Cyber Assurance & Architecture – OPENBANK
Country: Spain
Technology Risk & Cybersecurity Associate Expert II
Join Openbank, the 100% digital bank of the Santander Group, where innovation meets opportunity! With over 2 million customers across Spain, Germany, the Netherlands, and Portugal, we're leading the way in digital banking. From loans and mortgages to a cutting-edge, fully automated investment platform, our products are transforming the industry.
At Openbank, we pride ourselves on simplicity, agility, and security, earning us the title of the most recommended Spanish bank among our customers. Technology is in our DNA and we are constantly developing new digital solutions and products. And we're not stopping there! At Openbank we are proud to be a bank that is gaining more and more international presence, we have just landed in the United States and we have plans to launch in Mexico.
If you're passionate about digital innovation, eager to make an impact, and ready to be part of a dynamic and forward-thinking company, then we want to hear from you! Join us and be part of our journey to redefine banking for the digital age!
Mission and Responsibilities: Cybersecurity Architecture plays a crucial role in ensuring all Openbank products, services, and infrastructure for consumers, or those being used internally are secure by design and will meet an appropriate technology security level while demonstrating that all potential risks are being mitigated to an acceptable level to assure the confidentiality, integrity, and availability of systems and data.
The scope of this role includes designing and implementing effective security solutions, collaborating with other teams to ensure the security of systems and data, and remaining vigilant in monitoring and responding to incidents. This role will contribute to maintaining the confidentiality, integrity, and availability of information, bolstering the overall security of the organization, playing a crucial role in the design of new solutions and the SW development life cycle.
The main tasks of this position will be the following:
Defining and implementing security requirements throughout the application lifecycle in a cloud DevOps environment.Ensure that projects adhere to established security standards and requirements, ensuring data integrity and confidentiality throughout the development phases.Review and evaluate the design of new applications for the financial sector, ensuring compliance and secure innovation with high cybersecurity standards.Collaborate with the project team to analyze security risks and the results of security testing, including Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Pentesting.Work closely with development and operations (DevOps) teams to integrate best security practices into development, deployment, and continuous operation processes (CI/CD).Define and implement security policies and standards in AWS infrastructure, including service configuration, access control, identity management, and event monitoring.Conduct security risk analysis and assessments, as well as periodic audits to ensure compliance with established security requirements.Work with Cloud and on-prem teams to make the adequate decisions for new projects and current applications and infrastructures.Stay up to date with the latest trends and advancements in cybersecurity, AWS, and DevOps, and apply that knowledge to continuously improve the security of applications and systems.Act as the interface between the technical disciplines and the business to carry out technically oriented security assessments, setting security requirements for new products and services, and assessing compliance and risk.Provide security design and architecture guidance as well as general security consultancy across the business.Act as cyber coach to projects and program teams to ensure that future infrastructures and products are secure.Manage all security assessments for development and corresponding IT landscape.Coordinate security testing prior to product launch.Define, communicate, and ensure that suppliers and third parties understand and comply with security standards.Ensure that the requests of the projects are aligned with cybersecurity requirements in terms of accesses during project implementation and after the go-live.To be successful in the role you must have: At least +6 years of experience in a similar role and scope.Advanced English and Spanish skills (C1).Bachelor's degree in Computer Science or equivalent.What do we offer? - Joining a dynamic and agile company undergoing international expansion.
- Working in start-up mode with the support of the Santander Group.
- Competitive remuneration and attractive benefits package.
- Possibility of growth within the company and the Group.
- Collaborating on international projects in different countries.
- Excellent work environment, social clubs, and frequent events.
Would you like to grow with us? Join our team!
Openbank is an equal opportunity employer. All applicants will be considered as equal without paying attention to gender identity, sexual orientation, ethnicity, religion, age, political orientation, union membership, nor disability status.
We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify, and build.
The personal data you provide as well as any data generated during the selection process are confidential and will be processed by Open Bank, S.A./ Open Digital Services, S.L. with registered office at Plaza de Santa Bárbara 2, 28004 (Madrid), for the sole purpose of managing your participation in the selection processes and, where appropriate, to formalise your recruitment.
For further information about your rights and data protection, please read the ODS/Openbank Privacy Policy applicable to this type of data processing here.
#OPENBANK
#J-18808-Ljbffr