Head Of Ciso Office (Nl Or Pl)

at ING
📍 Amsterdam, Netherlands
📍 Katowice, Poland
PLN 30,400-45,000 per year
SENIOR
✅ On-site
✅ Visa Sponsorship

SCRAPED

Used Tools & Technologies

Not specified

Required Skills & Competences ?

Security @ 4 Leadership @ 4 Communication @ 4 Reporting @ 4 Audit @ 4

Details

The head of the CISO office is accountable for running the operating system of the Global CISO organization. This role ensures that CISO strategy is translated into disciplined execution, that leadership decisions are well-framed and followed through, and that outputs to senior management, boards, and regulators are consistently executive-ready. This is a first-line leadership role with direct accountability for results.

Location: Amsterdam, Netherlands and Katowice, Poland

Reporting line: Reports directly to the Global Chief Information Security Officer (CISO)

Expected salary:

  • 30 400 - 45 000 PLN if the successor is hired in Poland
  • NL salary scale 14 conditions apply if the successor is hired in the Netherlands

Responsibilities

  1. Strategy Execution & Delivery Oversight
  • Own and maintain the integrated Global CISO roadmap across countries and security domains
  • Translate strategic priorities into clear, time-bound roadmaps
  • Track delivery progress consistently across countries and domains
  • Identify missed milestones and delivery risks early
  • Hold leaders to account when commitments are not met
  • Ensure escalations are fact based, timely, and decision oriented
  • Identify and manage cross-domain and cross-country dependencies
  • Track quarterly outcomes against strategic priorities
  1. Operating Governance of the CISO Office
  • Own the operating governance of the Global CISO organization
  • Define how decisions are prepared, framed, and followed through
  • Design and maintain the enterprise operating cadence of the CISO organization
  • Define and maintain decision and information standards for leadership forums
  • Define agenda standards and decision-framing expectations
  • Ensure leadership forums result in decisions and actions, not status updates
  • Provide execution transparency on leadership decisions
  • Define and enforce escalation thresholds and decision rights
  1. Executive Quality & Readiness Gate
  • Enforce a mandatory executive-readiness gate for all materials submitted to the Global CISO, boards, regulators, audit, and senior management
  • Ensure peer review is completed before Global CISO review
  • Enforce use of approved templates and narratives
  • Ensure materials are clear, concise, and decision-oriented
  1. Metrics Operating Model
  • Own the metric operating model (not the metrics themselves)
  • Ensure consistent production, aggregation, and reporting of metrics across countries and domains
  • Maintain executive dashboards and board-level views
  • Flag late, missing, or inconsistent data
  • Translate metrics into decision-enabling executive narratives
  1. Security Awareness
  • Own the enterprise Security Awareness program and execute a 2026 security awareness roadmap
  • Scale awareness consistently across countries, business units, and leadership levels
  • Adapt awareness to a faster, more precise, and more targeted threat landscape
  • Move awareness beyond training to measurable behavioral change
  • Lead the Security Awareness team and associated capabilities
  1. Cyber Exercise Program & Preparedness
  • Establish and lead a structured cyber exercise program to ensure readiness across the global CISO organization, countries, and domains
  • Design and run exercises that test processes, standards, and cross-country coordination
  • Capture lessons learned and translate into improvements for consistency and preparedness
  • Support leadership confidence in crisis readiness
  1. Leadership of the CISO Office
  • Lead and develop the CISO Office team including Execution Enablement, Global exercises function, Security Awareness team, and Business analyst(s) responsible for templates, dashboards, and executive views

Requirements

Essential

  • 10+ years in cybersecurity, technology, or complex regulated environments
  • Experience operating at enterprise / group level in a matrix organization
  • Strong background in execution management, operating models, or chief-of-staff–type roles
  • Proven ability to work with senior executives and challenge constructively
  • Experience supporting board-level or regulator-facing outputs
  • High comfort operating with ambiguity and incomplete information

Highly desirable

  • Experience in financial services or other highly regulated industries
  • Exposure to ECB / DORA / audit-driven environments
  • Experience working across multiple countries or regions

Critical capabilities

  • Ability to translate strategy into execution
  • Strong judgment on what needs escalation vs. what does not
  • Ability to enforce standards without formal authority
  • Exceptional clarity of thought and communication
  • Comfort saying "this is not executive-ready"
  • Ability to operate independently of the CISO’s day-to-day involvement

Success Measures

The Head of CISO Office is successful when:

  • Execution against strategy is predictable and transparent
  • Leadership forums result in clear decisions and actions
  • Materials reaching the CISO are consistently executive-ready
  • The CISO spends less time on tactical follow-ups
  • Boards and regulators see a coherent, consistent story

Notes

  • The financial ranges specified in the announcement are adjusted and may differ from the range specified in the remuneration regulations.