Cadalso de los Vidrios Security Job Listings

Red Teamer Senior - Global Cyber - SDS64842959533441120

Indeed

Red Teamer Senior - Global Cyber - SDS

Red Teamer Senior \- Global Cyber \- SDS Country: Spain **NOW IS THE TIME** Santander ( www.santander.com ) is evolving from being a **high-impact global brand** to a **technology-driven organization**, with people at the heart of this journey. Together, we are leading a **customer-centric transformation** that values **disruptive thinking**, the courage to challenge what is possible, and the ability to **innovate**. This is more than a strategic shift: **it is an opportunity to grow, learn, and make real impact**. Our mission is to help more **people and businesses thrive**. We embrace a strong risk culture and expect all our teams to adopt a proactive and responsible approach to risk management. **Santander Digital Services** is Santander’s technology and operations team. We believe strongly in aligning technology with business needs and recognize that our work not only delivers value to users, individuals, and communities but also fosters individual creativity. Our team of over 10,000 people across 8 countries (Spain, Portugal, Poland, the UK, the United States, Mexico, Chile, and Brazil) develops and implements financial solutions across a broad spectrum of technologies (including Blockchain, Big Data, and Angular, among others) on both local and cloud-based platforms. **THE IMPACT YOU WILL MAKE** The Global Offensive Security (Security Assurance) team is seeking **a Red Teamer for our offices in Boadilla (CGS).** Your primary objective will be adversary simulation—conducting realistic, targeted attacks to identify vulnerabilities and potential weaknesses in security controls, as well as evaluating detection and response capabilities. We are redefining how we work through innovation, cutting-edge technology, collaboration, and the freedom to explore new ideas. In this role, your key responsibilities will include: * Developing deep expertise in advanced offensive techniques (red/purple teaming). * Designing and executing detailed tests and methodologies for ethical hacking activities tailored to Santander’s specific systems and infrastructure. * Analyzing test results and providing feedback to service/infrastructure owners and stakeholders. * Maintaining offensive infrastructure and building tools required to conduct offensive operations. * Staying current on threat intelligence, adversary emulation, and vulnerability management. * Collaborating with multiple teams to track remediation plans for issues identified during exercises. * Supporting incident response by providing expertise and insights gained from team activities. * Maintaining detailed documentation of processes, methodologies, and findings related to offensive activities. **WHAT YOU WILL BRING TO THE TEAM** Our people are our greatest strength. Each individual contributes unique perspectives that make us stronger as a team and as an organization. We value who you are and empower what you bring. The following requirements represent the essential knowledge, skills, and competencies for this role. **Professional Experience** * **Minimum 5 years of experience in Red Teaming, Offensive Security, Advanced Penetration Testing, or equivalent roles (Mandatory).** * Demonstrable experience designing and executing Red Team and adversary simulation exercises in complex corporate environments (Mandatory). * Participation in Purple Team activities, collaborating with Blue Team / SOC teams to validate and improve detection capabilities (Mandatory). * Advanced hands-on experience using Cobalt Strike and similar C2 frameworks in real-world environments (Mandatory). * Experience developing or adapting payloads, loaders, and evasion techniques (maldev) against modern EDR/AV solutions (Mandatory). * Practical knowledge of regulated environments and risk management associated with offensive testing (Desirable). **Education** * University degree in Computer Engineering, Telecommunications, Cybersecurity, or related field (Desirable). * Demonstrable technical training in offensive security / red teaming, whether academic or self-taught (Mandatory). * Technical certifications in offensive security (CRTO, CRTE, OSCP or equivalents) (Mandatory). **Languages** * Advanced technical