IT Security Officer on secure SDLC In order to strengthen the delivery organisation, ING Luxembourg is looking for an IT Security Officer on secure SDLC (m/f) on a permanent contract. A colleague with a talent for taking it on and making it happen, enthusiasm for helping others to be successful and a knack for always being a step ahead. In other words, you strive to bring fresh ideas to life and embrace challenges in a fast changing and complex environment. You are a naturally collaborative person who listens and invests in others to achieve common goals. You love to challenge the status quo and are eager to propose creative solutions to problems. We are looking for you, if you have: Experience in information security, risk management or compliance, Experience with Software Development Life Cycle : IT development tools, development pipeline, secure development process, secure coding best practices, security testing, etc. Experience as DevOps and/or Site Reliability Engineer. Strong analytical skills. Familiarity with IT risk assessment methods and control frameworks such as ISO27001, NIST, COBIT, SOC2. Proven ability to present and communicate with Senior management and key stakeholders. A personality and the capabilities to optimally function within an Agile environment, Excellent written and verbal English communication skills; ability to express thoughts clearly, know how to listen and contribute in a team environment, French knowledge been considered a bit advantage. You'll get extra points for: Working knowledge of the financial industry. Relevant security certifications such as ISO27001LA, CISA, CISM, CISSP etc. Experienced in Agile / Scrum / DevOps projects Experience with Resilience patterns (backpressure, Circuit Breaker, deadlines, ) Experience/knowledge with multiple testing techniques, especially in the fields of security and resilience A self starter and an output driven team player with experience in fast paced environments. Work efficiently and independently with minimal supervision (i.e., self motivated, and willing to stretch to meet important deadlines). Knowledge of enterprise coding language such as Java, cobol, etc. Your role and responsibilities: Reinforce a team of IT Security officers by supporting several key IT security activities with a specific focus on Secure SLDC, in close collaboration with other Tech teams and Tech management. To achieve this, your main responsibilities are to: Conduct information security assessments of software development life cycle (process, practice, pipelines, etc), including advising management on how to mitigate any identified risks. Perform assessment on static and dynamic code scans results. Provide guidance and best practices to improve the security level of the bank developments. Take part in the day to day IT security operations (incidents, specific requests, etc.) Collaborate with IT teams to ensure the integration of security measures in system designs and implementations.