IT Risk Engineer for SaaS Solutions
Tech | Professional | Katowice | REQ-10080409
We are looking for you, if you:
- have a minimum of 3-year relevant experience within IT Risk management for SaaS,
- are a senior and proven expert in the field of IT Risk, possessing in-depth knowledge of IT Risk Management and processes. You can deal with and advise on highly complex and difficult matters, including AI,
- are able to transfer IT security requirements into practical implementation,
- are a trusted advisor, who brings IT Risk under control by supporting the business lines. In addition, you know how engineers work and how controls can be best integrated in their daily way of working, ensuring that delivery and risk are balanced for the risk appetite of the business,
- are flexible, energetic, influential you adapt easily and can work both independently and in a team.
- can analyse and solve problems. You are a holistic thinker with an attention to details,
- are organized, can provide structure and maintain focus on the full picture.
You'll get extra points for:
- active holder of certifications issued by ISC2 (like CISSP, CCSP) or issued by ISACA (like CISM, CISA, CRISC) or similar,
- business oriented approach,
- Agile/Scrum knowledge.
Your responsibilities:
The SaaS Engineer operationally aligns (as operational ING business contact) with a 3rd party to whom IT operations (technical management, hosting, etc.) of an application is outsourced or who owns a SaaS application. SaaS engineer maintains operational relationship with the 3rd party and makes sure ING minimum standards and regulatory requirements are followed. This concerns the activities that have been agreed upon in the SaaS/Outsourcing contract to keep the bank safe.
Main focus, IT Risk related activities:
- participate in RFI/RFP processes for new SaaS applications with stakeholders,
- conduct 3rd party Trust sessions / IT Risk assessments with suppliers,
- assess the third party assurance reports and certificates of the SaaS supplier (like ISO) and Service Organization Control (SOC 2) audit reports,
- identify potential exceptions, control gaps and manage the follow-up with SaaS supplier,
- act as SPOC for 3rd party penetration testing by ING,
- support Asset Owner on creating IA (Issue Acceptance) and/or MIA (Management Identified Action) and follow up on these,
- collect and register IT Risk related evidence (from ING and 3rd parties) and ensure this remains up-to-date and timely registered in ITRMP,
- conduct periodic IT Risk service meetings with SaaS supplier,
- determine the impact of new/changed external regulations /ING standards on the SaaS supplier,
- align with 3rd party on their product roadmap and release planning and determine the impact of 3rd party changes on ING,
- participate with ING Procurement, Legal and DPO.
You will be a driven senior SaaS Engineer who feels personal responsibility for your SaaS application(s) and its security and reliability. We are looking for you if you are passionate about IT Risk, this is your main profession. You are ambitious with what you and your team want to achieve. You bring positive energy to the team and have very good social and communication skills. This leads to great performance.
Information about the squad:
We are looking for an enthusiastic and experienced SaaS (Software as a Service) Engineer to become part of the HR SaaS Chapter within Employee TECH Services. As SaaS engineer you will become part of international team within ING Group.
The role naming convention in the global ING job architecture will be “Engineer IV".
We kindly inform you that we will get in touch only with the chosen candidates. If you agree for processing your data for future recruitment offers, we will keep the data for a year.
All information concerning the way we process personal data can be found here.
Our benefits
Spread your wings with well thought out development plans.
Benefit from the knowledge of our experts during internal trainings or become a trainer yourself!
Develop the skills you care the most about, thanks to the high training budget.
Use internal and external learning platform (e.g. Udemy for Business).
Use the latest technologies and their capabilities in diverse projects.
Work on interesting and international projects that will enable you to meet people from all over the world.
Within your training budget, improve your language skills on a course tailored to your proficiency level.
Don't speak Polish? Take part in a free Polish language course.
Benefit from the support of certified coaches and mentors in achieving your professional goals and strengthening your potential.
Enjoy your additional days off that we offer to our employees (e.g. "Day for Wellbeing", voluntary day).
Take part in numerous activities supporting your wellbeing. Let's take care of your physical and mental health, and work-life balance together.
A healthy body, healthy mind! Find it out with our sports programmes.
Take care of yourself and your loved ones health with LUX MED private medical care.
Use the possibility to join group insurance, as well as BEST HELP insurance – insurance for the treatment of serious medical issues abroad.
Join the PPE programme and save additional money for your retirement.
Build relationships within the team and get to know the people you work with better during team integration meetings.
Share with us your feedback, both anonymous and direct. Use a dedicated tool adjusted to our needs that allows us to see and focus on the issues that matter most to our employees.
Do you ride a bike? So do we, that's why we provide everything you need - parking, a shower, and lockers.
Work on an employment contract.
Work in a hybrid mode. We like to meet in the office sometimes and drink coffee together. Plan your team’s work schedule with your manager and set dates suitable for you to come to the office.
Start your work between 7 and 9 AM, adjust it to yourself, not the other way around.
Feel comfortable in specially designed offices that helps teams to work more efficiently.
Use a company laptop and get an equivalent to buy a phone. We offer various laptop models, depending on the work you perform. After employment, you can also apply for an additional monitor for remote work.
Take a break in one of our chillout zones! Enjoy Xboxes, table tennis, billiards, table football, comfy chairs, etc.
Enjoy your annual bonus and allowance to the remuneration, along with extra awards based on the assessment of your work.
Do you know someone who you think would be a great fit for our company? You can get a cash bonus for each person you recommend if they are hired based on the contract of employment and go through the trial period positively.
Take advantage of the tax deduction in case of performing creative work.
Use a relocation subsidy or other support for your relocation.
Enjoy a gift for starting your job (Welcome Box), some national holidays, birth of a child (Baby Box) and more!
Every month you can count on subsidies for remote work, using public transport, meals in the office, and you can also benefit from our cafeteria platform.
Take advantage of discounts on studies, trainings and exams, language courses and a purchase of a new car.