English: For documentation and communication with international teams (Mandatory). **Technical Skills** (Hard skills) * In-depth knowledge of operating systems: Windows, Linux, macOS (Mandatory). * Knowledge of various cloud technologies: AWS, Azure, GCP (Desirable). * Networking expertise: TCP/IP, subnetting, routing protocols, firewalls, VPNs (Mandatory). * Programming experience: Scripting (PowerShell, Python, Bash), programming languages (C, C\+\+, Java, Rust, Go), malware development (maldev) (Mandatory). * C2 tools (Cobalt Strike, Sliver, Havoc) and ethical hacking tools: Metasploit, Nmap, Burp Suite, Wireshark, etc. (Mandatory). * Knowledge of common vulnerabilities: OWASP Top 10, CVE (Mandatory). * Penetration testing experience: Web, infrastructure, mobile applications (Mandatory). * Risk assessment and execution of Red Teaming activities on AI-based systems—including generative AI models—with focus on abuse, control evasion, data exposure, and security policy compliance (Desirable). * Knowledge of hacking methodologies: OSINT, reconnaissance, exploitation, post\-exploitation (Mandatory). **It would be great if you also have…** * Reverse engineering and malware analysis skills (Desirable). * Hardware hacking knowledge (Desirable). * Incident response experience (Desirable). * Knowledge of automation tools: Terraform, Ansible, Puppet, Chef (Desirable). * Attendance at conferences, talks, and training on hacking and cybersecurity (Desirable). **Interpersonal Skills** (Soft skills) * Ability to work effectively in teams (Mandatory). * Clear communication of technical risks to diverse audiences (Mandatory). * Ability to document attacks with both technical and executive focus (Mandatory). * Capacity to manage complex technical discussions with multiple stakeholders (Mandatory). * Defensive improvement mindset (not “break for breaking’s sake”) (Mandatory). * Autonomy and technical leadership (Mandatory). * Self-directed learning and proactivity (Mandatory). * Professional ethics and responsibility in critical environments (Mandatory). **WE VALUE YOUR IMPACT** Your contribution matters—and we recognize it. At Santander, you can expect a fair and competitive compensation package that reflects your impact and the value you deliver. Take a moment to understand what we mean: * **Unlimited growth.** We empower our teams **with global opportunities and expansive career paths**, enabling them to go further. * Flexibility that works. Enjoy a **hybrid working model** —some days remote, others in the office with your team—plus flexible hours. * **Continuous learning.** Access hundreds of courses on our platforms, including exclusive access to our global learning space: **Santander Open Academy (** www.santanderopenacademy.com) * **Competitive rewards.** Receive a **highly competitive salary plus a performance-based bonus**, motivating you to keep growing with us. * **Financial benefits.** Access preferential banking conditions, special loan interest rates, life insurance, and much more. * **Your health is our priority.** Through **BeHealthy**, our global wellbeing program, **we promote holistic wellbeing**: physical, emotional, social, and financial. * **Family comes first.** We know family is everything. That’s why we offer childcare support and family programs designed for every life stage. * **Always by your side.** Access **Santander Contigo**, our employee and family assistance program offering legal advice, emotional support, and administrative services. * **Extra benefits.** Gym/WellHub access, on-site medical centers at several locations, meal subsidies, parking, shuttle services across various points in Madrid, plus exclusive discounts and offers for Santander employees. And this is just the beginning… we’ll tell you much more when you join! We’re here to **keep you motivated**, help you **achieve your goals**, and **celebrate your achievements** at every step of the way. **LOCAL COMPLIANCE** Santander is proud to be an equal opportunity employer regardless of age, gender, disability, marital status, race, religion, or sexual orientation. We are committed to delivering an inclusive and accessible recruitment process for everyone. **WHAT’S NEXT?** If everything you’ve just read resonates with you, apply now and join our team. **Ready to take the next step?**

