Information Risk Management Officer - Business Support Functions (BSF) & Generic Services (GS)

Deze vacature is niet meer vacant

The opportunity

This new position is part of the Information Risk Management Business Support Functions (BSF) and Generic Services (GS) within the Corporate Information Risk Management (CIRM) department located in Amsterdam, The Netherlands. The role is defined as NFR Specialist – IRM within the global Information Risk Management community. The role reports hierarchically to the Head of Corporate IRM / BSF - GS.

The Information Risk Management Of contributes to the design, preparation and coordination of programs and projects of the NFR and ORM function, to challenge, advise and support the identification, analysis and mitigation by 1st Line of Defense/business of non-financial risks, raising the NFR awareness throughout BSF and GS and checks that the 1st Line of Defense/business is complying with the risk appetite and escalates where necessary.

Roles and responsibilities

The above translates to the following (non-exclusive) responsibilities:

  • Provides Quality Assurance on Control Compliance & IT Risk Management activities;

  • Participates and/or executes Spot Check and/or IT Risk & Maturity Assessments in the domain of BSF and GS;

  • Participates in designated projects, developments or business initiatives, challenging and advising on information risks.

  • Assists in delivering and facilitating Corporate IRM’s educational services;

  • Provides interpretation of ING Group Information (Technology) Risk policies & Minimum standards;

  • Reviews various technical documentation – Security Baselines, Functional Specification documents, Application Architectures documents etc.;

  • Contributes to the development and maintenance of Information Risk Management Framework, Policies, Minimum Standards, Procedures, Methods and Techniques;

  • Participates in or reviews Information Risk Assessments;

  • Reviews, challenges and supports, where needed, the business and/or IT for/during risk assessment sessions for identifying information risks;

  • Performs spot checks for verifying the effectiveness of the implemented (IT) controls and recommend remediation based on the outcome;

  • Measure and report the implementation of information risk framework throughout BSG and GS

  • Performs Second Line Monitoring role in IT Generic Key Control/SOX Testing processes;

  • Performs and assist in other non-financial risk management activities where the requirements arise.

The Team

Within the CIRM BSF-GS, you will be part of a team of 6 IRM Officers located in Amsterdam. You are able to deal with and advise on

Working with a variety of internal stakeholders offers an environment which not only provides the overview on how Information (Technology) risks are managed of the global processes at Head Office, but also provides the opportunity to further support the enhancement of global IT services delivered by the Generic Services department of Tech, like the Global Data Lake.

How to succeed

We hire smart people like you for your potential. Our biggest expectation is that you’ll stay curious. Keep learning. Take on responsibility. In return, we’ll back you to develop into an even more awesome version of yourself.

We are looking for a motivated colleague who has the following characteristics and capabilities:

  • University BSc Degree or equivalent, preferably in IT field;

  • 4 - 8 years’ experience in IT Audit or IT Risk Management;

  • Knowledge of and experience with IT Audit assignments, IT Control Assessments or IT Risk Assessments;

  • Collaboration skills and ability to work across both functional and geographical lines;

  • Pro-activeness and persuasiveness;

  • Good analytical skills and sound judgment;

  • Fluent in English (written and spoken)

Would be considered a plus:

  • Having professional education and an international certification for Information (Technology) /Risk Management (e.g. ISC2, ISACA accreditations);

  • Knowledge of Banking business, processes, procedures, systems and associated laws & regulations;

  • Knowledge and experience in one or more IT Security areas.

Rewards and benefits

We want to make sure that it’s possible for you to strike the right balance between your career and your private life. You can find out more about our employment conditions at

The benefits of working with us at ING include:

• A salary tailored to your qualities and experience

• 24-27 vacation days depending on contract

• Pension scheme

• 13th month salary

• Individual Savings Contribution (BIS), 3.5% of your gross annual salary

• 8% Holiday payment

• Personal growth and challenging work with endless possibilities

• An informal working environment with innovative colleagues

• Work Agile, so new ideas come to life faster


Contact Mark Oosterveld ( )in our recruitment team for more information about this role. Want to apply directly? Please upload your CV and motivation letter by clicking the “Apply” button.

About us

With 57,000 employees and operations in approximately 40 countries, there is no shortage of opportunities for people with initiative who want to help people take a step ahead in life and in business. Do you want to work at the cutting edge of what’s possible and at the same time ensure you work with integrity and hold the customer’s interests at heart? Do you want to be surrounded by progressive, inspiring, diverse and supportive colleagues? Then there is no better place to invest your talents than at ING. Join us. Apply today.

Vacature informatie

Organisatie: ING

Locatie: Amsterdam

Opleidingsniveau: WO

Meer vacatures