Cyber Response Compliance and Quality Lead - SDSCountry: SpainHello!
You've arrived at the place where the technology that improves the lives of 160 million customers around the world is developed.This job offer is the opportunity to not only join a great company, but to collaborate on projects that have a real impact on society.Santander Digital Services is looking for a Cyber Response Compliance and Quality Lead for our offices in Boadilla del Monte with at least:1+ years of experience in Cybersecurity Incident Response.2+ years of experience in Audit/GRC areas (risk management, control, compliance).2+ years of experience in the financial and consultancy industries.If you're curious about what your future at Santander would look like... this is just getting started.At SANTANDER DIGITAL SERVICES, technology is central to everything our clients and employees do.
Through continuous innovation, working with Agile methodologies, we adopt the top technologies in the market to work with the best technological stack.We have received the "Top Employer" distinction at the Spanish, European and Global level for the sixth consecutive year and we are very proud to be an equal opportunity organization.
We are building a dynamic and proactive team.
We just want you to bring good vibes, commitment to society and share our values; we don't care where you come from or where you go.What are we looking for?As a Cybersecurity Continuous Improvement professional, you will play a pivotal role within our division, certifying global incident response processes, coordinating internal and external audits, and validating our security posture.Your contributions will have a significant positive impact on our incident response globally and across countries.What we expect from you:You are sure to fit in the team if you like cyber security, constantly learn new technologies and if in addition to developing your technical skills, you also care about improving your soft skills (communication skills, critical spirit, initiative, and willingness to learn).You will have to face the challenge to define the Incident Response of the future, participating in the design of processes and procedures focused on how to respond to incidents and threats that impact Cloud Infrastructure, Supply Chain and Blockchain, among others.Audit Excellence and Compliance:Excel in the meticulous preparation and adept coordination of internal and external audits.
Leverage your profound understanding of regulatory standards, ISO27001, and PCI requirements to uphold and elevate our cybersecurity and compliance posture.Incident Quality Assurance Leadership:Assume the helm in leading our incident quality assurance program.
Your discerning eye will guarantee the integrity, consistency, and accuracy of cyber incidents registered in our case management tool, thereby fortifying our incident response capabilities.Continuous Improvement Advocacy with GRC Focus:Embrace a proactive role in identifying continuous improvement initiatives within the Cyber Respond unit, integrating GRC principles.
Your analytical prowess will enhance operational efficiency and ensure current and emerging risks are proactively identified and managed through internal control mechanisms and procedures, aligned with governance requirements and risk mitigation strategies.Strategic Involvement in Transformation Projects:Act as a strategic catalyst in transformation projects, aligning initiatives with governance frameworks to elevate our Cyber Respond division.
Your engagement will shape the future landscape, integrating governance, risk management, cyber incident response, and compliance considerations.With your expertise in:Necessary:Bachelor's degree in computer science, Information Systems, Information Security/Assurance, Engineering or related field required.Knowledge of Incident Response and Handling methodologies.Knowledge of most common cyber incident scenarios and strategies to mitigate their impacts.Knowledge of cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks).Knowledge of domestic and international laws standards governing information security (NIST, DORA, GDPR, etc.
)Excellent English Spanish (written spoken).Keen attention to detail, highly self-motivated and directed.Capability for problem solving, decision making, sound judgment, assertiveness.Desirable:Professional certifications in Information Security preferred (such as CISA, CISM, CRISC, CISSP, CRISC, etc.
)How you will work with us:- In a team!!!
With dynamic, proactive and open to change colleagues.- Hybrid work model (you telework some days and others you meet with your team in the office).- Flexibility #J-18808-Ljbffr