IT Risk Engineer

Job Role: IT Risk Engineer

Location –Amsterdam, Netherlands

Job Duration: 6-12 month contract

Working Mode: Hybrid

Job Description:

You’ll be responsible for:

• Don’t take things for granted!!!

• Challenge and motivate teams on Risk and security

• Quality checks on ITRMP IT Risk evidence delivered by the teams and perform the FLM check (stage 8)

• Review (incl. approve/decline) the Operational Security Baseline delivered by the teams

• Lead Risk sessions and meetings for the tribe and participate in Business Impact Analysis (BIA), Detailed Risk Assessment (DRA)

• Advise/inform product teams (squads) according to the Information Risk Minimum Standard

• Keep the Risk Journeys (documentation and instructions for engineers) up to date

• Support teams in using tooling used within ING (such as Amyna, SDT, ITRMP, etc.)

• Assist and advise teams and management in iRisk/CAS Issues registered from (audits, ), Risk Events, Risk Acceptances, Management Identified Actions

• Monitor and follow up on registered risk items

• Be the contact person for 2nd Line of Defense (ORM/IRM and BISO SPOC CB&A

• Organize in the bi-weekly Risk Evaluation Meeting (REM) for respective IT area

• Support the tribe in creating and maintaining Business Continuity Plan (BCP)

Our expectations:

• A proven track record and proficiency in IT Risk (5 + years), containing but not limited to:

o Change Management

o Identity and Access Management

o Operational Resilience

o Platform Security

o Cyber Security CISSP, CISM or CISA or other IT risk related certifications holder is desirable)

• Analytical, precisely, tenacious and autonomous

• Strong social and communication skills and being a sparring partner for our business colleagues.

• Conceptional understanding of some technologies: Linux, Windows, containers and Azure DevOps

• Fluent English speaking and writing

What You Should Know About IT Risk Engineer, Axiom Software Solutions Limited

Are you ready to take on the challenge of being an IT Risk Engineer at ING? Located in the vibrant city of Amsterdam, this 6-12 month hybrid contract offers you an exciting opportunity to dive headfirst into the world of risk management. In this role, you won't just be a cog in the machine; you'll be a motivational force within the team, ensuring that risk and security are never taken for granted. Your responsibilities will involve quality checks on IT Risk Management evidence, leading risk assessment sessions, and providing guidance to product teams following the Information Risk Minimum Standard. You'll also keep risk documentation updated and assist teams in navigating tools like Amyna, SDT, and ITRMP. With over 5 years of experience in IT risk, including areas like change management and cyber security, you'll be well-equipped to handle advising management on risk events and leading bi-weekly Risk Evaluation Meetings. Your analytical skills and strong communication abilities will be essential as you become the go-to contact for our 2nd Line of Defense. If you have a passion for operational resilience and a knack for technology, including Linux and Azure DevOps, this could be the perfect fit for you. Join us at ING and play a crucial role in maintaining our business continuity and managing risks effectively. We can’t wait to meet you!

Frequently Asked Questions (FAQs) for IT Risk Engineer Role at Axiom Software Solutions Limited

What are the main responsibilities of the IT Risk Engineer at ING?

As an IT Risk Engineer at ING, your main responsibilities include leading risk sessions, conducting Business Impact Analysis, and reviewing operational security baselines. You'll also ensure quality checks on IT Risk Management evidence and maintain documentation for risk processes, making sure that teams have the latest guidelines and tools at their disposal.