Cyber Security Analyst @ING Bank

• Company ING Romania
• No. of Openings 10+
• Salary Not Disclosed
• Work Type on-site

Job Description :

Discover ING Bank

At ING we encourage you to `do your thing`, to do more of what you love. This is also the way we articulate our promise to offer frictionless banking. ING is a frontrunner in the transformation of banking and a company that puts technology at its heart.

Active in Romania for more than 25 years, ING Bank is a pioneer in the local banking industry, bringing innovation in the life of its customers. Currently, ING is the 4th bank in the local markets, based on the assets and is a universal bank with 1,6 million clients from three business segments: individual clients (Retail), SMEs and Mid-Corporate clients and Wholesale Banking.

Join us! Together we`ll empower people and organizations to realize their own vision for a better future.

Mission

We are looking for an experienced and enthusiastic Security Analyst with strong technical background and excellent communication skills. Technology plays a crucial role for ING to achieve its strategic objectives.

As a Security Analyst you will use your skills to help develop, design and drive implementation of information security controls in IT systems and business processes while protecting the IT systems and securing access to data.

Your day to day

• Conduct application and infrastructure security and vulnerability assessment;
• Perform proactive research to identify and understand new threats, vulnerabilities and exploits;
• Support IT department and business functions on setting up controls to proactively manage the information security related risks;
• Support bank projects and changes from the perspective of IT and Information Security;
• Internal contact for questions related to IT and Information Security;
• Advice and support regarding Information Security requirements for IT Assets and processes;
• Participate in the implementation of the security architecture, both in terms of infrastructure and applications;
• Review and approve the operating security guidelines (OSG) developed for IT Assets;
• Monitor scope and effectiveness security controls in IT processes (e.g. patching, vulnerability management, lifecycle management, external connections management, security event monitoring, technical state compliance monitoring, penetration testing, change management, etc.);
• Investigate security incidents and define remediation plans accordingly;
• Security Incident Response: Coordination of the security incident response from initiation to conclusion. Assess the security incident, determine required resources necessary to mitigate the incident and coordinate resolution. Documents all activities during the security incident following the established process and conducts lessons learned exercises to make recommendations to stakeholders;
• Cyber Intelligence analysis: Collects network information and analyses them to detect threats and malware impacting the local systems. Investigates the threat posed by an attack and makes recommendation on the actions the be taken;
• Previous network engineering and systems administration experience is required to fully understand the threat landscape.

What you bring to the team

• Knowledge of a least one of following areas: Security architecture, Malware, Penetration testing, Network architecture, Application architecture, Unix, Cisco, & Wintel platforms, Information security polices and procedures;
• Knowledge and understanding of OWASP and security standards like ISO 27001/27002;
• A challenger and networker who adds value to the team;
• Analytical and synthetic turn of mind;
• Excellent communicator, who can be assertive towards multiple stakeholders;
• Team worker but also able to work independently;
• Organized and who follows a “problem-solving” and “results-oriented” approach;
• Excellent project and time management skills;
• Excellent English oral and literacy skills.