Chief Information Security Officer, Madrid
Empresa
Santander
Provincia
Madrid
Ciudad
Madrid
Tipo de Contrato
Tiempo Completo
Descripción
Chief Information Security Officer
Chief Information Security Officer Technology Risk Cybersecurity Director
Country: Spain
Santander is looking for a Chief Information Security Officer (CISO) for SCIB, based in our Boadilla del Monte (Madrid, Spain) office.
WHY YOU SHOULD CONSIDER THIS OPPORTUNITY
At Santander, we push the boundaries and create innovative, customer-centric tech solutions for Santander. We collaborate to provide these world-class technical solutions by adopting Agile across our business as we digitally transform our platforms and services to create the bank of the future.
Cybersecurity is one of the Santander Groups main priorities and a crucial element to make Santander a cyber-resilient organization that can withstand, detect, and rapidly react to cyberattacks, while constantly evolving and improving our defences. The protection of systems, information and customers is a priority for the Group and a crucial component of Santanders purpose of helping people and companies to prosper and our goal of offering excellent digital services for our customers .
If you share our passion for technology and are up for the challenge, come join us!
Our mission is to contribute to help more people and businesses prosper. We embrace a strong risk culture and all our professionals at all levels are expected to take a proactive and responsible approach toward risk management.
Santander is proud of being an organization where there are equal opportunities regardless of age, gender, disability, civil status, race, religion or sexual orientation.
WHAT YOU WILL BE DOING
Santander Corporate Investment Bank supports corporate and institutional clients, delivering tailored services and value-added wholesale products suited to their complexity and sophistication.
The CISO of SCIB will be responsible for implementing and running the Santander Global Information Security program to ensure that SCIB along its perimeter of information assets and associated technology, applications, platforms, systems, infrastructure and processes are adequately protected in the digital ecosystem in which we operate. That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectives.
The CISO position requires a visionary leader with sound knowledge of business management, but also deep knowledge and/or previous experience within investment banking environments (as well as strong understanding of regulatory requirements inherent to this activity), and a working knowledge of cybersecurity technologies covering the corporate network as well as the broader digital ecosystem.
He/She should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the senior stakeholders.
The CISO must be knowledgeable about both internal and external business environments and ensure that information systems are maintained in a fully functional and secure mode and are compliant with legal, regulatory and contractual obligations.
The role reports hierarchically to the T O of SCIB with functional reporting line to the CISO Entity Engagement Global Head and is also a member of the Global CISO Leadership Team.
Tasks and Responsibilities
Lead the Organization
- Set and supervise correct implementation for SCIB cyber security strategy in line with Santander Groups Cyber Security Corporate Framework and Strategy, SCIB regulatory requirements and business needs
- Leads the information security function across SCIB company to ensure consistent and high-quality information security management in support of the business goals
- Determines the information security approach and operating model in consultation with stakeholders and aligned with the risk management approach and compliance monitoring of non-digital risk areas
- Manages the budget for the information security function, monitoring and reporting
- Functional management of the local CISOs in SCIB Branches.
Requirements
Education, Training and Previous Experience
- Demonstrated experience and success in senior leadership roles in risk management, information security, and IT or OT Security
- Degree in business administration or a technology-related field such in science or engineering.
Desired, but not required:
- Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials
- Experience successfully executing programs that meet the objectives of excellence in a dynamic business environment
Technical and Business Experience
- Knowledge and understanding of relevant legal and regulatory requirements regarding Cybersecurity
- Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework
- Sound knowledge of business management and a working knowledge of information security risk management and cybersecurity technologies
- Up-to-date knowledge of methodologies and trends in both business and IT
OTHER INFORMATION
Our team members come from very different types of companies, including banks, tech companies, trade companies, start-ups, and consulting firms. We believe in the power of diversity in backgrounds, nationality, gender, and more.