Ctra.Majadahonda-Av.Adolfo Suárez, 28660 Boadilla del Monte, Madrid, Spain

Negotiable Salary

Network Security Specialist - SDS64841266649731121

Indeed

Network Security Specialist - SDS

Network Security Specialist \- SDS Country: Spain **NOW IS THE TIME** Santander ( www.santander.com ) is evolving from a **high-impact global brand** into a **technology-driven organization**, with people at the heart of this journey. Together, we are leading a **customer-centric transformation** that values **disruptive thinking**, the courage to challenge what’s possible, and the ability to **innovate**. This is more than a strategic shift: **it’s an opportunity to grow, learn, and make a real impact**. Our mission is to help more **people and businesses thrive**. We uphold a strong risk culture and expect all our teams to adopt a proactive and responsible approach to risk management. **Santander Digital Services** is Santander’s technology and operations team. We believe deeply in the importance of technology aligned with business needs—and that our work delivers value not only to users, individuals, and communities, but also fosters individual creativity. Our team of over 10,000 people across 8 countries (Spain, Portugal, Poland, the United Kingdom, the United States, Mexico, Chile, and Brazil) designs and implements financial solutions across a broad spectrum of technologies (including Blockchain, Big Data, and Angular, among others) on both on-premises and cloud platforms. **THE IMPACT YOU’LL MAKE** **Santander Digital Services** is seeking a **Network Security Specialist**, a key role within our technology ecosystem, to work in our **Madrid/Cantabria offices**. We are redefining how we work through innovation, cutting-edge technology, collaboration, and the freedom to explore new ideas. In this role, your main responsibilities will include: * Managing global projects and maintaining client follow-up. * Supporting audits (external and internal) and certifications (external). * Researching market solutions. * Developing operational models. * Functionally managing Network Security technologies. * In-depth technical knowledge of Firewalls, VPNs, and NAC. * Experience in compliance, security standards, and policies. * Knowledge of both on-premises and cloud networking. * Experience engaging with vendors, clients, and technical support teams. **WHAT YOU’LL BRING TO THE TEAM** Our people are our greatest strength. Each person contributes unique perspectives that make us stronger as a team and as an organization. We value who you are and empower what you bring. The following requirements represent the essential knowledge, skills, and competencies for this position. **Professional Experience** * 3 years of experience in a similar environment (Mandatory) * 5 years of experience in a similar environment (Desirable) **Education** * Degree in Telecommunications Engineering, Computer Science, or related field—or equivalent experience (Mandatory) **Languages** * English (Mandatory) **Technical Skills** (Hard skills) * In-depth technical knowledge of Firewalls (Mandatory) * Familiarity with Cybersecurity Standards and Regulations (Mandatory) * Experience with Firewall compliance systems such as Tufin or Algosec (Desirable) * Cybersecurity certifications (Desirable) * Additional knowledge of other network security technologies—e.g., WAF, IDS/IPS, AntiDDoS, VPN, NAC—is valued (Desirable) **Interpersonal Skills** (Soft skills) * Autonomy and leadership in project management (Mandatory) * Ability to operate effectively in an international environment (Desirable) * Participation in and defense during audits and GRC activities. **WE VALUE YOUR IMPACT** Your contribution matters—and we recognize it. At Santander, you can expect a fair and competitive compensation package reflecting your impact and the value you deliver. Take a moment to understand what we mean: * **Limitless Growth.** We empower our teams with **global opportunities and extensive career paths**, enabling them to go further. * Flexibility that works. Enjoy a **hybrid work model**—some days remote, others in the office with your team—plus flexible working hours. * **Continuous Learning.** Access hundreds of courses on our learning platforms, including exclusive access to our global training hub: **Santander Open Academy (** www.santanderopenacademy.com) * Competitive rewards. Receive a **highly competitive salary plus a performance-based bonus**, motivating you to keep growing with us. * **Financial Benefits.** Access preferential banking conditions, special interest rates on loans, life insurance, and much more. * **Your Health Is Our Priority.** Through **BeHealthy**, our global wellbeing program, we promote **holistic wellbeing**: physical, emotional, social, and financial. * **Family Comes First.** We know family means everything. That’s why we offer childcare support and family programs tailored to every life stage. * **Always by Your Side.** Access **Santander Contigo**, our employee and family assistance program offering legal advice, emotional support, and administrative services. * **Extra Benefits.** Gym/WellHub membership, on-site medical centers at several of our facilities, meal subsidies, parking, shuttle service across various locations in Madrid, plus exclusive discounts and offers for Santander employees. And this is just the beginning… we’ll tell you much more when you join! We’re here to **keep you motivated**, help you **achieve your goals**, and **celebrate your achievements** at every step of the way. **LOCAL COMPLIANCE** Santander takes pride in being an equal-opportunity organization regardless of age, gender, disability, marital status, race, religion, or sexual orientation. We are committed to providing an inclusive and accessible recruitment process for everyone. **WHAT’S NEXT?** If everything you’ve just read resonates with you, apply now and join our team. **Ready to take the next step?**

