Director, Information Security

Director, Information SecurityDallas, United States of America

WHAT YOU WILL BE DOING

The Information Security Officer (ISO) SC is a Director level role responsible for supporting the Chief Information Security Officer (CISO) in implementing the Information Security program, and ensuring that information assets and technologies are adequately protected by identifying, minimizing and mitigating IT/Information security risk.   The ISO supports the development and implementation of Technology Controls / Information Security strategies, policies, programs, tools and provides expert advice and guidance on technical solutions. They manage control and governance activities to identify, assess, and manage potential information security risks. They are a key contact point for items relating to information security across the organization.

Essential Functions/Responsibility Statements:

• Support the SC CISO to implement the information security program.

• Understand information security policies, standards, and procedures, ensuring these are imbedded into the organization.

• Maintain a comprehensive view of key processes and controls across the organization, to enable information security risk identification and management.

• Maintain a deep knowledge of the business and IT environment with respect to the delivery of projects, strategic initiatives and systems ,to enable information security risk identification and management.

• Identify acceptable levels of residual risk and assist with action plans, policy and procedural changes for risk mitigation. Provide oversight of action plans and remediation timelines.

• Collaborate with key stakeholders, including but not limited to, First Line of Defense Technology, BISOs, Fraud, Physical Security, Third-Party Risk Management, Business Continuity (BCM), Records Management, the Second Line of Defense (Information Risk Management, Operational Risk Management, Privacy, and Compliance), and the Third Line of Defense (Internal Audit) to ensure alignment with the Information Security Program.

• Provide strategic recommendations to key IT projects to help improve project results, quality of deliverables, risk optimization, security processes and compliance with regulations.

• Maintain a current understanding the information security threat landscape for the financial services industry and Santander.

Work Experience: 12-15 years ; Experience in information security, governance, IT audit, or risk management

Skills and Abilities:

• Solid understanding of US bank laws and regulations (e.g. GLBA, SOX, NYDFS)  and industry standards (e.g. NIST, FFIEC).

• Experience in identifying, assessing and managing Information Security risk.

• Demonstrated experience building a productive working relationship with multiple stakeholders.

• Experience working with Second Line and Third Line of Defense risk functions.

• Proven ability to build strong working/consulting relationship with IT and Business stakeholders to educate and advise on InfoSec risks and solutions

• Pro-active approach to problem solving, with experience in identifying areas of improvement, determining, and implementing solution.

• Proven leadership experience including examples of managing team members to achieve a common goal

• Ability to drive execution of goals through effective planning, prioritization, resource management and follow through.

• Extensive experience presenting information and risks to management and key stakeholders, excellent oral and written communication and presentation skills.

Qualifications: To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Education: Bachelor's Degree or equivalent work experience

Diversity & EEO Statements: At Santander, we value and respect differences in our workforce and strive to increase the diversity of our teams. We actively encourage everyone to apply.

Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status or any other characteristic protected by law.

Working Conditions: Frequent Minimal physical effort such as sitting, standing and walking. Occassional moving and lifting equipment and furniture is required to support onsite and offsite meeting setup and teardown. Physically capable of lifting up to fifty pounds, able to bend, kneel, climb ladders.

Employer Rights: Employer Rights:This job description does not list all of the job duties of the job. You may be asked by your supervisors or managers to perform other duties. You may be evaluated in part based upon your performance of the tasks listed in this job description. The employer has the right to revise this job description at any time. This job description is not a contract for employment and either you or the employer may terminate at any time for any reason.

Bachelor of Science (BS) English

Primary Location: Dallas, TX, Dallas

Other Locations: Texas-Dallas

Organization: Santander Consumer USA Inc.

AN EQUAL OPPORTUNITY EMPLOYER M/F/Vet/Disabled/SO