ING

IT Security engineer

ING  •  Amsterdam, NL (Hybrid)  •  3 hours ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

This is an opportunity to contribute to a key capability within Engineering & Reliability: helping product teams build secure, reliable and compliant services by design. As part of the IT Risk, Security & SRE area, you will work close to engineering teams, translating security and risk requirements into practical guidance, hands-on support and scalable ways of working.

The team

You will join the Risk & Security team within the IT Risk, Security & SRE area of Engineering & Reliability. The team helps E&R product teams adopt mandatory security and risk practices in a practical, scalable way — reducing toil, enabling compliance-by-design and strengthening ING’s overall security baseline.

We work as an embedded partner to engineering teams, not as a distant control function. Our focus is on guidance, coaching and hands-on support in areas such as secure design, vulnerability remediation, penetration test follow-up, risk assessments and security enablement.

The team is multinational, with colleagues based in the Netherlands and Romania, and works closely with E&R product teams, architects, CISO, Risk, SRE and other Centers of Expertise.

Roles and responsibilities

As an IT Security Engineer in the Risk & Security team, you will help E&R product teams identify, understand and remediate security risks across their applications, platforms and services. Your focus will be on making security practical: turning vulnerability findings, penetration test results and secure development assessments into clear actions that engineering teams can execute.

  • Support vulnerability management across E&R products by helping teams interpret findings, prioritise remediation and drive timely closure of Critical and High vulnerabilities.

  • Coordinate and support penetration testing activities, including intake, scoping, follow-up of findings and validation of remediation actions with product teams.

  • Perform and support security assessments such as SCA, SAST and related secure development reviews, helping teams understand risks in code, dependencies and pipelines.

  • Translate security standards, control requirements and assessment outcomes into pragmatic, developer-friendly guidance and clear remediation plans.

  • Partner with software engineers, SREs, platform teams and architects to embed secure-by-design practices into the full lifecycle of applications, platforms and services.

  • Contribute to threat and risk assessments, design reviews and security consultations for new and existing solutions.

  • Use available security tooling and reporting to identify trends, recurring weaknesses and improvement opportunities across E&R products.

  • Share knowledge through guilds, focus days and coaching sessions to strengthen security awareness and engineering maturity across E&R.

How to succeed

Success in this role comes from combining solid security engineering knowledge with a pragmatic, hands-on mindset. You are able to work with engineering teams on real findings, understand the technical context, and help translate security risks into clear, prioritised remediation actions.

  • Good understanding of vulnerability management, including risk-based prioritisation, remediation planning and follow-up of Critical and High findings.

  • Experience with penetration testing processes, including scoping, interpreting reports, discussing findings with engineers and validating remediation.

  • Familiarity with SCA, SAST and secure development practices, with the ability to explain findings in a developer-friendly way.

  • Ability to read security findings, understand technical root causes and distinguish between theoretical risk, actual exposure and practical remediation options.

  • Experience working with software engineers, SREs, architects or platform teams to embed secure-by-design practices into delivery and operations.

  • Knowledge of relevant security standards and frameworks such as OWASP, CIS Controls, ISO 27001 or NIST, and the ability to apply them pragmatically.

  • 3+ years of experience in IT security engineering, application security, vulnerability management, penetration testing coordination or a related security role.

  • Preferred: knowledge of 1ES products, engineering platforms or golden paths, and how security practices can be embedded into these services.

Rewards and benefits
We want to make sure that it’s possible for you to strike the right balance between your career and your private life. Find out more about our employment conditions.


The benefits of working with us at ING include:

  • 25-28 vacation days depending on contract

  • Pension scheme

  • 13th month salary

  • 8% Holiday payment

  • Hybrid working

  • Personal growth and challenging work with endless possibilities

  • An informal working environment with innovative colleagues


About us
Curious about how ING empowers people and businesses to move forward?

Discover what we do and what we can offer you

Questions?
Please visit our Frequently Asked Questions section to find some answers on questions you might have.

Contact the recruiter attached to the advertisement. Want to apply directly? Please upload your CV and motivation letter by clicking the ‘Apply’ button.

ING

About ING

ING is a pioneer in digital banking and on the forefront as one of the most innovative banks in the world. As ING, we have a clear purpose that represents our conviction of people’s potential. We don’t judge, coach, or tell people how to live their lives. However big or small, modest or grand, we empower people and businesses to realise their vision for a better future. We made the promise to make banking frictionless, removing barriers to progress, and make people confident in their financial decisions. As a global bank we have a huge opportunity – and responsibility – to make an impact for the better. We can play a role by financing change, sharing knowledge, and innovating. Being sustainable is in all the choices we make—as a lender, as a partner and through the services we offer our customers

Industry
Finance & Insurance
Company Size
10,000+ employees
Headquarters
Amsterdam, NL
Year Founded
Unknown
Website
ing.com
Social Media