Ctra.Majadahonda-Av.Adolfo Suárez, 28660 Boadilla del Monte, Madrid, Spain

Negotiable Salary

Cybersecurity Full Stack Developer - SDS64732464342403122

Indeed

Cybersecurity Full Stack Developer - SDS

Cybersecurity Full Stack Developer \- SDS Country: Spain **NOW IS THE TIME** Santander ( www.santander.com ) is evolving from being a **high-impact global brand** to a **technology-driven organization**, and people are at the heart of this journey. Together, we are leading a **customer-centric transformation** that values **disruptive thinking**, the courage to challenge what’s possible, and the ability to **innovate**. This is more than a strategic shift: **it’s an opportunity to grow, learn, and make a real impact**. Our mission is to help more **people and businesses thrive**. We embrace a strong risk culture and expect all our teams to adopt a proactive and responsible approach to risk management. **Santander Digital Services** is Santander’s technology and operations team. We believe deeply in the importance of aligning technology with business needs—and that our work delivers value not only to users, individuals, and communities, but also fosters individual creativity. Our team of over 10,000 people across 8 countries (Spain, Portugal, Poland, the UK, the US, Mexico, Chile, and Brazil) develops and implements financial solutions across a broad spectrum of technologies (including Blockchain, Big Data, and Angular, among others), on both on-premises and cloud platforms. **THE IMPACT YOU’LL MAKE** Santander Digital Services’ Cybersecurity Operations unit is **seeking a Cybersecurity Full Stack Developer based in Boadilla del Monte**. We are redefining how we work through innovation, cutting-edge technology, collaboration, and the freedom to explore new ideas. In this role, your key responsibilities will include: * Design and implement RESTful APIs in Golang for cybersecurity monitoring, detection, response, and process automation within a monolithic architecture. * **Develop and maintain backend applications using Golang**, ensuring efficiency, scalability, and security in the cybersecurity solutions delivered. * **Build and implement deception solutions using Golang**, replicating real environments to detect malicious activity and intrusion attempts. * **Develop and maintain frontend components** (React, Angular, or other technologies) that interact effectively with the Golang-based backend services. * **Participate in continuous integration and deployment (CI/CD) of Golang applications**, ensuring software robustness and quality via automated pipelines and security analysis (Fortify, SAST, DAST, etc.). * **Document developed solutions and technical processes**, following internal standards and best practices. * **Collaborate with multidisciplinary teams** (architecture, cybersecurity, operations) to design, implement, and optimize technological solutions supporting cybersecurity operations. * **Carry out all necessary management tasks related to the implemented solution**, including administration, monitoring, and updating of services and applications to ensure proper functioning and alignment with departmental requirements. * **Research and apply the latest developments in the Golang ecosystem** and associated technologies to keep solutions at the forefront of security and efficiency. **WHAT YOU’LL BRING TO THE TEAM** Our people are our greatest strength. Each individual contributes unique perspectives that make us stronger as a team and as an organization. We value who you are and empower what you bring. The following requirements represent the essential knowledge, skills, and competencies for this role. **Professional Experience** * **Minimum 3 years of professional experience developing backend and/or full-stack applications using Golang (Mandatory)** * Experience in cybersecurity projects, honeypot management, API development, and/or solutions in Linux or Windows environments. (Desirable) **Education** * Vocational training (intermediate or advanced level), university degree, or equivalent qualification in Computer Engineering, Telecommunications, Mathematics, Physics, or related fields. (Mandatory) * Additional training in cybersecurity, backend development, or professional certification in Golang technologies. (Desirable) * Recognized cybersecurity certifications (e.g., CompTIA Security\+, OSCP, CEH, CISM, etc.). (Desirable) **Languages** * English: intermediate or advanced technical level. (Mandatory) **Technical Skills** (Hard skills) * Proficiency in Golang for backend and monolithic service development. (Mandatory) * Solid experience developing frontend interfaces with React. (Mandatory) * Basic knowledge of RESTful API integration and secure development best practices. (Desirable) * **Programming in Python and shell scripting (Bash, PowerShell)**: Ability to automate operational tasks and processes on Linux or Windows systems. (Desirable) * **Designing and managing microservice-based architectures and APIs**: Competence in creating and consuming RESTful APIs, enabling system-to-system communication, and optimizing solution modularity. (Desirable) * **Relational SQL databases (PostgreSQL, MySQL)**: Knowledge of database design, management, querying, and integration. (Desirable) * **Familiarity with security analysis tools and automated testing throughout the software lifecycle** (e.g., Fortify, SAST, DAST, etc.). (Desirable) * **Experience and knowledge of public cloud services**: AWS and Azure. Ability to deploy, manage, and optimize cloud applications. (Desirable) * Familiarity with AI-powered tools such as GitHub Copilot and ChatGPT. (Desirable) * Experience working in agile environments using Scrum/Kanban methodologies and tools such as Jira and Confluence. (Desirable) **Interpersonal Skills** (Soft skills) * Ability to work in multidisciplinary teams and collaborate with technical and security areas. * Analytical thinking, initiative in problem solving, and clear communication of proposals and results. * Adaptability and continuous learning regarding new technologies and methodologies. * Proactivity and autonomy in task management and technical decision-making. **WE VALUE YOUR IMPACT** Your contribution matters—and we recognize it. At Santander, you can expect a fair and competitive compensation package reflecting your impact and the value you deliver. Take a moment to understand what we mean: * **Unlimited growth.** We empower our teams **with global opportunities and extensive career paths**, enabling them to go further. * Flexibility that works. Enjoy a **hybrid work model**—some days remote and others in the office with your team—plus flexible hours. * **Continuous learning.** Access hundreds of courses on our learning platforms, including exclusive access to our global learning space: **Santander Open Academy (** www.santanderopenacademy.com) * **Competitive rewards.** Receive a **highly competitive salary plus a bonus** for your achievements, motivating you to continue growing with us. * **Financial benefits.** Access preferential banking conditions, special interest rates on loans, life insurance, and much more. * **Your health is our priority.** Through **BeHealthy**, our global wellbeing program, we **promote holistic wellbeing**: physical, emotional, social, and financial. * **Family comes first.** We know your family is everything. That’s why we offer childcare support and family programs tailored to every life stage. * **Always by your side.** Access **Santander Contigo**, our employee and family assistance program offering legal advice, emotional support, and administrative services. * **Extra benefits.** Gym/WellHub access, on-site medical centers at several locations, meal subsidies, parking, shuttle services across various points in Madrid, plus exclusive discounts and offers for Santander employees. And this is just the beginning… we’ll tell you much more when you join! We’re here to **keep you motivated**, help you **achieve your goals**, and **celebrate your achievements** at every step of the way. **LOCAL COMPLIANCE** Santander takes pride in being an equal-opportunity organization regardless of age, gender, disability, marital status, race, religion, or sexual orientation. We are committed to providing an inclusive and accessible recruitment process for everyone. **WHAT’S NEXT?** If everything you’ve just read resonates with you, apply now and join our team. **Ready to take the next step?**

