Cybersecurity Vendor Risk Analyst - AQUANIMA
Aquanima Vendor Risk Assessment Center is looking for a Vendor Risk Analyst (Cyber and BCP) based in our Boadilla del Monte (Madrid HQ) office.
WHY YOU SHOULD CONSIDER THIS OPPORTUNITY
At Santander (www.santander.com), we are key players in the transformation of the financial sector. Do you want to join us?
At Aquanima, we provide a valuable service to our customers. We are part of the Santander Group and we seek to achieve maximum efficiency for the Group and for external clients through the management of purchasing processes. Our ultimate objective is to maximize savings for our clients, offering our expertise in purchasing across various expense categories in the 12 countries where we have a presence. Our capabilities also allow us to offer other value-added services such as 360º supplier management and contract management. We are a strategic partner to our customers and suppliers, creating long-term relationships with them and helping them achieve greater efficiency in their day-to-day operations.
Santander is proud of being an organization where there are equal opportunities regardless of gender identity, culture, and disability. Our mission is to contribute to helping more people and businesses prosper. We embrace a strong risk culture, and all our professionals at all levels are expected to take a proactive and responsible approach toward risk management.
WHAT YOU WILL BE DOING
As a Vendor Risk Analyst, you will:
Certificate critical services/vendors, establish and monitor remediation plans, and issue a residual risk rating.
Review and challenge the inherent risk scoring of critical services.
Report and collaborate with Subject-matter expert (SME) teams regarding risk assessment results.
Support key account management for providing vendor risk service in Santander Group.
Periodic reporting to local Cost/Risk areas and respective committees.
EXPERIENCE
1-3 years work experience in IT Risk and/or Business Continuity areas.
EDUCATION
Bachelor's degree in Telecommunications/Computer Engineering or Business Administration and Management.
Related industry certifications (such as CISA, CISSP, ISO 27001 LA, ISO 22301 LA, CompTIA Security+).
SKILLS & KNOWLEDGE
Knowledge of IT Risk and Business Continuity and security certifications or frameworks such as ISAE 3000 (SOC 2), NIST CSF, ISO 27001, ISO 22301, COBIT.
Fluent communication and oral expression in English and Spanish.
OTHER INFORMATION
A candidate will manage multiple tasks simultaneously and be an enthusiastic team player.
Effective communication and excellent writing skills.
Keen attention to detail and analytical skills are preferred.
If you want to know more about us, follow us on LinkedIn.
Visit our website here.
#J-18808-Ljbffr