10 Apr 2026

Head of Security Architecture & Strategy

ING Nederland

Amsterdam

10 Apr 2026

Apply

Head of Security Architecture & Strategy needed to define and drive ING's global security architecture and multi-year strategy. This senior leadership role involves strategic direction, architecture standards, design governance, and collaboration across enterprise architecture. Requires 12+ years in technology/security with senior architecture leadership in regulated environments.

On-siteFull-timeDirectorSecurity ArchitectureIdentity & Access

Head of Security Architecture & Strategy

Apply

On-siteFull-timeDirectorSecurity Architecture

Salary

Not specified

Work Location

Amsterdam, North Holland, Netherlands, NL

Work Model

On-site

Experience Required

12 years

Employment Type

Full-time

Experience Level

12+ years in technology/security with senior security architecture leadership

Core Qualifications

Technical (Must-have)

Security architectureIdentity & accessData protection/privacyApplication/API securityNetwork/infrastructure securityCloud/hybrid controlsEnterprise architecture frameworksTOGAFZachmanArchimate

Soft Skills

Strategic visionExecutionInfluenceCommunicationPeople leadershipChange leadership

Tools (Must-have)

GCPAzureAWS

Preferred Qualifications

Technical (Nice-to-have)

SABSACISSPCCSPCISM

Key Responsibilities

•Define and maintain a 3–5 year security strategy, aligned with business strategy, tech/data strategies, threat landscape, and regulatory expectations; translate into strategic pillars, outcomes, and milestones.
•Publish and socialize a security architecture roadmap that guides platform and program decisions across countries/domains.
•Set security architecture principles, standards, and reference architectures for cloud, identity, data, applications, APIs, and infrastructure; ensure compatibility with enterprise architecture frameworks and models (e.g., TOGAF, Archimate).
•Convert risk, threat, and regulatory requirements into actionable patterns and reusable building blocks for engineers and architects.
•Act as security design authority on behalf of the CISO: approve standards, patterns, and exceptions; embed security architecture in design/investment reviews and major programs to avoid late rework.
•Collaborate with Enterprise Architecture forums to ensure security is integrated from inception, not retrofitted.
•Partner with business leaders, CIO domains, risk/compliance, data & engineering teams, and vendors to balance risk, cost, and speed while meeting regulatory expectations.
•Represent Security Architecture in enterprise architecture and executive forums; provide clear, timely guidance to unblock delivery.
•Integrate threat intel, incident learnings, resilience testing, and audit/regulatory feedback into architecture direction and priorities. Support the CISO in supervisory engagements.
•Build and lead a high‑performing, diverse team of security architects and strategists, fostering technical intensity and architectural rigor. Mentor architects and engineering leaders to elevate security by design.

Head of Security ArchitectureStrategyBankingSecurityArchitectureLeadershipRegulatedCloudEnterprise ArchitectureING

Core Qualifications

Technical (Must-have)

Security architectureIdentity & accessData protection/privacyApplication/API securityNetwork/infrastructure securityCloud/hybrid controlsEnterprise architecture frameworksTOGAFZachmanArchimate

Soft Skills

Strategic visionExecutionInfluenceCommunicationPeople leadershipChange leadership

Tools (Must-have)

GCPAzureAWS

Key Responsibilities

•Define and maintain a 3–5 year security strategy, aligned with business strategy, tech/data strategies, threat landscape, and regulatory expectations; translate into strategic pillars, outcomes, and milestones.

•Publish and socialize a security architecture roadmap that guides platform and program decisions across countries/domains.

•Set security architecture principles, standards, and reference architectures for cloud, identity, data, applications, APIs, and infrastructure; ensure compatibility with enterprise architecture frameworks and models (e.g., TOGAF, Archimate).

•Convert risk, threat, and regulatory requirements into actionable patterns and reusable building blocks for engineers and architects.

•Act as security design authority on behalf of the CISO: approve standards, patterns, and exceptions; embed security architecture in design/investment reviews and major programs to avoid late rework.

•Collaborate with Enterprise Architecture forums to ensure security is integrated from inception, not retrofitted.

•Partner with business leaders, CIO domains, risk/compliance, data & engineering teams, and vendors to balance risk, cost, and speed while meeting regulatory expectations.

•Represent Security Architecture in enterprise architecture and executive forums; provide clear, timely guidance to unblock delivery.

•Integrate threat intel, incident learnings, resilience testing, and audit/regulatory feedback into architecture direction and priorities. Support the CISO in supervisory engagements.

•Build and lead a high‑performing, diverse team of security architects and strategists, fostering technical intensity and architectural rigor. Mentor architects and engineering leaders to elevate security by design.