Ctra.Majadahonda-Av.Adolfo Suárez, 28660 Boadilla del Monte, Madrid, Spain

Negotiable Salary

AI and Automation Expert - SDS64550669249153123

Indeed

AI and Automation Expert - SDS

AI and Automation Expert \- SDS Country: Spain **IT'S TIME** Santander ( www.santander.com ) is evolving from being a **globally impactful brand** to a **technology-driven organization**, with people at the heart of this journey. Together, we are leading a **customer-centric transformation** that values **disruptive thinking**, the courage to challenge what's possible, and the ability to **innovate**. This is more than a strategic shift: **it's an opportunity to grow, learn, and make a real impact**. Our mission is to help more **individuals and businesses thrive**. We embrace a strong risk culture and expect all our teams to take a proactive and responsible approach to risk management. **Santander Digital Services** is Santander’s technology and operations team. We believe in the importance of technology aligned with business needs and that our work adds value not only to users, individuals, and communities but also fosters individual creativity. Our team of over 10,000 people across 8 countries (Spain, Portugal, Poland, the UK, the United States, Mexico, Chile, and Brazil) develops and implements financial solutions across a broad range of technologies (including Blockchain, Big Data, and Angular, among others) on various local and cloud platforms. **THE IMPACT YOU WILL MAKE** The **Cyber Operations** department within Santander Group’s Global Cybersecurity area is seeking an **AI and Automation Expert** based in **Madrid – CGS (Boadilla Del Monte)** We are redefining how we work through innovation, cutting-edge technology, collaboration, and the freedom to explore new ideas. In this role, your main responsibilities will include: * Implementing automation solutions using Group tools supported by Machine Learning and Artificial Intelligence techniques. * Contributing to the Cybersecurity Operations Automation strategy. * Delivering and implementing projects, managing demand using Agile methodologies. * Designing, implementing, and maintaining CI/CD pipelines within Santander Group environments (Gluon, ServiceNow). * Developing solutions using different frameworks and programming languages. Primarily Python and orchestration tools (such as Apache Airflow, Cortex, etc.). * Working in Cloud environments (AWS, Azure or GCP) with native services or third\-party appliances. * Daily and fluent communication with various national and international teams. * Automating infrastructure deployment, monitoring, and management. * Ensuring the use of best security practices in software development. **WHAT YOU WILL BRING TO THE TEAM** Our people are our greatest strength. Each individual contributes unique perspectives that make us stronger as a team and as an organization. We value who you are and amplify what you bring. The following requirements represent the essential knowledge, skills, and competencies for this role. **Professional Experience** * **At least 3 years of experience with Machine Learning techniques.** * Development of applications involving Artificial Intelligence. * Basic knowledge of Cybersecurity. * Ability to design and implement modern software architectures. * Experience working in Agile environments. * Proficiency in written and spoken English and Spanish. * Experience in SOC \+ SOAR cybersecurity environments will be highly valued. **Education** * University degree (Computer Science, Software Engineering, Telecommunications or similar). **Languages** * English. * Spanish. **Technical Skills** (Hard skills) * General knowledge of Linux OS and Networking. * At least 3 years of experience with Python. Experience with Spark will be highly valued. * At least 1 year of experience with the Langchain ecosystem. Experience creating LLM-based agents (OpenAI, Anthropic or Gemini). * Experience with AWS services (EMR, Kinesis, Lambda, Step Functions, S7S, etc.). * Basic knowledge of containers (Docker, Kubernetes). **Interpersonal Skills** (Soft skills) * Leadership capability and communication skills with other departments. * Ability to convey complex technical concepts to development teams and deliver presentations to CISOs and Heads of Cybersecurity. **WE VALUE YOUR IMPACT** Your contribution matters, and we recognize it. At Santander, you can expect a fair and competitive compensation package reflecting your impact and the value you deliver. Take a moment to understand what we mean: * **Unlimited growth.** We empower our teams **with global opportunities and extensive career paths** so they can go further. * Flexibility that works. Enjoy a **hybrid work model** —some days remote and others in the office with your team—along with flexible hours. * **Continuous learning.** Access hundreds of courses on our platforms, including exclusive access to our global training space: **Santander Open Academy (** www.santanderopenacademy.com) * Competitive rewards **.** Receive a **highly competitive salary plus a bonus** for your achievements, motivating you to keep growing with us. * **Financial benefits.** Access preferential banking conditions, special interest rates on loans, life insurance, and much more. * **Your health is our priority.** Through **BeHealthy**, our global wellbeing program, **we promote holistic wellbeing**: physical, emotional, social, and financial. * **Family comes first.** We know your family means everything. That’s why we offer childcare support and family programs designed for every life stage. * **Always by your side.** Access **Santander Contigo**, our program for employees and their families offering legal advice, emotional support, and personal assistance services. * **Extra benefits.** Gym/WellHub, medical center at several of our locations, meal subsidies, parking, shuttle service from various points in Madrid, as well as discounts and exclusive offers for Santander employees. And this is just the beginning… we’ll tell you much more when you join! We are here to **keep you motivated**, help you **achieve your goals**, and **celebrate your achievements** every step of the way. **LOCAL COMPLIANCE** Santander takes pride in being an organization that provides equal opportunities regardless of age, gender, disability, marital status, race, religion, or sexual orientation. We are committed to delivering an inclusive and accessible recruitment process for all individuals. **WHAT NOW?** If everything you've just read resonates with you, apply and join our team. **Ready to take the next step?**

