Senior Information Security Compliance Analyst

Company: Santander Holdings USA Inc
Location: Mansfield
Posted on: November 18, 2022

Job Description:

Senior Information Security Compliance AnalystCountry: United States of AmericaWHAT YOU WILL BE DOINGSummary of Responsibilities:The Sr. Associate, Information Security designs implements and monitors Financial/Accounting/Operational processes. The incumbent is responsible for policy compliance and detecting threats and vulnerabilities in target systems, networks, and applications by conducting systems, network and web vulnerability assessment / security testing. The Consultant, Information Security identifies the security flaws and weaknesses in the systems that can be exploited to cause business risk, and provides crucial insights into the most pressing issues, suggesting how to prioritize security resources.Responsibilities:

Conducts Policy Compliance against infrastructure servers and ensuring server hardening guides and policies are aligned to CIS control framework
Working experience in Endpoint compliance, network device (firewall, router & switch) compliance, Enterprise threat & vulnerability management
Update process and procedure document to enable effective Compliance management program
Reduce risk posture of the environment by conducting regular security gap analysis
Conducts Penetration Testing (e.g., internal, external, wireless, physical, social, etc.); Post vulnerability assessment, work with various stakeholders to provide remediation to the identified risks and bring the same to closure
Conducts walk-through of the assessment report to the stakeholders and help define remediation plan
Follows a standard methodology to identify and/or detect threats to the IT infrastructure, applications and other information assets
Works with various teams to follow a pre-assessment plan/ and assessment schedule for every assessment, conduct threat assessment, and deliver an assessment report
Performs technical security assessments (e.g., Windows, UNIX, firewalls, routers, oracle, SQL server, etc.)
Conducts vulnerability assessment on the target IT Infrastructure, applications and related information assets
Directs managers and a senior technical team to deliver security change in a global organization
Provides direction and act as an escalation point on projects and issues to other team members
Interacts with partners as needed to explain work product, security techniques, methodology and results to ensure appropriate business value
Acts as senior resource for incident response related activities. Collaborate with technical teams for security incident remediation and communication
Acts as influencer of peers and management
Provides technical security consulting support to address complex business and technology projects and requests
Contributes to strategic planning to evaluate, deploy or update security technologies.
Analyzes and implements security solutions to meet customer requirements
Conducts risk assessments to evaluate the effectiveness of existing controls and determine the impact of proposed changes to business processes, applications and systems
Promotes cross-department collaboration and communication to ensure appropriate processes, procedures and tools are installed, monitored, and effectively operating and alerting
Allocates and prioritizes security resources efficiently within the organization managing both resources and budgets
Conducts security research on threats and remediation methods
Develops and maintains a set of operational and forward-looking security metrics
Conducts proof of concepts, vendor comparisons and recommend solutions in line with business requirements
Oversees daily monitoring of security reports to identify issues and follow these issues to resolution
Oversees security projects and the security testing of new and existing applications
Prepares system security reports by collecting, analyzing, and summarizing data and trends; presents reporting for management review
Creates process improvement by identifying inefficiencies and solutions for process improvements
Guides and confirms that the design has been implemented as per the requirements
Updates job knowledge by tracking and understanding emerging security practices and standards; participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations
Acts as a subject matter expert (SME) while providing leadership, guidance, and mentorship to other Information Security associates
Other duties as assignedQualifications:
- Bachelor's Degree: Computer Science or equivalent field
- Recognized industry certification and/or continuing education programs are a major plus including CISSP, GEVA, AWS, CRISC, CEH, etc.
- or equivalent work experience
- 5-9 years in field or similar industry
- Experience in information security, governance, IT audit, or risk management
- SAS experienceSkill and Abilities:
  - Strong working knowledge with Qualys (preferably), or other tools such as Rapid 7/Imperva/Nessus/etc.
  - Knowledge of risk assessment tools, technologies, and methods
  - Experience planning, researching and developing security strategies, standards, and procedures
  - Exceptional organizational skills and attention to detail
  - Ability to work cooperatively in a team environment
  - Strong understanding of security, incident response and/or networking/PC concepts
  - Familiarity with CIS, NIST, STIGS standards & guidelines, ITIL framework and Change Management
  - Proven ability to understand and analyze complex issues, then apply experience and judgment to develop sound recommendations especially as related to malware, eDiscovery, current threats/attacks and/or vulnerability management
  - Ability to communicate concisely, effectively and directly to executive management
  - Proven relationship building skills working with mid to senior level management and cross-functional teams; understands risks; additional focus on leadership; strong interpersonal skills; delivers precise, accurate results to meet commitments; mentors other team members
  - Demonstrated presentation development; tailors' message as needed; comfortable presenting to all levels; strong writing skills; demonstrates creativity in articulating messages that support recommendations
  - Strong knowledge of MIS reporting structures
  - Understands Risk Management needs and designs new solutions based detailed analysis and validation
  - Advanced knowledge of Microsoft Office (Outlook, Word; Excel) and PowerPointDiversity & EEO Statements: At Santander, we value and respect differences in our workforce and strive to increase the diversity of our teams. We actively encourage everyone to apply.Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status or any other characteristic protected by law.Working Conditions: Frequent Minimal physical effort such as sitting, standing and walking. Occasional moving and lifting equipment and furniture is required to support onsite and offsite meeting setup and teardown. Physically capable of lifting up to fifty pounds, able to bend, kneel, climb ladders.Employer Rights: Employer Rights: This job description does not list all of the job duties of the job. You may be asked by your supervisors or managers to perform other duties. You may be evaluated in part based upon your performance of the tasks listed in this job description. The employer has the right to revise this job description at any time. This job description is not a contract for employment and either you or the employer may terminate at any time for any reason.
    
