It​/Cyber Risk Coe Analyst

IT / CYBER RISK COE ANALYST Country:
Spain
** IT STARTS HERE
** Santander () is evolving from
** a global, high-impact brand
** into a
** technology-driven organization**, and our people are at the heart of this journey.
** Together**, we are driving a
** customer-centric transformation
** that values bold
** thinking, innovation**, and the
** courage to challenge
** what’s possible.

This is more than a strategic shift.
** It’s a chance for*
* ** driven professionals*
* ** to grow, learn, and make a real difference**.Our mission is to contribute to help more
** people and businesses prosper**. We embrace a strong risk culture and all our professionals at all levels are expected to take a proactive and responsible approach toward risk management.
** Santander Digital Services
** is the team of technology and operations  are convinced of the importance of technology that is aligned with the requirements of the business and that out work not only brings value to users, people and communities but also fosters individual creativity. Our team of over 10,000 people in 8 countries (Spain, Portugal, Poland, UK, USA, Mexico, Chile and Brazil) develops and/or implements financial solutions across a broad spectrum of technologies (including Blockchain, Big Data and Angular among others) on all kinds of on-premise and cloud-based platforms.
** THE DIFFERENCE YOU MAKE
**** SANTANDER DIGITAL SERVICES
** is looking for an
** IT / CYBER RISK COE ANALYST
** based out of
** Boadilla**.You will be part of
** Digital Risk Global CoE**, delivering support services to entities. Independent risks and controls challenge and oversight.

To succeed in this role, you will be responsible for:
* Review and challenge risk and control assessments resulting from CISO / CIO self-assessment.
* Conduct targeted reviews on global platforms, risks or projects, assessing it/cyber risk impacts and required controls from design to go-live.
* Monitor and challenge IT, Cyber risk metrics (KRIs).
* Determine and report completeness, consistency and quality of data including their sources and thresholds.
* Prepare and analyse monthly information risk management report.
* Lend support to local entities to resolve waiver requests by providing an informed opinion.
* Lend support to local entities for operational resilience program (DORA) activities.
* Prepare clear, decision-ready governance reporting for committees and working groups; escalate issues with urgency and evidence.
** WHAT YOU’LL BRING
** Our people are our greatest strength. Every individual contributes unique perspectives that make us stronger as a team and as an organization. We’re
** enabling teams to go beyond
** by valuing who they are and empowering what they bring.

The following requirements represent the knowledge, skills, and abilities essential for success in this role. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
** Professional Experience
*** 2- 3 years of experience related to IT / Cyber Security Risk Management, Cyber GRC or IT / Security Audit. (Required)
** Education
* ** Bachelor’s in computer science, Engineering or related (Required)
* Professional certifications strongly valued: CISA, CISM, CRISC and /or CISSP (Required)
* Master’s a plus. (Preferred)
** Languages
* ** Fluent English is mandatory (C1) (Required)
** Hard Skills
*** Knowledge of ICT Risk frameworks such as NIST, CIS, FFIEC, FAIR, ISO2, ISO
31. (Required)
* Knowledge of Cybersecurity systems: IAM, network & firewall management, vulnerability/patch management, cloud security architecture, secure SDLC & containerization, encryption/tokenization, DLP, security logging & monitoring, incident detection & response, and offensive security understanding. (Required)
* Skills and strategic thinking to review risk profiles and prioritize actions. (Required)
* Capacity to leverage on existing information to determine independent controls assessments. (Required)
* Ability to support and suggest control enhancements. (Required)
** Soft Skills
*** Effective communication/ Accuracy and attention to detail /Critical thinking/ Interpersonal relationships/ Problem solving/ Takes…