Ctra.Majadahonda-Av.Adolfo Suárez, 28660 Boadilla del Monte, Madrid, Spain

Negotiable Salary

Cybersecurity Compliance & Security posture - SDS63839168317313124

Indeed

Cybersecurity Compliance & Security posture - SDS

Cybersecurity Compliance \& Security posture \- SDS Country: Spain **Hello! You've arrived at the place where technology is developed that improves the lives of 160 million customers around the world.** This job opportunity is not only a chance to join a great company, but also to collaborate on projects that have a real impact on society. We are looking for a **(cybersecurity engineer)** for our offices in (**Boadilla del Monte)** with at least 4 years of experience in **(Cybersecurity).** **First, let us introduce ourselves** At **Santander Digital Services (SDS),** Santander's technology and operations arm, we believe it is essential that technology aligns with business needs and that our work adds value to users, individuals, and communities, while encouraging creativity. Our team consists of more than 7,000 people present in 8 countries (Spain, Portugal, Poland, United Kingdom, United States, Mexico, Chile, and Brazil), developing and/or implementing financial solutions across a wide range of technologies (Blockchain, Big Data, Angular, among others) on all types of platforms, on-premise and Cloud. We are currently undergoing one of the biggest transformations in our history, and technology is central to our strategy. By joining our team, you will become part of one of the most important technological projects in the financial sector worldwide. One of our core principles is continuous innovation, working with Agile and DevSecOps methodologies and adopting the most advanced technologies available to work with the best tech stack. We have been awarded the “Top Employer” distinction in Spain, Europe, and globally for the sixth consecutive year and are part of the 25 best companies in the world to work for. We take pride in being an organization that offers equal opportunities and are building a dynamic and proactive team. We just want you to bring positive energy, commitment to developing cutting-edge technology, and alignment with our values—we don't care where you come from or where you're going. **What your day-to-day will look like** **We are seeking a** **cybersecurity engineer** **for** **Risk Control \& Assurance – Security Posture** **, a key team within our technological ecosystem.** Our work involves leading and implementing the group's vulnerability management and hardening strategy. ‍ These will be your main responsibilities: * Drive the development of public cloud and on-premise environment capabilities within the Global – Risk Control \& Assurance team across multiple work areas: * Develop automations, scripts, and utilities for the area to support Compliance, Hardening, and SSDLC processes. * Work on developing a platform for reporting non-compliance issues related to hardening and SSDLC, as well as creating a framework to help entities prioritize and resolve them. * Support Compliance and Hardening processes by supervising and implementing market-standard detective control frameworks such as CIS, CSA, NIST, etc., using centralized Compliance tools for both Public Cloud and on-premise environments. * Develop and implement preventive/detective controls (validations using CSPM and Compliance tools, validations in IaC, Config rules, Azure Policies, Google Policies) following risk-based approaches. * Collaborate with CTO Architecture teams and other Cybersecurity units to coordinate compliance and SSDLC initiatives both on-premise and in public cloud environments. * Participate in PoCs and evaluation of new compliance and monitoring technologies for public cloud. * Interest in developing technical and management skills, with a desire to grow within our team. * Assist in implementing Cloud governance mechanisms for entities through: * Designing security metrics and reports related to the previously mentioned processes. **What we expect from you** You’ll likely fit into the team if you enjoy technology, want to understand the risks the Bank faces, constantly learn about new technologies, and care about improving both your technical skills and soft skills. If you have the spirit, here are the essential qualifications we’ll look for in your CV: * 2\-3 years of experience in IT/Cybersecurity, preferably in public cloud. * Degree or vocational training cycle related to information technologies and cybersecurity. * Specific security certifications and training (CISA, CSX, CEH, CISSP, OSCP) will be valued, as well as certifications in the three Cloud platforms used by the group (Security fundamentals, Security Architecture in Google Cloud Platform, Amazon Web Services, Azure). * Certifications, training, or knowledge of development tools and languages (Python, Powershell, Bash, PowerBI, Terraform, etc). **It would be great if you also…** * Have a high level of English (to analyze technical documentation) and medium-high level to participate in meetings with partners in other countries. * Capacity for self-learning * SecDevOps mindset, focusing on implementing security controls using an application development approach. **What is the Be Tech experience like?** * Hybrid work model (work remotely some days and meet with your team in the office on others). * Flexible working hours for arrival and departure. * Possibility to travel (collaboration with countries) and work with teams from those countries. * International opportunities to develop across different units and countries. * Continuous training in technical and innovative topics to stay up-to-date and perform your job effectively. * Career development plan so you can grow professionally and see your effort and work rewarded. * Highly competitive salary and bonus. * Financial benefits (special loan interest rates, preferential banking conditions, pension plans, life insurance, etc.) * Social benefits. **What next?** If what you’ve read sounds good, you’ll love even more what you’ll find inside. Will you join the team? *If you'd like to know more about us, follow us on* *https://es.linkedin.com/company/banco\-santander* *Visit our website* https://www.betechwithsantander.com/en/home

