Information Systems Security Officer managing security oversight of federal systems. Conducting assessments and addressing cybersecurity risks in government projects.
About the role
- Hardening Compliance Lead for cybersecurity at Santander. Ensuring compliance with industry standards and security benchmarks across IT and cloud assets.
Responsibilities
- Lead the technical execution and supervision of the Hardening Compliance function, covering both on-premises systems and cloud platforms.
- Oversee the planning, execution, and monitoring of hardening controls and CSPM controls for IT and cloud assets.
- Act as a hands-on contributor, directly performing compliance checks and remediation activities when needed.
- Coordinate with system administrators, delivery teams, auditors, and Risk & Compliance stakeholders to ensure alignment and accountability.
- Investigate anomalies (e.g., drops in compliance scores) to differentiate between false positives and true configuration issues before requesting remediation.
- Ensure controls and processes remain aligned with regulatory requirements, internal policies, and CIS Benchmarks (including cloud benchmarks).
- Lead efforts to optimize and streamline semi-manual processes, with the goal of improving efficiency and scalability.
- Serve as the primary technical point of contact for escalations within the Hardening Compliance and CSPM functions.
Requirements
- Bachelor's Degree or equivalent work experience: Computer Science, Engineering or Information Technology Management, or equivalent field.
- 5+ years of experience in systems administration, IT operations, or information security roles.
- Hands-on involvement in implementing or monitoring security configuration baselines (e.g., CIS Benchmarks).
- Practical experience performing compliance checks, identifying misconfigurations, and coordinating remediation activities.
- 1+ year of direct experience with Cloud Security Posture Management (CSPM) tools and cloud platform hardening.
- Experience interacting with cross-functional teams such as system administrators, software delivery, audit, or compliance.
- Demonstrated track record of ownership and accountability in operational security tasks.
- Proven experience in system administration or IT operations, with a strong understanding of system configuration and security.
- Practical experience with CIS Benchmarks, including hardening of IT assets and cloud platforms.
- Hands-on experience with Cloud Security Posture Management (CSPM) tools such as Sysdig, Wiz, or equivalent.
- Familiarity with compliance and vulnerability management platforms (e.g., Tenable, Qualys).
- Ability to analyze, troubleshoot, and resolve technical and compliance-related issues.
- Strong critical thinking and problem-solving skills, with the ability to handle ambiguity.
- Excellent collaboration and communication skills; able to work effectively across teams and with external stakeholders.
- Strong sense of ownership and accountability. Proactive and resourceful; able to anticipate issues and take initiative.
- Collaborative mindset, with the ability to build trust and drive results across teams.
- Detail-oriented and methodical, ensuring accuracy in compliance assessments.
- Comfortable operating in a fast-paced environment with shifting priorities.
Benefits
- Santander Benefits - 2025 Santander OnGoing/NH eGuide
- Health insurance
- 401(k) matching plans
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Head of Product Security leading the security strategy and engineering functions at Our Future Health. Managing a multidisciplinary security team to drive secure, trusted product development.
Information Systems Security Officer ensuring compliance with RMF requirements for Dept. of Commerce systems at CGS. Involving security oversight activities, assessments, and risk management.
Information Systems Security Officer managing security assessments and A&A activities for government systems. Seeking a candidate with strong security documentation expertise and DIACAP/RMF experience.
Information Systems Security Officer conducting security assessments and managing ATO processes for government systems in Miami, FL. Seeking candidates with expertise in cybersecurity and risk management frameworks.
Information Systems Security Officer ensuring compliance with security standards for U.S. Department of Commerce systems. Conducting oversight activities and managing cybersecurity risks overall.
Information Systems Security Officer conducting security assessments and oversight for the Dept. of Commerce. Collaborating to achieve system authorization and managing cybersecurity risks and compliance.
IT Security Officer working on an initiative from the European Commission for customs modernization in the EU. Responsibilities include developing security policies, incident response, and business continuity planning.
Senior Counsel advising on national security and platform abuse legal matters at OpenAI. Collaborating with various teams to support AI system deployments.
AI Security Engineer strengthening the security of AI/ML pipelines and compliance at fintech company. Collaborating with data scientists and engineers to implement security controls across infrastructure.