Information Risk Management Senior Business Manager

At ING we encourage you to `Do Your Thing` to do more of what you love. We’re on a journey that’s centered around our customers, powered by technology and digital environment, driven by smart, determined people. Our customers feel our people are empowering them to stay a step ahead in life and in business. We’re proud of that!

We want you to discover and develop yourself while developing others, be creative, be successful, excel at your career life, work agile so new ideas come to life faster! Interested?

The role of “Information Risk Management Senior Business Manager” within the Non-Financial Risk Directorate of our Audit Committee is a senior position that entails a high level of expertise and responsibility. The successful candidate will have the opportunity to make a significant contribution to the effective management of informational (technology) risks of the Bank, ensuring compliance with ING IT risk minimum standards, relevant Turkish regulations and applicable international regulations. The role involves providing consultancy on the implementation of ING policy and standards, reporting on information flow and delivering training on information risk management and related subjects.

What do we offer:

At ING we want your work to fulfill you in every way, and that is why we take care of even the smallest detail. Check out what is waiting for you;

At our organization, you first be yourself, then you are ING’er, therefore;

14 days of welcome leave days even in your first year! Don’t postpone your dreams!

Flexible working models where you can manage your time and do your thing.

Working in hybrid model where you can choose your flexible days

Every 3rd week of the month working remotely

With summer flexi, working remotely at the summer times

Develop yourself with global/local ING Academy opportunities; TrainINGWeek, special certification programs with top universities, various training programs that will help you to empower yourself

Special information sharing environment where you can update & align yourself

Personal growth & challenging work with endless opportunities to realize your ambitions

An informal, dynamic environment with innovative colleagues supporting your endeavors

Share your innovation ideas while discovering PACE methodology

Take a part in local and global projects and/or career opportunities

Have fun with various communication activities & celebrations

Explore new hobbies with our social clubs

We care your health; comprehensive health insurance package for you and your beloved ones (spouse/children)

Private Pension plan for your future dreams

There are corners which easiest your daily life like; hair dresser, gym, coffee places, market etc…

For more details about “Do Your Thing” please visit

https://www.youtube.com/watch?v=UBSGOJBnuyc

If you think you have most of the following qualifications;

• Bachelor’s degree in Computer Sciences, Electric/Electronic, Industrial, Mathematical Engineering, MIS or related fields.
• Experience as senior I&TR with at approximately 7+ years in risk areas that are relevant respectively for Information Technology or Information Security|Risk.
• Ability to be I&TR expert when needed and show flexibility when possible.
• Good knowledge of IT frameworks, e.g., COBIT, ISO, NIST, ITIL.
• Good knowledge of Banking business, processes, procedures and systems.
• Experience with cybersecurity concepts such as Identity Access Management, Vulnerability Management, Secure Software Development Lifecycle, Security Governance, etc.
• Preferably holding an industry certification (CISA, CEH,CRISC,CISSP, etc.) or committed to get one in a year.
• Great at communication, combines empathy and assertiveness, passion for impact and learning, and result oriented.
• Positive attitude and open mindset, not afraid to roll up your sleeves.
• Team player with highly developed interpersonal skills: ability to build credible relationships with management and other staff,
• Fluent in English (written and spoken).

If you think you may take charge of the following responsibilities;

• Ensure compliance with ING minimum standards and related local/international regulations to fulfill a second line of defense role in effective management of information (technology) risks of ING Bank Turkey.
• Support and challenge related business lines (Operations, IT) in identifying and assessing the IT risks as well as for the remediation actions.
• Provide risk advice on relevant products and processes (such as outsourcing, risk acceptances, projects, procedures, workflows, minimum standards, etc.)
• Execute 2nd Line Monitoring activities on IT Risk Management activities & on bank-wide control frameworks (SOX, Enterprise Risk Management, Key Control Testing, etc.)
• Performing ad-hoc studies such as risk assessment projects, on-site hand zone assessments etc.
• Good presentation skills.

If you want to do your thing and explore the life while working don’t miss this opportunity!

Candidates are expected not to share any sensitive personal data.