Ctra.Majadahonda-Av.Adolfo Suárez, 28660 Boadilla del Monte, Madrid, Spain

Negotiable Salary

Governance, Risk and Compliance63838031704067125

Indeed

Governance, Risk and Compliance

**PagoNxt** is looking for a Governance, Risk and Compliance professional based in our Boadilla del Monte (Madrid) office. PagoNxt is a leading global provider of payment solutions for merchants, international enterprises, and SMEs. Part of the Santander Group, with over 160 years of banking experience and 155 million customers worldwide, PagoNxt is an autonomous company—the Group's FinTech—delivering fast solutions to the payments market. If you want to join a global community of world-class payment experts, this is your place! This is a unique opportunity to work for a company that combines the best of both worlds: innovative FinTech technology with the reach and expertise of a leading global financial institution. **Responsibilities:** Ensure cyber risk monitoring through the design and supervision of cyber controls and indicators, as well as lead Holistic, policy gap and requirements, RCSA processes, and follow-up on internal and external audits (SOX) * Monitor the Holistic process, ensuring the maturity of cyber controls on a quarterly basis. * Monitor the annual RCSA process. * Act as liaison with Internal Audit for managing cyber audits and tracking associated recommendations and action plans. * Act as liaison with external auditor (SOX) for managing deficiencies and tracking associated action plans. * Perform gap analysis of cyber policies and ensure their implementation. * Analyze and respond to security requirements from customers and regulators. Promote cybersecurity and fraud awareness and training. **Requirements:** More than 5 years of experience in cybersecurity roles. * Knowledge of processes related to cybersecurity governance and compliance. * Familiarity with advanced cybersecurity tools. * Knowledge of Cloud environments (AWS, Azure). * Advanced Spanish and English, at technical conversation level. * Ability to work with multidisciplinary teams.

