IT Risk Chapter Lead

ING Türkiye

Istanbul

Description

IT Risk Chapter Lead

Technology risk and cybersecurity are essential pillars of ING Türkiye’s digital banking strategy. Protecting our customers, ensuring operational resilience, and maintaining regulatory excellence all rely on a strong and proactive IT & Cyber Risk Management capability.

As an IT Risk Chapter Lead , you will lead key IT and cyber risk governance processes within the Technology organization, while closely collaborating with the Global CISO Risk organization. This role requires a leader who combines hands‑on expertise in technology risk, strong regulatory knowledge, and the ability to drive disciplined, audit‑ready processes across the bank.

You will contribute directly to the bank’s cyber risk posture by overseeing critical risk, control, assurance, and regulatory compliance activities—and by guiding ING Türkiye’s adaptation to global policies, DORA, and evolving local regulations.

Key Responsibilities

IT & Cyber Risk Governance

  • Ensure ING Türkiye’s IT processes comply with local regulations and ING global standards (including Informations Systems & Electronic Banking Regulation, DORA, CDDO, SOX). Align local practices with global frameworks.
  • Operate and improve cybersecurity and IT risk management processes; develop, update, and maintain control standards, procedures, and process documentation.
  • Provide input for risk assessments, cyber risk reporting, and risk‑based decision-making initiatives.

Regulatory & Audit Engagement

  • Prepare the quarterly Technology Risk Opinion and brief CIO and CRO
  • Monitor new and evolving regulations related to IT and cyber risk; assess impacts and coordinate required actions.
  • Act as coordinator for regulatory audits (BDDK, independent external audit) and internal audits; manage communication with IT units and ensure timely delivery of evidence.
  • Track audit findings from internal and external audits; report status to senior management; guide remediation efforts when needed.

Control Assurance & Testing

  • Execute and follow up on IT and cyber control testing activities.
  • Ensure first-line controls across IT and business units are adequate, effective, and aligned with ING global and local regulatory expectations.
  • Provide consultancy to IT teams in defining and structuring processes and process outputs.

Information Security Risk Management

  • Contribute to information asset classification and confidentiality–integrity–availability assessments.
  • Support identification of security risk requirements for critical projects and improvement initiatives.

Qualifications

  • 8+ years of experience in IT risk management, cybersecurity, technology audit, or operational risk within the financial sector.
  • Minimum 3 years in a leadership, chapter lead, or similar role.
  • Bachelor’s degree in Computer Science, Information Systems, or a related field; Master's degree preferred
  • Relevant certifications (e.g. CISA, CISM, CISSP) are a plus
  • Strong understanding of IT governance, risk, and control frameworks (COBIT, NIST, DORA, ISO 27001).
  • Knowledge of Türkiye’s regulatory environment (BDDK, KVKK) and global regulatory expectations.
  • Ability to prepare disciplined, audit-ready processes and documentation.
  • Strong strategic thinking, ownership, and ability to identify risks early.
  • Experience engaging effectively with senior stakeholders, regulators, auditors, and global teams.
  • Clear and confident communication skills in both Turkish and English.

You First Become Your True Self, Then an INGer:

Flexible and hybrid working models, including remote options every third week of the month and during summer. 14 days of welcome leave in your first year—don’t wait to pursue your dreams!

Continuous Growth and Development:

  • Access to global and local learning opportunities through ING Academy, LearnUp, and certification programs with leading universities.
  • Opportunities to contribute to innovative projects both locally and globally while advancing personally and professionally.
  • Flexible career experiences await you through Short-Term Assignments (STA), Long-Term Assignments (LTA), Mini
  • Career opportunities, Double Major (Çifte Kariyer), Turuncu Misafir, and Global STA/LTA programs, designed to enhance your skills and broaden your experience across different teams, departments, and international locations.
  • When you step into a managerial role at ING, our exclusive RISE Leadership Program empowers you to lead with
  • confidence. Centered around technology and people, RISE equips ING leaders with advanced skills and a strategic mindset to navigate and thrive in a dynamic environment

A Dynamic and Supportive Work Environment:

  • An informal and collaborative culture where your ideas and innovations are valued.
  • Social clubs, celebrations, and events to help you balance work and fun.

We Care About You:

  • Comprehensive health insurance for you and your loved ones.
  • Private pension plans to help you achieve your future goals.
  • On-site amenities like a gym, coffee shops, a hairdresser, and more to simplify your daily life.

At ING, we’re dedicated to helping you achieve your goals by embracing flexibility, growth, and innovation.

At ING, we’re dedicated to helping you achieve your goals by embracing flexibility, growth, and innovation.

For more information about our Orange Culture, click here now:

https://youtu.be/Q-tB2-J1lzQ

***Candidates are expected not to share any sensitive personal data.