Cyber Security Governance, Risk and Compliance - Boadilla del Monte, España - Santander
Descripción
Cyber Security Governance, Risk and Compliance Responsible SCF HQCountry:
Spain
WHAT YOU WILL BE DOING
Santander Consumer Finance HQ is looking for a Cyber Security GRC (Governance, Risk and Compliance) Responsible SCF HQ
, based in our Madrid
office.
WHY YOU SHOULD CONSIDER THIS OPPORTUNITY
Santander Consumer Finance focuses on business development related to consumer finance products, sales channels and commercial agreements with dealers, vehicle manufacturers or retail distribution establishments, as well as commercial functions associated with direct sales (branches, call centers or digital channels) and indirect sales (through third parties) of consumer finance products.
Santander is proud of being an organization where there are equal opportunities regardless of gender identity, culture and disability. Our mission is to contribute to help more people and business prosper.
WHAT YOU WILL BE DOING
As a
GRC Responsible SCF HQ, you will
oversight the GRC tasks related to Cyber Security for all the SCF Units under scope (aprox. 14 entities in 16 countries), and managing directly the GRC units in SCF Western Hub, HQ and Global Services. You will report directly to SCF Global CISO, and will coordinate the SCF HQ GRC team.
We need someone like you to help us in different fronts:
Governance
- Review, adaptation and oversight of cybersecurity policies, regulations and procedures, and the implementation plans to comply with them
- Management of KPIs, KRIs and Cyber and TR dashboards with adequate followup of action plans
- Oversight and support of SCF entities regarding all GRC activities and initiatives
- Establish a positive interface and align with the Group's global GRC unit and with other SCF and Group stakeholders (2LoD, internal audit, procurement, etc), on behalf of all SCF entities.
- Perform required reporting to various committees and stakeholders regarding cybersecurity risks and issues
- Complete all cybersecurity risk assessment exercises (holistic, RCSA ).
- Complete regular capability assessments of cybersecurity controls (mainly holistic quarterly, and RCSA yearly).
- Project Risk assessments for new systems and services, ensuring they are compliant with policies and any weakness is identified and adequately managed.
- Waivers management and approval when necessary
- Third party cyber and TR risk assessments
- Business continuity and Disaster recovery, related to Cyberscenarios, oversight
- Complete and manage GAP analysis against cybersecurity policies
- Management and coordination of cybersecurity audits
- Findings / recommendations planning, tracking and followup
- Manage SWIFT mandatory assessments and complete yearly compliance attestation
- Regulatory related activities (SOX, GDPR, PSD2, etc) with stakeholders
- Cyber Budget planification an oversight with all SCF countries
- Oversight of contract management for cybersecurity relevant services
EXPERIENCE
- Minimum 7 years of experience in Cybersecurity, teams and project management.
EDUCATION
- STEM related career, Cyber certifications
- Cybersecurity, focus on Technological Risk and Compliance
- Fluent English and Spanish
- Team management
- Projects management
- Fluent communication, and capability to adapt to different levels
- Documentation and presentation skills
- Strong organization and planification skills
- Workload management ability
OTHER INFORMATION
- Travel, mainly to European countries, if needed (normally not frequent).
Más ofertas de trabajo de Santander
-
Aml Analyst
Boadilla del Monte, España - hace 1 semana
-
Global Head of Pre and Post trade for GTB Receivables
Boadilla del Monte, España - hace 2 semanas
-
Data Analytics
Madrid, España - hace 1 semana
-
Junior Data Analyst Wealth
Madrid, España - hace 3 semanas
-
Vendor Risk Assessment Center
Boadilla del Monte, España - hace 1 día
-
Digital Product Owner
Boadilla del Monte, España - hace 1 semana