Information Risk Manager

You have wide experience in information risk management? You are familiar with IT Risk and Continuity Risk? You want to help us actively contribute to the future of banking and constantly improving our IT processes, controls and infrastructure in a digital bank that puts information security in its top priorities ? Then jump on and apply now.

In order to enforce its Non-Financial Risk Management Department, ING Luxembourg is looking for an Information Risk Manager on a permanent contract

• treasures integrity
• takes initiatives and commits to deliver
• combines strong analytical, coordination & organization skills
• has strong communication skills
• is a well structured, autonomous, highly adaptative, flexible team player
• shows assertiveness when you challenge and propose improvements
• is able to deal with cultural differences, conflicting interests, complex and unforeseen challenge
• helps develop a sustainable, effective and efficient working environment by building a strong cooperation with your peers within ING Luxembourg and ING Group

• Master Degree or equivalent, preferably in Information Security
• 7+ years of experience in IT / Information Security / IT Audit or Risk Management areas
• Ability to earn trust and respect of stakeholders, including top management
• Strong understanding of technical aspects as well as organizational aspects of information security
• Ability to be firm when needed and show flexibility when possible
• Collaboration skills and ability to work across both functional and geographical lines
• Strong analytical skills and sound judgment
• Team spirit and willingness to learn and share knowledge
• Fluent in English and French (written and spoken)

In this case, you are our new Information Risk Manager

• You support the information risk management of the bank by providing daily support and challenge to all businesses and you help them prevent and reduce risks related to information management
• You participate in the risk assessment processes in all strategic projects and programs, challenge results and identify risk mitigation measures
• You support the DORA readiness of ING Luxembourg by reviewing activities from all 5 pillars of the regulation
• You support strategic and ad-hoc risk analyses, risk papers and risk reports with fact finding, research and documentation activities
• You support assessments and responses to regulatory changes and audit reports
• You contribute, measure and report on the implementation of IT policies and security frameworks throughout the organization
• You verify the implementation of information security controls and evaluate their effectiveness
• You advise the bank management on any questions related to information risks
• You promote security awareness continuously across the whole firm
• You present information risks in a clear and comprehensible manner to your stakeholders
• You are a valued partner while remaining fully independent