Background
The Global CISO organisation within ING is responsible for assisting management, business and other tribes in providing customer-friendly services safely and securely. Business leaders and CISO are jointly responsible for bank-wide security, and CISO is mandated to drive necessary change in all domains, business and IT.
The Expert Security Strategy is working in the Center of Expertise Security Strategy and Data as expert on security strategy development and maintenance. Since CISO is the main driver for this subject ING is expecting CISO to formulate the security strategy for the group. This strategy is covering a broad number of subjects such as external stakeholders, threat mitigation strategy and technology direction for security tooling. The content of the strategy is determined by the ING CISO, heads of the areas within CISO and external stakeholders such as the CIO’s and CTO.
This role is pivotal in communication and steering of security strategy implementation within ING. The Lead Expert Security Strategy reports to the Expert Leas Security Strategy for day-to-day activities and maintains functional relationships to the heads of the CISO capability areas and within ING Tech. The role is a medior to senior role requiring at least 4-10 years of experience in security and strategy roles.
$ads={1}
Key ResponsibilitiesThe Expert Security Strategy at ING CISO combines subject matter expertise on the CISO capability areas (SDR, IAM, ASM) with expertise strategy development and maintenance and is responsible for:
- Identification of strategic areas that need to be covered in the ING security strategy, together with internal and external stakeholders.
- Identification of requirements to the security strategy from ING policies and standards, national and international data laws and regulation to CISO capabilities
- Supporting and driving the formulation and approval of the CISO security strategy
- Delivery of viewpoints on specific security strategy topics which are linked to the defined security strategy
- On a senior level, maintaining relations with the country and business unit leaders, as well as our internal stakeholders, to ensure alignment and acceptance of the security strategy. The medior level will maintain relations on more operational and tactical level
Requirements
Proven track record and technical and general skills:
- A Technical Master’s degree (e.g. cybersecurity, computer sciences, Mathematics or a comparable degree) or degree in which strategy development is covered (e.g. business administration degree, public administration)
- Track record and experience in larger companies and corporate consulting is preferred (required for senior role)
- Subject matter expert in strategy development
- Solid understanding of IT, including new developments as cloud
- Affinity with analytics, machine learning, and quantitative (data) modelling.
- Excellent oral and written communication skills
- Can demonstrate success in establishing relationships and influencing decision-making
- Ability to simplify complexity and drive operational excellence
- Ability to support yourself and help develop other team members
- Excellent level of English
- Experience in a financial environment is a plus
