Cybersecurity Vendor Risk Analyst
Vendor Risk Assessment Center is looking for a CYBERSECURITY VENDOR RISK ANALYST based in our Madrid HQ office.
WHY YOU SHOULD CONSIDER THIS OPPORTUNITY
At Aquanima, we provide valuable services to our customers.
We are part of the Santander Group and aim to maximize efficiency through purchasing process management across 12 countries.
Our services include supplier management and contract management, fostering long-term relationships to improve operational efficiency.
Santander is committed to equal opportunities and promotes a proactive risk management culture.
WHAT YOU WILL BE DOING
Certificate critical services/vendors, establish and monitor remediation plans, and issue residual risk ratings.
Review and challenge inherent risk scoring of critical services.
Collaborate with CISO and Business Continuity teams on risk assessment results.
Support key account management for vendor risk services within Santander Group.
Provide periodic reports to local Cost / Risk areas and committees.
EXPERIENCE
Minimum 2-3 years of experience in Cybersecurity, IT Risk, or IT audit areas.
EDUCATION
Bachelor's degree or equivalent in Computer Science, Telecommunications Engineering, or related fields.
Industry certifications such as CISA, ISO/IEC 27001, CompTIA Security+, CISP, SSCP, or CSX Cybersecurity Fundamentals are preferred.
SKILLS AND KNOWLEDGE
Knowledge of IT security frameworks such as ISAE 3000 (SOC 2), NIST CSF, ISO 27001, ISO 22301, COBIT.
Understanding of IT Audit practices, IT Risk Management, Business Continuity, Vulnerability Management, and Security Testing methodologies (OWASP, OSSTMM).
Fluent communication skills in English (B2 level).
OTHER INFORMATION
Ability to manage multiple tasks and work effectively in a team.
Strong communication and writing skills.
Attention to detail and analytical skills.
#J-18808-Ljbffr