Security Analyst @ING Bank

ING believes in a world where everyone has the right to grow and progress in their own way. We express this in our global tagline, “do your thing”. Perhaps more than in any other large company, we extend our belief in the power of autonomy to our own people. But there’s a catch. In return for great freedom, we expect people to do great things for our customers, our stakeholders, and ING at large.

To work here is to be surrounded by people who are energetic, ambitious, friendly and respectful: talented specialists who take the responsibility and autonomy to make great things happen. We stay curious, thrive on change, and seek new and better ways to make it happen. Active in Romania for 30 years, ING Bank pioneered and challenged the local banking industry. Technology and innovation are at the core of what we do, making our products relevant for our customers’ lives and businesses.

ING Bank Romania is the only bank with an organic growth within the top 10 local banks by assets, without acquisitions of client portfolios or other banks. ING Bank Romania is an universal bank with more than 1.8 million customers from three business segments: individuals (retail), SME and Mid-Corporate companies and Wholesale Banking.

Join us!

Mission

We are looking for an experienced and enthusiastic Security Analyst with strong technical background and excellent communication skills. Technology plays a crucial role for ING to achieve its strategic objectives.

As a Security Analyst you will use your skills to help develop, design and drive implementation of information security controls in IT systems and business processes while protecting the IT systems and securing access to data.

Your day to day

• Conduct application and infrastructure security and vulnerability assessment;

• Perform proactive research to identify and understand new threats, vulnerabilities and exploits;

• Support IT department and business functions on setting up controls to proactively manage the information security related risks;

• Support bank projects and changes from the perspective of IT and Information Security;

• Internal contact for questions related to IT and Information Security;

• Advice and support regarding Information Security requirements for IT Assets and processes;

• Participate in the implementation of the security architecture, both in terms of infrastructure and applications;

• Review and approve the operating security guidelines (OSG) developed for IT Assets;

• Monitor scope and effectiveness security controls in IT processes (e.g. patching, vulnerability management, lifecycle management, external connections management, security event monitoring, technical state compliance monitoring, penetration testing, change management, etc.);

• Investigate security incidents and define remediation plans accordingly;

• Security Incident Response: Coordination of the security incident response from initiation to conclusion. Assess the security incident, determine required resources necessary to mitigate the incident and coordinate resolution. Documents all activities during the security incident following the established process and conducts lessons learned exercises to make recommendations to stakeholders;

• Cyber Intelligence analysis: Collects network information and analyses them to detect threats and malware impacting the local systems. Investigates the threat posed by an attack and makes recommendation on the actions the be taken;

• Previous network engineering and systems administration experience is required to fully understand the threat landscape.

What you bring to the team

• Knowledge of a least one of following areas: Security architecture, Malware, Penetration testing, Network architecture, Application architecture, Unix, Cisco, & Wintel platforms, Information security polices and procedures;

• Knowledge and understanding of OWASP and security standards like ISO 27001/27002;

• A challenger and networker who adds value to the team;

• Analytical and synthetic turn of mind;

• Excellent communicator, who can be assertive towards multiple stakeholders;

• Team worker but also able to work independently;

• Organized and who follows a “problem-solving” and “results-oriented” approach;

• Excellent project and time management skills;

• Excellent English oral and literacy skills.

What we offer

• Impactful work in a fun and collaborative environment;

• Open-concept offices designed for both team work and relaxation;

• Corporate events and social gatherings;

• Hybrid way of working with flexible working schedule and short week options;

• Monthly budget on Benefit platform;

• Extra annual leave days depending on the total length of working experience;

• Growth opportunities through upskilling/ reskilling programs and a variety of learning and development platforms: ING Learning Centre, Udemy, Bookster, as well as through trainings and certifications;

• Possibility to access Internal roles, International Short-Term Assignments or Long-Term Assignments;

• Context to make an impact through Sustainability and Corporate Social Responsibility projects.