IT Risk Resource Expert

IT Risk Resource Expert
Location: Amsterdam, Netherlands Salary: €80,000 Base


• As part of the Squad Facility Management/IT BPO the IT Risk resource aligns with 3rd parties to whom IT operations (technical management, hosting, etc.) of an application is outsourced or who owns a SaaS application
• He/she helps the 3rd party , shares information on the Minimum Standards/IT Risk controls and requests evidence that supports the correct execution of the, in the contract described, IT risk & security agreements
• Furthermore, he/she conducts ING-internal OCD activities, aligns with relevant internal Risk departments with regard to the, by the 3rd party, delivered evidence
• In addition he/she overviews planning and activities of all parties involved while delivering/reviewing the IT Risk deliverables

Key activities

• Collects and registers IT Risk related evidence material (from ING and 3rd parties) in the OCD tool and ensures that OCD content remains up-to-date
• Assesses certificates (like ISO) and Service Organization Control (SOC)/Audit reports, received from 3rd party, involving 1st Line of Defense Risk and prepares a concluding in control statement to be approved by 1st/2nd Line of Defense Risk and Asset Owner
• Acts as coordinator for all IT Risk related activities

Essential Requirements

• Knowledge of the ING IT Risk controls
• Understanding of ISO 27001, SOC 2 type 1 & 2; being able to apply them in practise
• Knowledge of infra and SAAS applications
• Experience with vendor management
• Experience with Agile project management
• Preferably experienced in the CISM domain
• Good communication skills in Dutch/English is mandatory

Ref: DB9082

If you would like to apply for this position please use the application form on this page. Alternatively, you can contact us on