Tech Cyber Security Area Lead

Our Tech Security team is at the forefront of safeguarding the organisation, delivering cutting-edge security capabilities and expert consultancy to ensure we operate in a safe and secure environment.

Join our Tech Security team and play a pivotal role in shaping the organisation’s security strategy. As a senior leader, you’ll drive the Tech Security Strategy and Governance, Risk & Compliance (GRC) function, acting as a key advisor and deputy to the CISO.

As the owner of our security services and operating environment, you’ll ensure all activities meet compliance standards, mitigate risks, and support business objectives. This high-profile position represents Information Security across the organisation, requiring a strategic mindset and a commitment to protecting our reputation.

You’ll shape and drive the overall Tech Security Strategy, lead the GRC function, and collaborate closely with Information Security teams, Technology Tribes, Risk, Privacy, and Data Protection stakeholders. Your remit includes defining the strategic roadmap (18–24 months), embedding agile practices, and overseeing end-to-end delivery—hiring, leading, and inspiring a high-performing team.

What you’ll do …

• Build and lead the Security Advisory team and capability.

• Develop a comprehensive Security Advisory Framework, covering areas such as data protection, third-party security management, cyber capability maturity, red teaming, security awareness programs, key project risk assessments, threat landscape analysis, and governance.

• Establish and enhance Cloud Security capability, including frameworks and operational processes.

• Take accountability for the quality and continuous improvement of Security Advisory processes and activities.

• Contribute to defining the strategic direction of the Security Advisory team and its alignment with ING local and Group objectives.

• Act as a key liaison with stakeholders across Regulatory Affairs, Risk (1LOD/2LOD), Audit (internal/external), and maintain engagement with external industry and regulatory bodies.)

What we’re looking for…

• Strong background in third-party security risk management with a minimum 10+ Years of relevant security experience in a highly regulated industry

• Hands on experience in effective communication, team management and senior management

• Knowledge of data protection frameworks, tools, and processes.

• Proven experience in developing or enhancing enterprise-wide security awareness programs.

• Expertise in security governance, risk, and compliance (GRC) and strategic security initiatives, particularly for large-scale projects.

• Ability to draft high-quality documentation and presentations tailored for diverse audiences, including executive boards.

• Familiarity with infrastructure, networking, and security technologies, such as:Vulnerability and compliance scanning processes, Security Information and Event Management (SIEM) processes.

• Experience in running vulnerability management programs and Skilled in managing third-party service providers.

What’s in it for you?

• Discounted ING Health Insurance.

• An additional Rest Day to support your wellbeing.

• An IMPACT Day to volunteer on approved sustainability activity.

About Us

At ING, we’re all about making life simpler and more rewarding - for the people who bank with us, the team members who work with us, and the communities we’re proud to support. Joining ING means stepping into an environment where your individuality isn’t just welcomed - it’s celebrated. We’ve built a culture that’s fun, inclusive, and supportive, giving you the freedom to be yourself, so you can do your thing.

Whether you’re taking ownership of exciting projects, thinking outside the box, or working with global colleagues, you’ll find ING is the kind of place where growth isn’t just a possibility; it’s a promise. As a WGEA Employer of Choice for Gender Equality and Family Inclusive workplace, you’ll feel the difference in how we value and champion our people.

We make hiring decisions based on your skills, capabilities, and how you align with our values - not on ticking every box. So, if you’re interested but don’t meet all the criteria, we encourage you to apply. And because we want you to shine, let us know if you need any adjustments to the recruitment process by emailing Mia.annamalai@ing.com

We’re invested in fostering a diverse and inclusive workplace where everyone feels like they belong. Sound like your kind of vibe. We can’t wait to hear from you!

(One last note: We operate using a direct talent sourcing model, so no agency introductions, please.)

ING is Australia's most recommended bank according to RFi XPRT Survey, February 2021 - July 2021 (n = 31,903) when compared to customers of 20 other banks operating in Australia.

Need more?

Please contact Mia.annamalai@ing.com

Applications close on 24th November