DevSecOps Engineer– CI/CD, Cloud Security&Automation, Amsterdam

Discover ING Hubs Romania ING Hubs Romania offers 130 services in software development, data management, non‑financial risk&compliance, audit, and retail operations to 24 ING units worldwide. We started out in 2015 as ING’s software development hub and have expanded our range to provide borderless services with bank‑wide capabilities from two locations: Bucharest and Cluj‑Napoca.

The mission You will collaborate closely with enthusiastic, highly skilled colleagues from ING Hubs Romania and ING Bank Amsterdam. You will work on externally hosted (private cloud) infrastructure environments for Financial Markets— a fast‑paced, complex, and continuously evolving area where quality and resilience are critical.

You will be working according to modern delivery practices (Agile, Scrum, Continuous Delivery) within complex and security‑critical IT environments. As part of the Proximity Hosting Solutions team, you will contribute to the design, automation, hardening, and operation of a secure, high‑performance platform used by multiple DevOps teams and Financial Markets applications.

Business as Usual&License to Operate

Operational&support activities across platforms and infrastructure

Maintaining CI/CD pipelines, build security controls, and automation

Platform support for various application teams

Risk&Security

Vulnerability management for servers, infrastructure, and containers

Secure configuration, patching, baseline compliance&policy adherence

Pentesting coordination, remediation, and follow‑up

Implementation and monitoring of infrastructure and application security controls

Disaster Recovery planning and execution (technical&procedural)

Privileged Access Management and identity hardening

Projects

Infrastructure&platform modernization

Security automation and“shift‑left” security initiatives

Cloud and hybrid security implementation

Ransomware resilience programs, Darktrace operationalization, SIEM/SOC integration

Capacity, performance, and hardening improvements

Zero Trust and segmentation projects

What you’ll bring to the team

Strong understanding of DevOps/DevSecOps practices, CI/CD pipelines, and automation

Experience with infrastructure hardening, patching, configuration management, and compliance

Experience securing (data center) infrastructure, containers, and workloads

Hands‑on with vulnerability management, pentesting processes, remediation, and security monitoring

Familiarity with identity&access controls, PAM, secrets management

Experience with monitoring, alerting and logging systems

Experience working in complex, highly regulated IT environments

Scripting skills (Python, Bash, PowerShell or similar) are a strong advantage

Excellent written and verbal communication skills in English

Nice to have

Knowledge of networking security (firewalls, routing, segmentation)

Experience designing secure data center or hybrid architectures

Knowledge of database security (Oracle or similar)

Monitoring&observability stack: Zabbix, Grafana, Loki, Prometheus, Alertmanager, Alloy

Container security (Docker, Kubernetes)

IaC: Ansible, Terraform

Security certifications (e.g., CISSP, CISM, Security+, CCSP, CEH)

#J-18808-Ljbffr