Business Information Security Officer (BISO) - Santander Digital Services

Business Information Security Officer (BISO) - Santander Digital Services
Country: Spain

Hello! Welcome to the place responsible for developing the technology that improves the lives of 160 million customers around the world!

This job offer is an opportunity not only to join a great company but also to collaborate in projects that have a real impact on society.

We are looking for a Business Information Security Officer (BISO) based in our ABELIAS office (MADRID), with at least 6-8 years of experience in Cyber Risk Management/Information Security.

Your role
This area is responsible for Cybersecurity and as a Business Information Security Officer, you will be part of SDS, Santander Spain Cyber Security Team, and you would be responsible for supporting Spain about cybersecurity issues, ensure, and implementing security controls in Spain infrastructure, people and processes.

Your main tasks will be:

1. To work together with cybersecurity, business and technology, and improve the security posture and IT hygiene in the business domains.
2. To build and maintain strong relationships with CIOs, business leaders and project managers, acting as cyber subject matter experts and single point of contact for cybersecurity issues and initiatives in the domain.
3. To help the business to have a good understanding of the cybersecurity risks, threats and attacks, and help them to ensure cyber risks are identified, assessed, mitigated and monitored correctly.
4. To ensure products and applications are developed following the security standards and guidelines.
5. To reduce the attack surface of the business domain through the tracking, prioritization, and remediation of internal and external vulnerabilities.
6. To report to relevant stakeholders the status of the security posture and progress of the cyber initiatives of the domain.

What you'll bring
You're sure to fit in if you like technology and are constantly learning about new developments, as well as having an interest in better understanding the risks faced by the Bank. In addition to developing your technical skills, you should also be interested in improving your soft skills.
If you think you've got what it takes, these are the key skills we'll be looking for in your CV:

1. At least 6-8 years' experience related to Cyber Risk Management/Information Security (experience in financial services).
2. Degree in computer science, engineering or similar.
3. Strong working knowledge, understanding and experience in building, driving, and maturing effective Cyber Risk programs.
4. Global vision of cybersecurity.
5. Knowledge in IT operations and processes.
6. Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and nontechnical audiences.
7. Strong negotiating, conflict resolution, influencing and stakeholder management skills.
8. Capable of producing high quality output with a strong focus on attention to detail.
9. High level of English (B2).

The following would also be great...

1. Knowledge of Santander Cybersecurity systems and infrastructure.
2. Certified Information Security Manager ("CISM").

What now?
If you like what you've read so far, you'll like it even more once you're on board... So why not join us?