Information Security Manager, WB CISO Asia

Information Security Manager, WB CISO Asia

WB CISO is looking to expand the WB CISO Asia Office with an experienced Information Security Manager to steer the overall information security management for all ING entities in the WB Asia region.

The Information Security Manager is an individual contributor role and drives region-wide information security change for all of WB Asia’s entities, and focuses on the rollout of information security policies, standards and new security capabilities, coordination and oversight of global change initiatives, cyber scenario analysis and business advisory, regulatory change management on cybersecurity topics, third party cyber risk management, and training and awareness.

The team

The WB CISO Asia Office is staffed out of ING Hubs Philippines and is functionally part of the global WB CISO organisation which has the domain-wide accountability for cybersecurity and IT risk management throughout all Wholesale Banking entities worldwide in the first line of defence (1LoD). The global WB CISO team is physically located in different parts of the world and consists of capability leads and subject matter experts in a variety of areas such as Attack Surface Management, Security Detection & Response, IT & Cyber Risk Management and Identity & Access Management.

Roles and responsibilities

While the day-to-day activities change continuously, the Information Security Manager will typically:

• Lead and coordinate the local planning, execution and monitoring of WB CISO change initiatives, while maintaining alignment with Global CISO and WB Tech strategy.
• Ensure seamless integration of WB CISO deliverables into WB Asia business operations, including but not limited to sourcing, procurement, data protection, operational resilience and non-financial risk management processes.
• Determine impact of security threats for the WB Asia region, translate these in practical measures and monitor the implementation throughout the region
• Provide security advice and consultancy to WB Asia business management, and participate in local business projects to ensure security requirements are adequately incorporated
• Plan and execute cyber scenario analyses together with WB business and other security teams, and oversee and monitor red teaming activities
• Manage regulatory change on cybersecurity topics and act as WB CISO point of contact in case of (regulatory) audits
• Assist WB Asia business management with their third party cyber risk management obligations

How to succeed

We hire smart people like you for your potential. Our biggest expectation is that you’ll stay curious. Keep learning. Take on responsibility. In return, we’ll back you to develop into an even more awesome version of yourself.

The ideal candidate possesses the following skills and competences, but do not hesitate to apply in case you do not tick all boxes yet:

• Demonstrated proficiency in cybersecurity and/or IT risk management topics, ranging from Attack Surface Management, Security Detection & Response, IT & Cyber Risk Management and Identity & Access Management.
• Strong analytical and problem-solving skills, with the ability to translate complex cybersecurity and IT risk management concepts into tangible solutions and actions.
• Excellent communication and interpersonal skills, including the ability to convey technical concepts to non-technical stakeholders.
• Ability to build partnerships and work collaboratively with a wide range of stakeholders to meet shared objectives, while gaining the support and commitment of others.
• Holds the ING Orange Code in high regard and applies a variety of Orange behaviours to deliver tangible results.