AI Security Engineer focusing on adversarial machine learning and enterprise security architecture. Leading red team engagements and translating technical risk into governance frameworks.
About the role
- Hardening Compliance Lead for cybersecurity at Santander. Ensuring compliance with industry standards and security benchmarks across IT and cloud assets.
Responsibilities
- Lead the technical execution and supervision of the Hardening Compliance function, covering both on-premises systems and cloud platforms.
- Oversee the planning, execution, and monitoring of hardening controls and CSPM controls for IT and cloud assets.
- Act as a hands-on contributor, directly performing compliance checks and remediation activities when needed.
- Coordinate with system administrators, delivery teams, auditors, and Risk & Compliance stakeholders to ensure alignment and accountability.
- Investigate anomalies (e.g., drops in compliance scores) to differentiate between false positives and true configuration issues before requesting remediation.
- Ensure controls and processes remain aligned with regulatory requirements, internal policies, and CIS Benchmarks (including cloud benchmarks).
- Lead efforts to optimize and streamline semi-manual processes, with the goal of improving efficiency and scalability.
- Serve as the primary technical point of contact for escalations within the Hardening Compliance and CSPM functions.
Requirements
- Bachelor's Degree or equivalent work experience: Computer Science, Engineering or Information Technology Management, or equivalent field.
- 5+ years of experience in systems administration, IT operations, or information security roles.
- Hands-on involvement in implementing or monitoring security configuration baselines (e.g., CIS Benchmarks).
- Practical experience performing compliance checks, identifying misconfigurations, and coordinating remediation activities.
- 1+ year of direct experience with Cloud Security Posture Management (CSPM) tools and cloud platform hardening.
- Experience interacting with cross-functional teams such as system administrators, software delivery, audit, or compliance.
- Demonstrated track record of ownership and accountability in operational security tasks.
- Proven experience in system administration or IT operations, with a strong understanding of system configuration and security.
- Practical experience with CIS Benchmarks, including hardening of IT assets and cloud platforms.
- Hands-on experience with Cloud Security Posture Management (CSPM) tools such as Sysdig, Wiz, or equivalent.
- Familiarity with compliance and vulnerability management platforms (e.g., Tenable, Qualys).
- Ability to analyze, troubleshoot, and resolve technical and compliance-related issues.
- Strong critical thinking and problem-solving skills, with the ability to handle ambiguity.
- Excellent collaboration and communication skills; able to work effectively across teams and with external stakeholders.
- Strong sense of ownership and accountability. Proactive and resourceful; able to anticipate issues and take initiative.
- Collaborative mindset, with the ability to build trust and drive results across teams.
- Detail-oriented and methodical, ensuring accuracy in compliance assessments.
- Comfortable operating in a fast-paced environment with shifting priorities.
Benefits
- Santander Benefits - 2025 Santander OnGoing/NH eGuide
- Health insurance
- 401(k) matching plans
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
AI Security Architect leading adversarial testing for enterprise AI products, integrating security findings into governance frameworks. Collaborating with engineering and compliance functions in a hybrid work environment.
Leading GRC & IT Security Consulting at Orange Cyberdefense in Zürich. Drive business growth and manage client relationships while leading a technical consulting team.
Senior Endpoint Security Engineer at Metric5 managing CrowdStrike Falcon deployment for Department of Treasury. Overseeing sensors rollout and resolving high - tier architectural issues in diverse IT environments.
Cybersecurity Sales Specialist responsible for driving sales across Fortune 250 accounts. Engage with C - suite leaders to enhance cybersecurity solutions and strategies across global enterprises.
Sales Specialist for Data Security driving growth in Public Sector and MidMarket teams at Proofpoint. Partnering with core sales reps and delivering value in Data Security portfolio.
Principal Product and Process Security Certification Expert at NXP driving security evaluation and certification for embedded products. Responsible for compliance with cybersecurity standards and certifications in emerging markets.
Physical Security Technology Manager responsible for administering and optimizing security technology platforms at Dominium. Engaging in multiple locations to enhance system performance and reliability.
Junior Consultant in Cyber Security at MKS4U IT - Beratungs GmbH providing security assessments and client consulting. Focused on developing and implementing security strategies within a hybrid working environment.
Teamlead for IT Perimeter Security Engineering at Axians Switzerland, leading a security team and managing client consultations. Engaging in technical engineering of security solutions while fostering team development.