Cybersecurity Vendor Risk Specialist - AQUANIMA Country: Spain AQUANIMA VRAC is looking for a Cybersecurity & Business Continuity Vendor Risk Specialist based in our Boadilla del Monte (Madrid) office. WHY YOU SHOULD CONSIDER THIS OPPORTUNITY At Santander, we are key players in the transformation of the financial sector. Do you want to join us? At Aquanima, we provide a valuable service to our customers. We are part of the Santander Group and seek to achieve maximum efficiency for the Group and for external clients through the management of purchasing processes. Our ultimate and main objective is to maximize savings for our clients, offering our expertise in purchasing across various expense categories in the countries where we operate. Our capabilities also allow us to provide other value-added services such as supplier management and contract management. We are a strategic partner to our customers and suppliers, creating long-term relationships and helping them achieve greater efficiency in their day-to-day operations. Santander is proud to be an organization that promotes equal opportunities regardless of gender identity, culture, and disability. Our mission is to help more people and businesses prosper. We embrace a strong risk culture, and all our professionals are expected to take a proactive and responsible approach toward risk management. WHAT YOU WILL BE DOING Certify critical services/vendors, establish and monitor remediation plans, and issue a residual risk rating. Review and challenge the inherent risk scoring of critical services. Report and collaborate with CISO and Business Continuity teams regarding risk assessment results. Support key account management for providing vendor risk services in the Santander Group. Periodic reporting to local cost/risk areas and respective committees. EXPERIENCE Minimum years of work experience in Cybersecurity/IT Risk/IT audit areas. EDUCATION Bachelor's or equivalent in Computer Science, Telecommunications Engineering, or similar. Cybersecurity/IT Risk/Audit industry certifications (such as CISA, ISO/IEC, CompTIA Security+, CISP, SSCP, CSX Cybersecurity Fundamentals, etc.) are preferred. SKILLS & KNOWLEDGE Knowledge of information technology and security certifications and frameworks such as ISAE (SOC), NIST CSF, ISO, COBIT, etc. Knowledge of IT Audit practices, IT Risk Management, Business Continuity Management, Vulnerability Management, and security testing methodologies (OWASP, OSSTMM, etc.). Fluent communication and oral expression in English and Spanish. OTHER INFORMATION A candidate will be able to manage multiple tasks simultaneously and be an enthusiastic team player. Effective communication and excellent writing skills are essential. Keen attention to detail and analytical skills are preferred. #J-18808-Ljbffr