    Primary Location: -Dallas, Texas, United States of America
    Other Locations: -Texas-Dallas,Florida-Miami
    Organization: -Santander Consumer USA Inc.

Keywords: Santander Holdings USA Inc, Mansfield , Senior Information Security Compliance Analyst, Accounting, Auditing , Mansfield, Texas

Click here to apply!

Didn't find what you're looking for? Search again!

Let Mansfield recruiters find you. Post your resume for free!

Get Mansfield Accounting, Auditing jobs via email.

View more Mansfield Accounting, Auditing jobs

Other Accounting, Auditing Jobs

Tax Professional - CPA - Work From Home - 3+Yrs Paid Tax Experience Required
Description: OverviewAre you a credentialed CPA, EA, or practicing attorney And do you have a minimum 3 seasons of paid Tax Preparation experience with a minimum of 30 tax returns per tax year If youre one of tax (more...)
Company: Intuit
Location: Dallas
Posted on: 12/1/2022

Operational Risk Officer - Vice President - Hybrid Work Arrangement
Description: Citi Retail Services CRS is searching for an individual with proven project management and operational risk experience to manage and oversee issues and / or control breaks that occur within the CRS (more...)
Company: Citi
Location: Wilmer
Posted on: 12/1/2022

Remote Tax Professional - 3+Yrs Paid Tax Experience Required
Description: OverviewDo you have a minimum of 3 seasons of paid Tax Preparation experience, with a minimum of 30 tax returns per tax year If you're a tax professional, we need you to help our customers complete their (more...)
Company: Intuit
Location: Dallas
Posted on: 12/1/2022

Salary in Mansfield, Texas Area | More details for Mansfield, Texas Jobs |Salary

Model Governance Senior Associate
Description: Model Governance Senior Associate br br Country: United States of America br br WHAT YOU WILL BE DOING br br The Model Governance Senior Associate will manage the model governance execution (more...)
Company: Banco Santander Brazil
Location: Dallas
Posted on: 12/1/2022

Senior Systems Engineer-Remote
Description: About Genesis br Genesis is a global leader in institutional digital asset markets. We provide a single point of access for digital asset trading, derivatives, borrowing, lending, custody and prime (more...)
Company: Genesis
Location: Dallas
Posted on: 12/1/2022

Credentialed Tax Professional
Description: POSITION OVERVIEW: br br Credentialed Tax Expert br br If you are a highly motivated individual with an active unrestricted credential CPA/EA and posses excellent communication skills, we need (more...)
Company: MCI Military Recruitment
Location: Dallas
Posted on: 12/1/2022

Tax Experienced Associate - Investment Funds
Description: The Weaver Experience br br br br Weaver is a full-service national accounting, advisory and consulting firm with opportunities for professionals in many different fields. We seek to bring a human (more...)
Company: Weaver
Location: Dallas
Posted on: 12/1/2022

Product Management Manager - Deposits & Payments
Description: Purpose of Job This is an Individual Contributor position. You will be responsible for supporting the Deposits and Retail Payments team in building road map strategies for Open Banking. br br Formulates (more...)
Company: USAA
Location: Crandall
Posted on: 12/1/2022

Principal Financial Analyst
Description: Plano 6 31066 , United States of America, Plano, TexasPrincipal Financial Analyst Job Description Principal Financial Analyst At Capital One, we're building a leading information-based technology company. (more...)
Company: Capital One
Location: Coppell
Posted on: 12/1/2022

Contract Administrator
Description: Dikita Enterprises, Inc. , headquartered in the Dallas/Fort Worth metroplex, is an actively growing architectural, civil engineering, and construction management firm with over 40 years of experience. (more...)
Company: Dikita Enterprises, Inc.
Location: Dallas
Posted on: 12/1/2022

Loading more jobs...

Senior Information Security Compliance Analyst

Didn't find what you're looking for? Search again!

Other Accounting, Auditing Jobs

Log In or Create An Account