Security Architect

We are looking for you, if you:

• are fluent in technical and conceptual aspects of cybersecurity, specifically on Network Security, Access security & Cloud Security,
• have a background in exact science,
• have an insight and experience in the implementation of desired structural network security solutions at large corporates,
• have an expert knowledge network and access protocols,
• have an ability to take ownership and responsibility,
• have an excellent analytical skills and a clear way of expressing abstract concepts,
• have an experience in producing and presenting security architectures on a conceptual to physical level,
• have an experience in effective communication on the management level,
• have an excellent writing & reporting skills in English,
• have a determination to continuously develop your (technical) expertise and knowledge,
• have a willingness to travel (up to 25%, mainly in Europe).

Your responsibilities:

• leading the design, providing guidance, and performing verification of architecture implementation on global programmes, specifically:
  • Network security,
  • Access security,
  • Cloud security (mostly on Azure and Google),
• assessing security design and operations of network security,
• developing (network) security norms and controls for the cloud, preferably in a security-as-code formats,
• architecture artefacts lead and delivery,
• formulating and testing hypotheses and drawing conclusions to determine appropriate security solutions/services for ING in a global perspective,
• designing architecture on conceptual and logical levels ensuring the optimal match between technology, fit-to-infrastructure (feasibility of deployment), costs, user acceptance, measurability, and flexibility/scalability together with a virtual team of domain and enterprise architects,
• specifically designing key components that must be enforced and can be measured automatically,
• maintaining and updating the Global Architecture/Security Standard taking relevant (technological, organisational) changes into consideration as well as keeping pace with innovations and trends in the industry/market.

Information about the squad:

ING Office of the CISO focuses on cybersecurity steering, threat & vulnerability management, and response. We translate key risks, business requirements and applicable laws & legislations into architectures and accompanying enterprise-wide security programmes to achieve ING's strategic objectives, while delivering threat detection and response services to the ING organization on a global level.

The objective of the Security Architecture department is to ensure that IT strategy and cybersecurity implementations are aligned on an ongoing basis considering applicable technology solutions, good practices, risk appetite and cost targets. As such the department delivers both conceptual designs as well as technical/physical designs in close consultation with DevOps engineers.

The role naming convention in the global ING job architecture will be “Architect V”.