Job Directory InfoSec Compliance Senior Analyst

InfoSec Compliance Senior Analyst
Dorchester, MA

Companies like
are looking for tech talent like you.

On Hired, employers apply to you with up-front salaries.
Sign up to start matching for free.

About

Job Description

InfoSec Compliance Senior Analyst-1902323

Description

Overview

Santander Holdings USA, Inc. (SHUSA) is a wholly-owned subsidiary of Banco Santander, S.A. (SAN), one of the most respected banking groups in the world with more than 125 million customers in Europe, Latin America and the U.S. As the intermediate holding company for Santander's U.S. businesses, SHUSA includes six financial companies with more than 17,500 employees, 5.2 million customers and assets of over $135.1 billion. These include Santander Bank, N.A., one of the country's largest retail and commercial banks by deposits; Santander Consumer USA Holdings Inc., an auto finance and consumer lending company; Banco Santander International of Miami; Banco Santander Puerto Rico; Santander Securities LLC of Boston; and Santander Investment Securities Inc. of New York.

Position Summary

In support of the firm's Information Security programs, SHUSA is making significant investments in building out Information Security, Cybersecurity, and Privacy capabilities. This role will provide InfoSec Compliance and Project Delivery leadership, as well as collect and review evidence of compliance.

The position resides within the Cyber Security and Technology Risk organization and will have responsibility for leading projects and driving key business and technology-aligned deliverables, including business requirements, technical and user interface designs, testing, and overall planning.

He/she will work closely with product management, technology, client service, operations, and business partners to deliver programs/projects to enhance global Information Security capabilities. This position will work closely with teams based in the New York, New Jersey, Boston, Dallas, Puerto Rico and Spain.

InfoSec Associate / Senior Associate core responsibilities:

* Delivery and Coordination of InfoSec program delivery between SHUSA and entities ensuring alignment; meet milestones, highlight gaps, risks, issues, working each through to resolution


* Laser focus on InfoSec governance, risk and compliance, plus regulatory compliance per FFIEC, GLBA, NYDFS and SOX requirements


* Manage multiple work streams end-to-end, deliver on time, on budget and according to scope and quality parameters


* Coordinate evidence collection across US entities and performing firs line of defense reviews, supporting delivery projects / teams with requirements expertise


* Ensure responsible deliver assigned tasks in a timely manner


* Provide status and raise challenges / issues to Senior Management, Technology Management, and to Business and Technology Release Management as appropriate


* Ensure early engagement of cross-impacted teams: Architecture, Information Risk, and Infrastructure


* Manage the project life cycle: Initiation, Development (requirements, design, build, test), and Implementation, Project Closure


* Facilitate / participate in delivery process for major project deliverables including Project Plan, Business and Functional Requirements, Analysis & Design, QA, End User Testing, and Product Management deliverables



Additionally:

* Prepare and Present project updates to leadership


* Assume leadership role in shaping the Information security program and remediation effort


* Retain documentation of investigations, submitting appropriate paperwork to regulatory organizations


* Oversee any investigation of internal compliance issues


* Provide employee training on compliance policies. Serve as liaison between employees and organizational management for confidential compliance reporting


* Help ensure business operations comply with existing governmental regulations


* Monitor and communicate proposed / new laws and regulations to ensure future compliance



Qualifications

* BA / BS in Management, Finance, Operations Management, IT/ Computer Science, IT, Economics, or a related discipline. MBA or related graduate degree a plus


* 5+ years in Information Security and Compliance is a plus


* 15+ years' professional experience in a bank or other financial institution, consulting firm, and / or software company


* 10+ years project management experience leading complex projects, valued at $1M or greater


* Understanding of systems development methodologies


* Demonstrates strong relationship management skills


* Proven ability to quickly build trust and rapport with others in order to structure problems, build consensus, and negotiate agreement


* Power user of office automation and project management tools including MS PowerPoint, MS Project, and Visio


* Strong written and spoken communication skills



At Santander, we value and respect differences in our workforce and strive to increase the diversity of our teams. We actively encourage everyone to apply.

Job:Information Security

Primary Location:Massachusetts-Dorchester-2 Morrissey Boulevard - 06367 - Columbia Park

Organization:Technology (5900)

Schedule:Full-time

Job Posting:Apr 19, 2019, 12:52:15 PM

AN EQUAL OPPORTUNITY EMPLOYER M/F/Vet/Disabled/SO

Let your dream job find you.

Sign up to start matching with top companies. It’s fast and free.