IT Security Regulatory & Compliance - Associate

IT Security Regulatory & Compliance - Associate

Country: United States of America

Your Journey Starts Here:

Santander is a global leader and innovator in the financial services industry. We believe that our employees are our greatest asset. Our focus is on fostering an enriching journey that empowers you to explore diverse career opportunities while nurturing your personal growth. We are committed to creating an environment where continuous learning and development are prioritized, enabling you to thrive both professionally and personally. Here, you will find ample opportunities to connect and collaborate with talented colleagues from around the world, sharing insights and driving innovation together. Join us at Santander, where you are supported by a culture of engagement and a commitment to your success.

An exciting journey awaits, if you are interested in exploring the possibilities We Want to Talk to You!

The Information Security Governance, Risk and Compliance (GRC) function is an integrated component of the Santander US Information Security Program.

As part of the Technology Information Security GRC Team this role will report to the Director of US IT Security Regulatory & Compliance. The Associate, US IT Security Regulatory & Compliance, will play a key role in the GRC team driving strategic initiatives alongside maintaining operational excellence of existing processes.

Specifically, this role be responsible for the following:

• Manage and monitor technology, audit and regulatory risk through governance, oversight and reporting.  
• Manage audit and regulatory calendar including all regulatory/audit interactions, findings, and regulatory reviews.  This includes interaction and coordination of team members across the organization.
• Drive annual Information Security compliance attestation processes across US entities.
• Support a data-driven program through the use of data and reporting.
• Manage key strategic initiatives relating to Third Party Risk Management and Vendor Management.
• Identify, Assess and manage Information security risks. Provide oversight of remediation activities and timelines.  

Qualifications: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education: Bachelor's Degree or equivalent work experience
Work Experience: 5+ years’ experience in Information Security, Governance, IT audit, or Risk management.

Required Skills:

• Demonstrated experience working with key Information Security frameworks including NIST.
• Pro-active approach to problem solving, with experience in identifying areas of improvement, determining, and implementing solution.
• Knowledge of domestic and international laws governing information security; ability to interpret and take action on the aspects of information security laws that impact the business.
• Knowledge of technologies and technology-based solutions dealing with information security issues; ability to apply these in protecting information security across the organization.
• Knowledge of tools, techniques, approaches and processes of cybersecurity risk management; ability to ensure organizational network operation and minimize negative effect by cybersecurity risks.
• Understanding of the importance of inter-team collaboration in breaking down silos and achieving business results; ability to lead employees from various functions to communicate, coordinate work across divisions, and collaborate in solving problems as one team.
• Understanding of the importance of "big picture" thinking and planning and ability to apply organizational acumen to identify and maintain focus on key success factors for the organization.
• Demonstrated understanding of technological trends and developments in the areas of information security, risk management, web architectures, and cloud computing.
• Ability to maintain and implement best practices within Information Security
• Ability to drive execution of goals through effective planning, prioritization, resource management and follow through.
• Ability to manage multiple, ongoing initiatives.
• IT Audit/Consulting experience a plus.

What Else You Need To Know:

The base pay range for this position is posted below and represents the annualized salary range. For hourly positions (non-exempt), the annual range is based on a 40-hour work week. The exact compensation may vary based on skills, experience, training, licensure and certifications and location.

Base Pay Range

Minimum:

$80,625.00 USD

Maximum:

$132,500.00 USD

Benefits:

Santander Benefits - 2025 Santander OnGoing/NH eGuide (foleon.com)

Risk Culture:

We embrace a strong risk culture and all of our professionals at all levels are expected to take a proactive and responsible approach toward risk management.

EEO Statement:

At Santander, we value and respect differences in our workforce. We actively encourage everyone to apply. Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status or any other characteristic protected by law.

Working Conditions:

Frequent minimal physical effort such as sitting, standing and walking is required for this role. Depending on location, occasional moving and lifting light equipment and/or furniture may be required.

Employer Rights:

This job description does not list all of the job duties of the job. You may be asked by your supervisors or managers to perform other duties. You may be evaluated in part based upon your performance of the tasks listed in this job description. The employer has the right to revise this job description at any time. This job description is not a contract for employment and either you or the employer may terminate your employment at any time for any reason.

What To Do Next:

If this sounds like a role you are interested in, then please apply.

We are committed to providing an inclusive and accessible application process for all candidates. If you require any assistance or accommodation due to a disability or any other reason, please contact us at TAOps@santander.us to discuss your needs.