• Job Description

  Req#: Req1464048
  Cybersecurity Risk Analyst

  Country: Spain

  Vendor Risk Assessment Center is looking for a CYBERSECURITY RISK ANALYST based in our BOADILLA DEL MONTE (Madrid HQ) office.

  WHY YOU SHOULD CONSIDER THIS OPPORTUNITY

  At Santander (www.santander.com) we are key players in the transformation of the financial sector. Do you want to join us?

  The General Intervention and Management Control Division is composed of different areas (Regulatory Capital; Management Control; Internal Control; General Intervention; Pensions; Projects and Systems; Accounting Regulation) but with complementary functions, some of which are: interpretation of accounting regulations, preparation of income statements and business management balance sheets, planning and coordination of the process of preparing objectives and budgets of the units/business units/business, Estimates and financial planning, among others.

  Our mission is to contribute to help more people and businesses prosper. We embrace a strong risk culture and all our professionals at all levels are expected to take a proactive and responsible approach toward risk management.

  Santander is proud of being an organization where there are equal opportunities regardless of age, gender, disability, civil status, race, religion or sexual orientation.

  WHAT YOU WILL BE DOING

  As a Cybersecurity Risk Analyst, you will:

  • Certificate critical services / vendors, establish and monitor remediation plans and issue a residual risk rating.
  • Review and challenge of inherent risk scoring of critical services.
  • Reporting and collaboration with CISO and Business Continuity teams regarding risk assessment results.
  • To support the key account management for providing vendor risk service in Santander Group.
  • Periodic reporting to local Cost / Risk areas and respective committees.

  EXPERIENCE

  • Minimum 2-3 years work experience in Cybersecurity / IT Risk / IT audit areas.

  EDUCATION

  • Higher Education Certificate (HNC) computing or technology (IT).
  • Bachelors or Equivalent in Computer Science, Telecommunications engineering or similar.
  • Cybersecurity / IT Risk / Audit industry certifications (such as CISA, ISO/IEC 27001, CompTIA Security+, CISP, SSCP, CSX Cybersecurity Fundamentals, etc.)

  SKILLS & KNOWLEDGE

  • Knowledge of information technology and security certifications and frameworks such as ISAE 3000 (SOC 2), NIST CSF, ISO 27001, ISO 22301, COBIT...
  • Knowledge of IT Audit practices, IT Risk Management, Business Continuity Management, Vulnerability Management, Security testing methodologies (OWASP, OSSTMM...).
  • Communication and oral expression fluent (B2) in English.

  OTHER INFORMATION

  • A candidate will also be able to manage multiple tasks simultaneously, and an enthusiastic team player.
  • Effective communication and excellent writing skills.
  • Keen attention to details and analytics skills are preferred.

  If you want to know more about us, follow us on https://es.linkedin.com/company/banco-santander

  Visit our website https://www.betechwithsantander.com/en/home

  #LI-FB1

• About the company

  Our work touches 140 million lives every day. How? By always innovating, sharing our experiences, questioning how we do things and adapting to new challenges. As we keep reinventing ourselves for the digital age, you’ll find that with us, even your smallest action will have a massive impact. That’s the Santander Effect.

Notice