Tech Cyber Security Area Lead

Talent Acquisition Professional | Strategic Recruiter | Global Talent Expert | Achieving Recruitment Success | Passionate about Diverse Teams Our Tech Security team is at the forefront of safeguarding the organisation, delivering cutting‑edge security capabilities and expert consultancy to ensure we operate in a safe and secure environment. Join our Tech Security team and play a pivotal role in shaping the organisation’s security strategy. As a senior leader, you’ll drive the Tech Security Strategy and Governance, Risk & Compliance (GRC) function, acting as a key advisor and deputy to the CISO. As the owner of our security services and operating environment, you’ll ensure all activities meet compliance standards, mitigate risks, and support business objectives. This high‑profile position represents Information Security across the organisation, requiring a strategic mindset and a commitment to protecting our reputation. You’ll shape and drive the overall Tech Security Strategy, lead the GRC function, and collaborate closely with Information Security teams, Technology Tribes, Risk, Privacy, and Data Protection stakeholders. Your remit includes defining the strategic roadmap (18–24 months), embedding agile practices, and overseeing end‑to‑end delivery—hiring, leading, and inspiring a high‑performing team. What you’ll do Build and lead the Security Advisory team and capability. Develop a comprehensive Security Advisory Framework covering data protection, third‑party security management, cyber capability maturity, red teaming, security awareness programs, key project risk assessments, threat landscape analysis, and governance. Establish and enhance Cloud Security capability, including frameworks and operational processes. Take accountability for the quality and continuous improvement of Security Advisory processes and activities. Contribute to defining the strategic direction of the Security Advisory team and its alignment with ING local and Group objectives. Act as a key liaison with stakeholders across Regulatory Affairs, Risk (1LOD/2LOD), Audit (internal/external), and maintain engagement with external industry and regulatory bodies. What we’re looking for Strong background in third‑party security risk management with a minimum of 10+ years of relevant security experience in a highly regulated industry. Hands‑on experience in effective communication, team management, and senior management. Knowledge of data protection frameworks, tools, and processes. Proven experience in developing or enhancing enterprise‑wide security awareness programs. Expertise in security governance, risk, and compliance (GRC) and strategic security initiatives, particularly for large‑scale projects. Ability to draft high‑quality documentation and presentations tailored for diverse audiences, including executive boards. Familiarity with infrastructure, networking, and security technologies such as vulnerability and compliance scanning processes, Security Information and Event Management (SIEM) processes. Experience in running vulnerability management programmes and skill in managing third‑party service providers. What’s in it for you Discounted ING Health Insurance. Additional Rest Day to support your wellbeing. An IMPACT Day to volunteer on approved sustainability activity. About Us At ING, we’re all about making life simpler and more rewarding - for the people who bank with us, the team members who work with us, and the communities we’re proud to support. Joining ING means stepping into an environment where your individuality isn’t just welcomed - it’s celebrated. We’ve built a culture that’s fun, inclusive, and supportive, giving you the freedom to be yourself, so you can do your thing. Whether you’re taking ownership of exciting projects, thinking outside the box, or working with global colleagues, you’ll find ING is the kind of place where growth isn’t just a possibility; it’s a promise. As a WGEA Employer of Choice for Gender Equality and Family Inclusive workplace, you’ll feel the difference in how we value and champion our people. We make hiring decisions based on your skills, capabilities, and how you align with our values - not on ticking every box. So, if you’re interested but don’t meet all the criteria, we encourage you to apply. And because we want you to shine, let us know if you need any adjustments to the recruitment process by emailing We’re invested in fostering a diverse and inclusive workplace where everyone feels like they belong. One last note: We operate using a direct talent sourcing model, so no agency introductions, please. Applications close on 10th December Applications close on 10th December. Before you apply At ING we consider employee development to be important and encourage existing employees to apply for suitable internal positions. It is expected that any employee applying for a vacant position would have been in their current role for a minimum of twelve (12) months before applying. This may be waived in special circumstances and after consultation with your manager. Seniority level Mid‑Senior level Employment type Full‑time Job function Other Industries Banking and Financial Services #J-18808-Ljbffr