IT Security auditor

IT Security Auditor

The opportunity

ING Corporate Services is looking for an IT Security Auditor who will conduct the execution of technical IT audit activities. The IT Security Auditor will build strong technical expertise in performing hands-on IT Security assessments (application security testing, penetration testing, ethical hacking, threat and vulnerability assessments), as well as excellent data analytics skills combined with excellent communication skills to strengthen our IT audit team.

The team

Corporate Audit Services is ING’s internal audit department and consists of around 410 team members globally. As IT Security Auditor you will be located in Amsterdam and be member of the IT Audit team covering ING’s global IT organisation. This team consists of 12 members located in Amsterdam and Bucharest, and is part of the broader CAS Audit Division Technology & Operations.

You will work in a positive working atmosphere where people are used to an open communication style. Education and training is highly supported to build and extend your expertise and innovation is stimulated.

Role and responsibilities

As IT Security Auditor you will develop into the subject matter expert within the team for IT Security and technical IT audit topics and as such after settling in the job and following training where needed you:

• Coordinate and execute the IT Security assessments and technical IT audit work. These are performed as part of IT audit assignments.
• Develop the approach to audit and assess new technologies together with other technical specialists.
• Use data analytics and develop data-driven approaches to target the technical audit work and increase efficiency.

How to succeed

• You have in-depth technical knowledge of IT Security aspects concerning IT components such as (but not limited to) networks, servers, operating systems, databases, web applications, APIs, virtualisation platforms and public cloud platforms (e.g. MS Azure, Google Cloud, AWS), artificial intelligence.
• You have strong analytical skills to identify IT Security weaknesses, the ambition to effectively communicate related business risks and recommend on the implementation of IT Security controls or risk mitigating actions.
• You are naturally proactive, critical and curious, you know how to ask the right questions and get the right information, even when you have to overcome resistance.
• You are a team player who enjoys working in an international team and able to work effectively under minimal supervision.
• You like to share your knowledge with colleagues.

Furthermore, you adhere to the ING values and you are also prepared to take the Banker's Oath.

Skills required

• A bachelor, master degree or equivalent in the field of IT, IT Security, Cybersecurity or IT Audit;
• Willingness to obtain valid industry certifications such as CISA and CISSP.
• Minimally 2-4 years of relevant working experience in an IT (cyber) security or IT Audit department.
• Continuously staying up to date in the IT Security work field by for example attending trainings or conferences.
• Fluently in English. Dutch or other languages are also appreciated.
• Willing to travel abroad 6-8 weeks per year, depending on assignments.

What we offer

We want to make sure that it’s possible for you to strike the right balance between your career and your private life. Find out more about our employment conditions.

The benefits of working with us at ING include:

●          25-28 vacation days depending on contract

●          Pension scheme

●          13th month salary

●          8% Holiday payment

●          Hybrid working

●          Personal growth and challenging work with endless possibilities

●          An informal working environment with innovative colleagues

About us
Curious about how ING empowers people and businesses to move forward? Discover what we do and what we can offer you.

Questions?
Contact the recruiter attached to the advertisement. Want to apply directly? Please upload your CV and motivation letter by clicking the ‘Apply’ button.