Discover ING Hubs Romania
Legga attentamente tutte le informazioni su questa possibilità, quindi utilizzi il pulsante di candidatura sottostante per inviare il suo CV.
ING Hubs Romania offers 130 services in software development, data management, non‑financial risk & compliance, audit, and retail operations to 24 ING units worldwide, with the help of over 2000 high‑performing engineers, risk, and operations professionals.
We started out in 2015 as ING’s software development hub, then steadily expanded our range to include more services and competencies. Now we provide borderless services with bank‑wide capabilities and operate from two locations: Bucharest and Cluj‑Napoca.
Our tech capabilities remain the core of our business, with more than 1800 colleagues active in Data and Analytics Tech, Tech Foundation and Channels, Retail Core Banking and Architecture, and Global Products and Technology Services.
We enjoy a flexible way of working and a highly collaborative environment, where fair and constructive feedback is encouraged.
For us, impact isn’t a perk. It’s the driver of our work. We are guided and rewarded by a shared desire to make the world a better place, one innovative solution at a time. Our colleagues make it their job to do impactful things and they love doing it in good company. Do you?
The Mission
The NFR Hubs Romania team is an integral part of ING’s Non‑Financial Risk domain. The team is responsible for ensuring consistent implementation of NFR frameworks, policies, and procedures, while fostering a collaborative and high‑performing environment within the hubs.
The Cyber NFR Specialist is part of the Center of Expertise (CoE) Cyber Security Risk within the Non‑Financial Risk (NFR) domain in Hubs Romania. The team focuses on identifying, managing, and mitigating cyber risks across ING globally, contributing to the bank’s resilience against internal vulnerabilities and external threats.
The role will report hierarchically to the Lead of Information & Technology Risk in Hubs Romania and functionally to Global Lead of ITR Team I located in Amsterdam, The Netherlands.
Your day to day
Serve as an experienced expert in identifying, managing, measuring, and mitigating cyber security risks;
Analyze security events and incidents; conduct forensic investigations following breaches;
Develop and maintain cybersecurity policies, ensuring they align with regulatory requirements;
Independently assess cyber risks and monitor ongoing threat intelligence;
Provide guidance and support to management and the first line of defense on cyber risk matters;
Utilize strong analytical skills and technical expertise to address complex cyber security issues;
Effectively communicate intricate topics to diverse stakeholders;
Play a vital role in strengthening ING’s resilience and advancing its strategic risk management initiatives.
Specific Tasks
Analyze security events, incidents, threats, and malware; conduct forensic investigations after breaches;
Develop and maintain cybersecurity‑related policies, ensuring alignment with external regulations;
Monitor and challenge the implementation of controls, remediation plans, and risk acceptances;
Perform independent cyber risk assessments and control effectiveness reviews;
Review and challenge incident response reports and root cause analyses;
Monitor threat intelligence and assess its impact on ING’s risk posture;
Challenge the definition of Key Risk Indicators (KRIs);
Support NFR teams in deep dives, oversight, and reporting;
Advise management on cyber risk exposure and mitigation strategies;
Stay up to date with emerging threats, attacks, regulatory developments, and industry best practices.
What you’ll bring to the team
Master’s degree in Computer Science or equivalent (Math, Engineering);
7+ years of experience in cyber risk management roles, ideally in a n IT Security (e.g., CISO) team;
Strong understanding of cybersecurity, threats, attack methods, and techniques;
Expertise in data centers, infrastructure, cryptography, cloud, platforms, and business applications;
Strong skills in Security Detection & Response, Vulnerability Management, Datacenters, and Network;
Solid expertise in Identity and Access Management, IT Resilience;
Solid understanding of relevant regulations (e.g., DORA, EBA, MARisk). xlwpduy
If you want to deep dive into the processing of personal data conducted by ING Hubs Romania during the recruitment process and your rights related to it, read the privacy notices on our website (make sure to scroll until you reach the Data Protection section/Candidates tab).
#J-18808-Ljbffr