Associate, Information Security

Develops, manages and operates security services that assess, prioritize and mitigate information security and technology risk. Includes cyber security threat services, access management services and technology risk assessments. Designs network security perimeter architecture and relevant security controls. Reviews internal and external IT projects and applications for risk and adherence to security policies and industry best practices. Participates on internal security project teams to deploy security technologies and to make recommendations for hardware/software products for future release. Liaises with vendors for various security infrastructure-related products and services.

Essential Functions/Responsibility Statements:
Conducts Penetration Testing (e.g., internal, external, wireless, physical, social, etc.); Post vulnerability assessment, work with various stakeholders to provide remediation to the identified risks and bring the same to closure.
Conducts walk-through of the assessment report to the stakeholders and help define remediation plan.
Follows a standard methodology to identify and/or detect threats to the IT infrastructure, applications and other information assets.
Works with various teams to follow a pre-assessment plan/ and assessment schedule for every assessment, conduct threat assessment, and deliver an assessment report.

Qualifications: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education: Bachelor's Degree or equivalent work experience

Work Experience: 5-9 years ; Experience in information security, governance, IT audit, or risk management.

Skills and Abilities:
Knowledge of risk assessment tools, technologies, and methods
Experience planning, researching and developing security strategies, standards, and procedures
Exceptional organizational skills and attention to detail ability to work cooperatively in a team environment
Ability to work cooperatively in a team environment
Strong understanding of security, incident response and/or networking/PC concepts
Proven ability to understand and analyze complex issues, then apply experience and judgment to develop sound recommendations especially as related to malware, eDiscovery, current threats/attacks and/or vulnerability management
Ability to communicate concisely, effectively and directly to executive management

Diversity & EEO Statements: At Santander, we value and respect differences in our workforce and strive to increase the diversity of our teams. We actively encourage everyone to apply.

Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran …