Senior Security Advisor enhancing security measures to align with corporate objectives at Desjardins. Leading development of strategic initiatives and overseeing best practices in security.
About the role
- Hardening Compliance Lead for cybersecurity at Santander. Ensuring compliance with industry standards and security benchmarks across IT and cloud assets.
Responsibilities
- Lead the technical execution and supervision of the Hardening Compliance function, covering both on-premises systems and cloud platforms.
- Oversee the planning, execution, and monitoring of hardening controls and CSPM controls for IT and cloud assets.
- Act as a hands-on contributor, directly performing compliance checks and remediation activities when needed.
- Coordinate with system administrators, delivery teams, auditors, and Risk & Compliance stakeholders to ensure alignment and accountability.
- Investigate anomalies (e.g., drops in compliance scores) to differentiate between false positives and true configuration issues before requesting remediation.
- Ensure controls and processes remain aligned with regulatory requirements, internal policies, and CIS Benchmarks (including cloud benchmarks).
- Lead efforts to optimize and streamline semi-manual processes, with the goal of improving efficiency and scalability.
- Serve as the primary technical point of contact for escalations within the Hardening Compliance and CSPM functions.
Requirements
- Bachelor's Degree or equivalent work experience: Computer Science, Engineering or Information Technology Management, or equivalent field.
- 5+ years of experience in systems administration, IT operations, or information security roles.
- Hands-on involvement in implementing or monitoring security configuration baselines (e.g., CIS Benchmarks).
- Practical experience performing compliance checks, identifying misconfigurations, and coordinating remediation activities.
- 1+ year of direct experience with Cloud Security Posture Management (CSPM) tools and cloud platform hardening.
- Experience interacting with cross-functional teams such as system administrators, software delivery, audit, or compliance.
- Demonstrated track record of ownership and accountability in operational security tasks.
- Proven experience in system administration or IT operations, with a strong understanding of system configuration and security.
- Practical experience with CIS Benchmarks, including hardening of IT assets and cloud platforms.
- Hands-on experience with Cloud Security Posture Management (CSPM) tools such as Sysdig, Wiz, or equivalent.
- Familiarity with compliance and vulnerability management platforms (e.g., Tenable, Qualys).
- Ability to analyze, troubleshoot, and resolve technical and compliance-related issues.
- Strong critical thinking and problem-solving skills, with the ability to handle ambiguity.
- Excellent collaboration and communication skills; able to work effectively across teams and with external stakeholders.
- Strong sense of ownership and accountability. Proactive and resourceful; able to anticipate issues and take initiative.
- Collaborative mindset, with the ability to build trust and drive results across teams.
- Detail-oriented and methodical, ensuring accuracy in compliance assessments.
- Comfortable operating in a fast-paced environment with shifting priorities.
Benefits
- Santander Benefits - 2025 Santander OnGoing/NH eGuide
- Health insurance
- 401(k) matching plans
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Controls Professional assessing internal control frameworks at Barclays, improving control effectiveness and managing risks to ensure compliance with regulations.
Senior Information Security Engineer at Wells Fargo investigating insider threats and strengthening cybersecurity measures. Conducting advanced investigations and collaborating with cyber teams to mitigate risks.
Staff Product Manager overseeing enterprise security product strategy for Tenable. Collaborating with various teams to deliver customer - focused solutions and product features.
Information Systems Security Officer managing operational security posture for information systems at GDIT. Collaborating closely with ISSM and ISO, handling security aspects, and ensuring compliance with security standards.
Program Security Representative providing multi - discipline security support for Special Access Programs. Ensuring compliance, developing policies, and conducting security assessments in a military context.
Senior Cyber Security Project Manager at Airbus Protect managing medium complexity projects in Cyber Security Consulting. Focusing on project leadership and team management in diverse client settings.
Security Architect responsible for designing cloud security architectures for leading brands. Ensuring compliance and guiding incident response strategies in AWS environments.
Senior Security Consultant for ISMS Management at Bundesdruckerei GmbH in Berlin. Responsible for security analysis, management, and advisory roles on cybersecurity issues.
IT - Systemadministrator managing Video Surveillance and Alarm Systems at Mühlbauer. Supporting technical solutions for multimedia and conference systems with project involvement and ticket handling.