IT OpsRisk Engineer – Business Banking NL Tribe @ ING Hubs Romania

at  ING

Discover ING Hubs Romania
We started out in 2015 as ING’s software development hub – a distinct entity from ING Bank Romania – then steadily expanded our range to include more services and competencies.
Formerly known as ING Tech, as of 2022 we provide borderless services with bank-wide capabilities under the name of ING Hubs Romania and operate from two locations: Bucharest and Cluj.
With the help of 1400 engineers, risk and operations professionals, we offer 150 services in tech, non-financial risk & compliance, audit and retail operations to 24 ING units worldwide.
Our tech capabilities remain the core of our business, with more than 1100 colleagues active in Data Management, TouchPoint Channels & Integration and Core Banking.
We enjoy a flexible way of working and a highly collaborative environment, where fair and constructive feedback is encouraged. Work ethics, honesty and knowledge sharing are key to our teams and we’re always looking for like-minded people.
Here’s a sneak peak of what our colleagues say about working within ING Hubs Romania:
At ING, you are a safekeeper of trust | 95% of our colleagues agree.
The Mission
We are looking for an IT Ops Risk Engineer to work for Business Banking NL Tribe.
SME (Small and Medium Enterprises) is an ING Group Initiative which is targeting the digital transformation of our Business Banking at group level. The aim is to provide a foundation for global development of solutions and features for Business Banking clients. This will enable us to unlock synergies between countries in the digital transformation and avoid duplication going forward.
The applications support our Business Banking process in the context of Customer Due Diligence (CDD) for Legal Entities (LE), such as Private Individuals and/or Organizations.
You will work in an AGILE environment, following SCRUM methodology together with DevOps squads.
Your day to day
Even if you start your day from the comfort of your home or drink your morning coffee in our office’s garden, you will make sure IT controls are implemented and suitably evidenced for your asset. You will operate as part of Looker team as an IT security and control expert.

Your daily responsibilities:

• Gain in depth knowledge of the IT environment.
• Implement and manage the security baselines of the analytic platforms and solutions.
• Implement and manage IT access controls including non-personal account management.
• Monitor and fix vulnerabilities (request penetration tests, apply security patches, update IT configurations).
• Implement IT operational procedures like change management, incident management or authorization management.
• Prepare and maintain technical design and procedure documentation like business impact assessment, authorization design, recovery runbooks, or security event monitoring.
• Contribute to IT risk identification and reporting.
• Support backup and restore exercises. Contribute to operational resilience and disaster recovery strategy and implementation.
• Plan IT compliance (evidencing) activities timely for key control testing and reporting.
• Generate continuous improvement on IT security and controls.
• Be an analytics IT risk and security control expert and liaise with the Asset Owner, IT Custodian, DevOps Team, Enterprise Architects and 1st and 2nd Line of Defense teams (IT Security and IT Risk teams).
• Implement and evidence IT issue remediation.
• Keep up to date with ING IT security, risk and control policy and procedures. Actively share your knowledge with teams you are part of.

What you’ll bring to the team
Experience: on average 2-3 years of experience in IT risk, security and control implementation.
Knowledge:

O Mandatory:

• Knowledgeable advisor on IT controls and security.
• Experience with IT control procedures implementation and management.
• Clear communication on IT risk and security matters.
• Critical thinking, continuous learning.
• Organizational skills.
• Hands-on attitude with team spirit.

o Nice to have:

• Digital Banking Platform experience.
• Experience working in projects.
• Knowledge of Agile methodology

Foreign languages: English (advanced)
Education: nice to have Bachelor’s Degree (or higher) in an IT related field

• Gain in depth knowledge of the IT environment.
• Implement and manage the security baselines of the analytic platforms and solutions.
• Implement and manage IT access controls including non-personal account management.
• Monitor and fix vulnerabilities (request penetration tests, apply security patches, update IT configurations).
• Implement IT operational procedures like change management, incident management or authorization management.
• Prepare and maintain technical design and procedure documentation like business impact assessment, authorization design, recovery runbooks, or security event monitoring.
• Contribute to IT risk identification and reporting.
• Support backup and restore exercises. Contribute to operational resilience and disaster recovery strategy and implementation.
• Plan IT compliance (evidencing) activities timely for key control testing and reporting.
• Generate continuous improvement on IT security and controls.
• Be an analytics IT risk and security control expert and liaise with the Asset Owner, IT Custodian, DevOps Team, Enterprise Architects and 1st and 2nd Line of Defense teams (IT Security and IT Risk teams).
• Implement and evidence IT issue remediation.
• Keep up to date with ING IT security, risk and control policy and procedures. Actively share your knowledge with teams you are part of