Information Risk Management Mission

Do you have IT skills and want to broaden your vision of the Bank ? You want to help us actively contribute to the future of banking and constantly improving our IT processes, controls and infrastructure in a digital bank that puts information security in its top priorities? Then jump on and apply now

In order to enforce its Non-Financial Risk Management Department, ING Luxembourg is looking for an Information Risk Officer on a 6 months fixed-term contract

Are you somebody who …. :

• treasures integrity
• combines good analytical, coordination & organization skills
• has good communication skills
• is a well structured, autonomous, highly adaptative, flexible team player
• shows assertiveness when you challenge and propose improvements
• is able to deal with cultural differences, conflicting interests, complex and unforeseen challenge
• helps develop a sustainable, effective and efficient working environment by building a strong cooperation with your peers within ING Luxembourg and ING Group

and you have …. :

• Master Degree or equivalent, preferably in Information Security
• Experience in IT / Information Security / IT Audit or Risk Management areas
• Good understanding of technical aspects as well as organizational aspects of information security
• Good analytical skills and sound judgment
• Ability to earn trust and respect of stakeholders from other teams
• Team spirit and willingness to learn and share knowledge
• Fluent in English and French (written and spoken)

In this case, you are our new Information Risk Manager

Your day-to-day tasks

• You support the information risk management of the bank by providing daily support and challenge to all businesses and you help them prevent and reduce risks related to information management
• You participate in the risk assessment processes, challenge results and identify risk mitigation measures
• You verify the implementation of information security controls and evaluate their effectiveness
• You measure the level implementation of IT policies and security frameworks throughout the organization
• You perform monitoring of IT related incidents, ensure proper follow-up and reporting
• You build and share statistical reports regarding IT control deficiencies and promote actions for remediation
• You advise your management on any questions related to information risks
• You promote security awareness continuously across the whole firm
• You present information risks in a clear and comprehensible manner to your stakeholders
• You are a valued partner while remaining fully independent