Senior Infrastructure & Network Security Engineer @ING Hubs Romania

As an IT Security Engineer, you help strengthen ING's security posture by guiding product teams in secure design, threat mitigation, vulnerability remediation, penetration test readiness, and regulatory compliance. You will be part of a new Security engineering Services multinational team (Romania & Netherlands). Together we act as one Center of Excellence (COE) combining deep expertise in (1) Infrastructure & network security, (2) DevSecOps & Application security and (3) Data & Analytics & AI/ML security.

Your day to day:

While each team member brings a strong general security foundation, we do not expect everyone to master all three niches. Every engineer contributes broadly across security engineering with one clear defined area of specialization where they provide deep expertise. The overarching roles & responsibilities are;

• Provide hands-on guidance to ensure teams design and build secure, resilient, and compliant systems by default.
• Conduct security assessments (infrastructure, application, data, ML/AI) and support teams in remediation.
• Translate security standards into practical, developer-friendly best practices.
• Partner with software engineers, SREs, data engineers, and platform teams to embed security into the full lifecycle of applications, systems, and platforms.
• Act as a subject matter expert in IT security, providing proactive guidance, coaching, and support to engineering teams.
• Assess emerging technologies, modern engineering patterns, and security threats, and communicate their impact in clear, actionable guidance.
• Contribute to security communities of practice, knowledge-sharing sessions, and initiatives that uplift the overall security maturity.
• Support risk assessments, threat modeling, blue/red teaming, security testing, and design reviews to ensure solutions are secure and compliant by default.
• Contribute to the automation and continuous improvement of security engineering processes (reducing toil).

Do you have experience in Windows?, All engineers in the IT Security Service Team are expected to bring a solid security engineering foundation, regardless of their specialisation.

• Core Requirements (for every engineer): Strong IT experience using technologies such as Azure pipelines, Kubernetes, Virtual Machines (Linux/Windows), Database solutions (e.g Oracle/MSSQL/Cassandra), application / API development;
• Strong understanding of general IT security concepts (secure design, threat modelling, vulnerability management);
• Track record in security assessments, reporting, and supporting remediation activities;
• Ability to explain complex security topics in a clear and pragmatic way;
• Strong problem-solving, analytical thinking, and stakeholder collaboration skills;
• Can-do mentality, entrepreneurial to help building a new team., * Strong understanding of networking (TCP/IP, routing, segmentation, DNS, firewalls).
• Experience with OS hardening (Linux/Windows) and secure infrastructure configuration.
• Knowledge of vulnerability scanning and remediation workflows (Qualys, Nessus, Rapid7).
• Familiarity with cloud infrastructure and platform security (AWS/Azure/GCP foundations).

Preferred Certifications:

• Google Professional Machine Learning Engineer;
• AWS Machine Learning Specialty;
• Microsoft Azure AI Engineer Associate;
• ISACA CDPSE (Data Privacy);
• Exposure to MITRE ATLAS / adversarial ML tools (valued but not mandatory)

ING Hubs Romania offers 130 services in software development, data management, non-financial risk & compliance, audit, and retail operations to 24 ING units worldwide, with the help of over 2000 high-performing engineers, risk, and operations professionals. We started out in 2015 as ING's software development hub, then steadily expanded our range to include more services and competencies. Now we provide borderless services with bank-wide capabilities and operate from two locations: Bucharest and Cluj-Napoca. Our tech capabilities remain the core of our business, with more than 1800 colleagues active in Data and Analytics Tech, Tech Foundation and Channels, Retail Core Banking and Architecture, and Global Products and Technology Services. We enjoy a flexible way of working and a highly collaborative environment, where fair and constructive feedback is encouraged. For us, impact isn't a perk. It's the driver of our work. We are guided and rewarded by a shared desire to make the world a better place, one innovative solution at a time. Our colleagues make it their job to do impactful things and they love doing it in good company. Do you?