Discover ING TECH
ING TECH is an international hub for technology & innovation, developing IT solutions across ING in areas such as Core Banking, Big Data, Financial Markets, Data Management, Touch Point Architecture and many more.
By using the latest methodologies in software development, our fast growing team gathers more than 650 tech enthusiasts who work for international projects that go beyond traditional banking.
The RCM team is responsible for operational, IT and compliance risk management in the company. In ING Tech Romania we follow the Agile approach, using flexible frameworks like Scrum and Kanban at our everyday work.
We are innovative and we trust people we work with. The broad autonomy our employees have, stimulates motivation and creativity what allows us to adapt to the changing requirements of business partners.
Small units called squads are the core of our organization. They have clear vision of products, overcome challenges autonomously and based on team cooperation, work out the most flexible and effective way of working.
Defining & maintaining the relevant IT Security & Risk framework at organizational level;
Driving training & awareness activities :
Help defining the communication plan in order to improve awareness;
Provide face to face IT Security & Risk trainings to employees;
Monitor execution of the training program;
Liaise with external entities on relevant training needs and drive local adoption of these.
DrivingOCD (Operational Control Dashboard) and IT Risk activities fulfillment for local teams where required including :
Coaching the teams;
Liaise with external parties or 2nd line;
Provide relevant awareness and knowledge sharing to the teams;
Acting on CCERT alerts related to development (e.g. vulnerabilities in libraries / frameworks) identify teams, address the threat etc.;
Acting on and report to Cyber Crime Emergency Response Team in case of cybercrime related incidents;
You will participate in audit reviews provide advice / challenge the auditors recommendations, if the case;
Driving organization level processes as :
Business Continuity & Crisis Management;
Key Controls Testing;
IT within Risk Appetite program.
Acting and advising on Audit & MIA (management identified actions) points;
You will be Single Point of Contact (SPOC) for 2nd line functions on IT Risk;
You will perform relevant reporting where required (e.g. NFRC);
What You Bring To TheTeam
Minimum 2 years of experience in IT risk management and implementation and review of IT controls;
The ability to streamline risk processes;
Practical experience, solutions and answers orientation, explanation of deficiencies and finding remedies;
Ability to overcome resilience to implementation, ability to work in sprints in close co-operation with several teams;
Preferably you have Agile work experience;
Ability to communicate and synthesize information to be transmitted;
Fluency in English (written and oral) obligatory.