Information Risk Manager

In order to enforce its Non-Financial Risk Management Department, ING Luxembourg is looking for an Information Risk Manager on a permanent contract

Are you somebody  who …. :

• treasures integrity
• takes initiatives and commits to deliver
• combines strong analytical, coordination & organization skills
• has strong communication skills
• is a well structured, autonomous, highly adaptative, flexible team player
• shows assertiveness when you challenge and propose improvements
• is able to deal with cultural differences, conflicting interests, complex and unforeseen challenge
• helps develop a sustainable, effective and efficient working environment by building a strong cooperation with your peers within ING Luxembourg and ING Group

and you have …. :

• Master Degree or equivalent, preferably in Information Security
• 7 years of experience in IT/Information Security/IT Audit or Risk Management areas
• Ability to earn trust and respect of stakeholders, including top management
• Strong understanding of technical aspects as well as organizational aspects of information security
• Ability to be firm when needed and show flexibility when possible
• Collaboration skills and ability to work across both functional and geographical lines
• Strong analytical skills and sound judgment
• Team spirit and willingness to learn and share knowledge
• Fluent in English and French (written and spoken)

In this case, you are our new Information Risk Manager

Your day-to-day tasks

• You support the information risk management of the bank by providing daily support and challenge to all businesses and you help them prevent and reduce risks related to information management
• You participate in the risk assessment processes in all strategic projects and programs, challenge results and identify risk mitigation measures
• You support the DORA readiness of ING Luxembourg by reviewing activities from all 5 pillars of the regulation
• You support strategic and ad-hoc risk analyses, risk papers and risk reports with fact finding, research and documentation activities
• You support assessments and responses to regulatory changes and audit reports
• You contribute, measure and report on the implementation of IT policies and security frameworks throughout the organization
• You verify the implementation of information security controls and evaluate their effectiveness
• You advise the bank management on any questions related to information risks
• You promote security awareness continuously across the whole firm
• You present information risks in a clear and comprehensible manner to your stakeholders
• You are a valued partner while remaining fully independent