At ING we are looking for an IT Senior Auditor.
Your role and work environment:We are looking for a talented and enthusiastic IT Senior Auditor to join our Tech Hub Spain Team of Global Corporate Audit Services. The responsibility of this team is to perform IT audits worldwide with a focus on ING 3rd parties that support critical processes. Eventually, we may be involved in other audits within the retail domain, especially in ING Italy, Spain, or Romania. We are a group of curiosity-driven and team-player IT auditors that enjoy addressing new challenges to identify vulnerabilities and IT risks.
Your key responsibilities:As an IT Senior Auditor, you will support IT audits in the ING countries.
You will be part of a team that will independently evaluate the design and implementation of IT controls run by outsourcers. You will assess the control environment via interviews, review of documentation, field inspections, configuration assessment, and by performing technical tests, including penetration tests and/or red teaming. At the end of each audit, you will help produce an audit report that helps ING improve its security control environment and mitigate risks noted by the audit team. Travel may be required in some audits, with an estimated period of 6-8 weeks per year. This role is fun, non-routine, and powerful as it allows you to drive and push the organization within the risk appetite, making it secure and reliable for customers and employees. However, it requires maturity to connect the dots, critical thinking, and up-to-date IT security knowledge to exercise our power and help ING and our providers with care and professionalism.
What are we looking for?Want to know if this job is made for you? These are some of the qualities that we value the most for this role. And if the shoe fits, don't hesitate to apply!
A bachelor's or master's degree, preferably in IT, IT Security, IT Risk Management, or IT Audit.Technical (security) knowledge of IT technologies. You need to have basic (security) knowledge for the main IT layers such as operating systems, network infrastructure, database management systems, web technologies, and mobile operating systems. You should also have your favorite IT area(s) where you can consider yourself an IT (security) expert, such as cloud technologies, IT programming and development processes and tools, or identity access management solutions.Sound knowledge of what IT risk is in general and how organizations address them (IT Risk Management).Your English should be good for both communication and writing.It would be a big plus if you have:More than 3 years of IT audit or penetration testing experience.Certifications such as CISA, CISSP, or OSCP.Knowledge of banking products and processes.
#J-18808-Ljbffr