Vendor Risk Analyst
Banco Santander
Madrid, Spain
hace 6 días

Vendor Risk Analyst - Cybersecurity And Business Continuity - AQUANIMA

Boadilla del Monte, Spain

WHAT YOU WILL BE DOING

AQUANIMA is looking for a VENDOR RISK ANALYST - CYBERSECURITY AND BUSINESS CONTINUITY, based in our BOADILLA DEL MONTE office.

WHY YOU SHOULD CONSIDER THIS OPPORTUNITY

At Aquanima we provide a valuable service for our clients. We are part of the Santander Group and we seek to achieve maximum efficiency for the Group and for external clients, through the management of purchasing processes.

Being our ultimate and main objective to maximize savings for our clients, we offer our expertise in purchasing in various spending categories in the 12 countries where we have a presence.

Likewise, our capabilities allow us to offer other value-added services such as 360º supplier management and contract management.

We are a strategic partner to our clients and suppliers, creating long-term relationships with them and helping them achieve greater efficiency in their day-to-day activities.

WHAT YOU WILL BE DOING

As a Vendor Risk Analyst - Cybersecurity And Business Continuity you will be member of our European VRAC team based in Boadilla de Monte (Madrid).

You will be responsible for certifying and managing Vendors regarding IT / Cyber and Contingency risks.

We need somebody like you to help us in different fronts :

  • Review and challenge of inherent risk scoring of critical services.
  • Certificate critical services / vendors, establish and monitor remediation plans and issue a residual risk rating.
  • Reporting and collaboration with CISO and Business Continuity team regarding risk assessment results, continuous improvement of risk methodology, etc.
  • Periodic reporting to local Cost / Risk areas and respective committees.
  • When required : on site assessments, due diligence, to assess and test vendor's security controls.
  • Requisitos

    WHAT WE ARE LOOKING FOR

    EXPERIENCE

  • 2 years work experience in Cybersecurity / IT Risk / IT audit areas.
  • EDUCATION

  • Bachelors or Equivalent in Computer Science, Telecommunications engineering or similar
  • Cybersecurity / IT Risk / Audit industry certifications (such as CISA, ISO / IEC 27001, CompTIA Security+, CISP, SSCP, CSX Cybersecurity Fundamentals, etc.).
  • SKILLS &KNOWLEDGE

  • Knowledge of information technology and security certifications and frameworks such as ISAE 3000 (SOC 2), NIST CSF, ISO 27001, ISO 22301, COBIT...
  • Knowledge of IT Audit practices, IT Risk Management, Business Continuity Management, Vulnerability Management, Security testing methodologyes (OWASP, OSSTMM...).
  • Communication and oral expression in fluent in English, Spanish.
  • Effective communication and excellent writing skills.
  • Keen attention to details and analytics skills are preferred.
  • WHAT WE OFFER YOU

    Welcome to #TheSantanderEffect. Here, with only a small action or a simple idea, you can do great things. We offer you the advantages and the means to contribute to the progress of more than 140 million people around the world.

    These are the key factors that multiply the actions of all our employees :

  • Meaningful Impact - Where the effect of your work makes a difference and helps people to prosper
  • Personal and Professional Growth - The chance to develop through world-class training, challenging work, and different roles
  • Respect - Be part of an organization that cares about its people, its wider community, and the environment
  • Co-worker quality - Work with inspiring professionals who are leaders in their field
  • Global stability - Work for a solid global organization that has successfully reinvented itself many times in its 160- year history.
  • WHAT WE ARE LOOKING FOR

    COMPETENCIES

    Reportar esta oferta
    checkmark

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    Inscribirse
    Mi Correo Electrónico
    Al hacer clic en la opción "Continuar", doy mi consentimiento para que neuvoo procese mis datos de conformidad con lo establecido en su Política de privacidad . Puedo darme de baja o retirar mi autorización en cualquier momento.
    Continuar
    Formulario de postulación