Would you like to grow with us? Join our team!
ciberseguridad, CISSP, CISM
Chief Information Security Officer Technology Risk Cybersecurity Director
Country: Spain
Santander is looking for a Chief Information Security Officer (CISO) for SCIB, based in our Boadilla del Monte (Madrid, Spain) office.
WHY YOU SHOULD CONSIDER THIS OPPORTUNITY
At Santander, we push the boundaries and create innovative, customer-centric tech solutions for Santander. We collaborate to provide these world-class technical solutions by adopting Agile across our business as we digitally transform our platforms and services to create the bank of the future.
Cybersecurity is one of the Santander Groups main priorities and a crucial element to make Santander a cyber-resilient organization that can withstand, detect, and rapidly react to cyberattacks, while constantly evolving and improving our defences. The protection of systems, information and customers is a priority for the Group and a crucial component of Santanders purpose of helping people and companies to prosper and our goal of offering excellent digital services for our customers .
If you share our passion for technology and are up for the challenge, come join us!
Our mission is to contribute to help more people and businesses prosper. We embrace a strong risk culture and all our professionals at all levels are expected to take a proactive and responsible approach toward risk management.
Santander is proud of being an organization where there are equal opportunities regardless of age, gender, disability, civil status, race, religion or sexual orientation.
WHAT YOU WILL BE DOING
Santander Corporate Investment Bank supports corporate and institutional clients, delivering tailored services and value-added wholesale products suited to their complexity and sophistication.
The CISO of SCIB will be responsible for implementing and running the Santander Global Information Security program to ensure that SCIB along its perimeter of information assets and associated technology, applications, platforms, systems, infrastructure and processes are adequately protected in the digital ecosystem in which we operate. That will involve identifying, evaluating and reporting on legal and regulatory, IT, and cybersecurity risk to information assets, while supporting and advancing business objectives.
The CISO position requires a visionary leader with sound knowledge of business management, but also deep knowledge and/or previous experience within investment banking environments (as well as strong understanding of regulatory requirements inherent to this activity), and a working knowledge of cybersecurity technologies covering the corporate network as well as the broader digital ecosystem.
He/She should understand and articulate the impact of cybersecurity on (digital) business and be able to communicate this to the senior stakeholders.
The CISO must be knowledgeable about both internal and external business environments and ensure that information systems are maintained in a fully functional and secure mode and are compliant with legal, regulatory and contractual obligations.
The role reports hierarchically to the T O of SCIB with functional reporting line to the CISO Entity Engagement Global Head and is also a member of the Global CISO Leadership Team.
Tasks and Responsibilities
Lead the Organization
- Set and supervise correct implementation for SCIB cyber security strategy in line with Santander Groups Cyber Security Corporate Framework and Strategy, SCIB regulatory requirements and business needs
- Leads the information security function across SCIB company to ensure consistent and high-quality information security management in support of the business goals
- Determines the information security approach and operating model in consultation with stakeholders and aligned with the risk management approach and compliance monitoring of non-digital risk areas
- Manages the budget for the information security function, monitoring and reporting
- Functional management of the local CISOs in SCIB Branches.
Requirements
Education, Training and Previous Experience
- Demonstrated experience and success in senior leadership roles in risk management, information security, and IT or OT Security
- Degree in business administration or a technology-related field such in science or engineering.
Desired, but not required:
- Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or other similar credentials
- Experience successfully executing programs that meet the objectives of excellence in a dynamic business environment
Technical and Business Experience
- Knowledge and understanding of relevant legal and regulatory requirements regarding Cybersecurity
- Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT as well as those from NIST, including 800-53 and Cybersecurity Framework
- Sound knowledge of business management and a working knowledge of information security risk management and cybersecurity technologies
- Up-to-date knowledge of methodologies and trends in both business and IT
OTHER INFORMATION
Our team members come from very different types of companies, including banks, tech companies, trade companies, start-ups, and consulting firms. We believe in the power of diversity in backgrounds, nationality, gender, and more.
Would you like to grow with us? Join our team!
ciberseguridad, CISSP, CISM