Ctra.Majadahonda-Av.Adolfo Suárez, 28660 Boadilla del Monte, Madrid, Spain

Negotiable Salary

Operational Resilience – NFR Analyst63838031539715126

Indeed

Operational Resilience – NFR Analyst

GETNET is looking for an Operational Resilience – NFR Analyst for our offices in Boadilla del Monte. **WHY SHOULD YOU CONSIDER THIS OPPORTUNITY?** **GETNET** is the entity dedicated to payment processing and issuance. The global company that will help you innovate in your business payments with advanced technology and the experience of Santander. At Santander (www.santander.com), we are key players in the transformation of the financial sector. Do you want to join our team? Santander takes pride in being an organization that provides equal opportunities, regardless of race, sex, religion, age, sexual orientation, marital status, disability, nationality, or gender identity. **WHAT WILL YOU DO IN YOUR JOB?** As an Operational Resilience Analyst, your objective will be to support the implementation of the 2LoD functions from a Non-Financial Risk Management perspective, with a special focus on ICT and Cybersecurity within the R\&C Department, and in collaboration with other departments considered as first lines of defense (T\&O, etc.), as well as the CISO. We need someone like you to help us across various areas: * Management of non-financial risks, ICT, and cybersecurity. * 2LoD coordination of the implementation of the internal control model / RCSA. * Management of risks related to business continuity and resilience, including the drafting of BIAs and establishing recovery plans, as well as implementing resilience models. * Management of ICT and cybersecurity risks associated with outsourcing functions and third-party providers (3rd Party Risk). * Management of technological risks linked to operational risk. Implementation of operational risk management models and dashboards. * GAP analysis of various audits to be implemented (DORA, ISO 27001, ISO 22301, etc.). * Implementation of ICT incident and security management measures within the PSD scope. * Assessment of regulatory maturity and design of action plans related to this regulation. Support and guidance in compliance and implementation. * Management and support during internal and external audits. **EXPERIENCE** * +5 years of experience in credit institutions, payment institutions, or major audit and consulting firms performing tasks related to non-financial risk management, technological risks (ICT), and outsourcing/ third-party provider risk (3rd Party Risk). * Experience in operational risk management, Business Continuity Management, Internal Control Models, and Resilience will also be valued. * Experience and knowledge of non-financial risk management tools, including internal control models. **EDUCATION** * Degree in Engineering, Computer Science, or Data. **SKILLS \& KNOWLEDGE** * Knowledge of acquiring business. * Experience in products related to acquiring/payments. * Proficiency in Office platform applications (Outlook, Word, Excel, PowerPoint). * Strong writing skills. * High level of English. Ability to communicate professionally in a foreign language. If you would like to learn more about us, follow us at https://www.getneteurope.com/es.

Ctra.Majadahonda-Av.Adolfo Suárez, 28660 Boadilla del Monte, Madrid, Spain

Negotiable Salary

Operational Resilience – NFR Manager63838031520771127

Indeed

Operational Resilience – NFR Manager

GETNET is looking for an Operational Resilience – NFR Manager for our offices in Boadilla del Monte. **WHY SHOULD YOU CONSIDER THIS OPPORTUNITY?** **GETNET** is the entity dedicated to acquiring and issuing payment instruments. The global company that will help you innovate in your business payments with advanced technology and the experience of Santander. At Santander (www.santander.com), we are key players in the transformation of the financial sector. Do you want to join our team? *Santander takes pride in being an organization that provides equal opportunities, regardless of race, sex, religion, age, sexual orientation, marital status, disability, nationality, or gender identity.* **WHAT WILL YOU DO IN YOUR JOB?** As an Operational Resilience Manager, your objective will be to design and implement the 2LoD functions from the perspective of non-financial risk management, with a special focus on ICT and Cybersecurity within the R\&C Department, and in collaboration with other departments considered as first lines of defense (T\&O, etc.), as well as the CISO. We need someone like you to support us across various areas: * Management of non-financial risks, ICT, and cybersecurity. * 2LoD coordination of the implementation of the internal control model / RCSA. * Management of risks related to business continuity and resilience, including drafting BIAs and establishing recovery plans, as well as implementing resilience models. * Management of ICT and cybersecurity risks related to outsourcing of functions and third-party providers (3rd Party Risk). * Management of technological risks linked to operational risk. Implementation of operational risk management models and dashboards. * GAP analysis of the various audits to be implemented (DORA, ISO 27001, ISO 22301, etc.). * Design and implementation of ICT incident and security management measures within the PSD domain. * Assessment of regulatory maturity and design of action plans related to this regulation. Support and guidance in compliance and implementation. * Preparation of materials and support for various governance committees. * Management and support during internal and external audits. **EXPERIENCE** * +10 years of experience in credit institutions, payment institutions, or major auditing and consulting firms performing tasks related to non-financial risk management, technological risks (ICT), and outsourcing of functions and third-party provider risk (3rd Party Risk). * Experience in operational risk management, Business Continuity Management, Internal Control Models, and resilience will also be valued. * Experience and knowledge of non-financial risk management tools, including internal control models. **EDUCATION** * Degree in Engineering, Computer Science, or Data. **SKILLS \& KNOWLEDGE** * Knowledge of the acquiring business. * Experience in products related to acquiring/payments. * Proficiency in office applications provided by the Office platform (Outlook, Word, Excel, PowerPoint). * Strong writing skills. * High level of English. Ability to communicate professionally in a foreign language. If you would like to know more about us, follow us at https://www.getneteurope.com/es.

Ctra.Majadahonda-Av.Adolfo Suárez, 28660 Boadilla del Monte, Madrid, Spain

Negotiable Salary