Head of IT Security

The purpose of IT Security is ensuring ING will be amongst the safest banks and will be seen as a leader in (IT) security. We assist Wholesale Banking (WB) including the Tech organization globally in being successful in IT Risk and IT Security. Overall, we ensure that IT Security and IT Risk Management is part of our DNA.

The Head of IT Security has a reporting line to UK CIO and is responsible for 1st Line of Defence Security & Risk Management activities of UK Region and management of Information Security & Risk associated with all technology assets used by ING UK (London) and our office in Dubai. Together with the engineers in your squads, you are also responsible for ensuring that the ING Group Security Policies and Standards are implemented in the business lines within its remit. These include risk assessments for applications and projects, Security Monitoring, Vulnerability Management, Security Incident Management and IT SOX Compliance and Cybersecurity Awareness. The IT Security team works in an agile framework.

This role is based in London and you will act as the Chapter Lead for the UK IT Security squad (Hybrid working).

Main Duties and Responsibilities of Role:

Together with the people in your squad, you are responsible for implementing IT Security capabilities and delivering security & risk awareness throughout ING WB Tech, and more specifically within the UK teams.

You have already lead teams and worked on IT Security topics and have a keen interest in this field and are ready to participate in various technical (security) discussions and drive the integration of IT Security in the DevOps way of working, then this role is for you.

The role is supporting multiple facets of IT Security with a focus on activities such as:

1. Security and Regulatory Reporting
2. Assist in coordination and chairing Governance Forums
3. Assist in delivering Security Dashboarding and Reporting
4. Assist in coordinating Key Control and SOx Testing activities
5. Security Testing
6. Perform 1st line security challenge and spot check assessments
7. Assist in coordinating Penetration testing activities
8. Assist in remediating Security Monitoring, Vulnerability and Patch Management issues
9. Help execute Entity wide control and support evidencing

Security Operations

1. Participate in Incident Readiness and Response (Tabletop, Red teaming)
2. Review and follow-up on Data loss prevention issues
3. Assist with ongoing Security Awareness Training towards all staff

Candidate Profile

Qualification/Education

You have recognised Information Security credential such as CISSP.

You have professional and intellectual IT skills at bachelor or university level.

Experience/Knowledge

You have experience in leading teams in IT Security.

You have a solid understanding of cybersecurity principles, best practices, and tools, with the ability to apply and share knowledge across all levels within the company, supported by proven experience.

You have a background in IT Engineering or IT Support areas.

You can inspire based on your personal leadership and show energy and passion.

You have good communication and interpersonal skills and can interact with team members and different stakeholders to build trust.

You act convincingly, strong in problem analysis, creative in your solutions and you see giving and receiving constructive feedback as an important condition for working well together.

You actively promote and stimulate personal development and coaching of team members.

You have experience/affinity with Financial Institutions.