Responsibilities
Main activities are:
- Leading the design, providing guidance, and performing verification of architecture implementation on global programmes, specifically:
- Software development lifecycle security
- Cloud security (mostly on Azure and Google)
- Network security
- Assessing security designs and operations of security services
- Developing security norms and controls for the cloud, preferably in a security-as-code format
- Architecture artefacts lead and delivery
- Formulating and testing hypotheses and drawing conclusions to determine appropriate security solutions/services for ING from a global perspective
- Designing architecture on conceptual and logical levels, ensuring the optimal match between technology, fit-to-infrastructure (feasibility of deployment), costs, user acceptance, measurability, and flexibility/scalability, together with a virtual team of domain and enterprise architects
- Specifically designing key components that must be enforced and can be measured automatically
- Maintaining and updating the Global Architecture/Security Standard, taking relevant (technological, organisational) changes into consideration, as well as keeping pace with innovations and trends in the industry/market
How to Succeed:
- Proficient in technical and conceptual aspects of cybersecurity, specifically in:
- Software development lifecycle security
- Cloud security
- Network security
- Background in exact sciences
- Insight and experience in the implementation of desired structural network security solutions at large corporations
- Expert knowledge network and access protocols
- Furthermore, the following personal profile:
- Ability to take ownership and responsibility
- Excellent analytical skills and a clear way of expressing abstract concepts
- Ability to lead a team of security architects
- Experience in producing and presenting security architectures on a conceptual to physical level
- Experience in effective communication at the management level
- Excellent writing & reporting skills in English
- Determination to continuously develop your (technical) expertise and knowledge
- Willingness to travel (up to 25%, mainly in Europe)
Rewards and benefits
We want to make sure that it’s possible for you to strike the right balance between your career and your private life. Find out more about our employment conditions.
The benefits of working with us at ING include:
- 25-28 vacation days depending on contract
- Pension scheme
- 13th month salary
- 8% Holiday payment
- Hybrid working
- Personal growth and challenging work with endless possibilities
- An informal working environment with innovative colleagues
About us
Curious about how ING empowers people and businesses to move forward? Discover what we do and what we can offer you.
Questions?
Contact the recruiter attached to the advertisement. Want to apply directly? Please upload your CV and motivation letter by clicking the ‘Apply’ button.