Information Protection Senior Analyst (Cybersecurity Team) - SCF

Information Protection Senior Analyst (Cybersecurity Team) - SCF

Country: Spain

IT STARTS HERE

Santander (www.santander.com) is evolving from a global, high-impact brand into a technology-driven organization, and our people are at the heart of this journey. Together, we are driving a customer-centric transformation that values bold thinking, innovation, and the courage to challenge what’s possible.

This is more than a strategic shift. It’s a chance for driven professionals to grow, learn, and make a real difference.

Our mission is to contribute to help more people and businesses prosper. We embrace a strong risk culture and all our professionals at all levels are expected to take a proactive and responsible approach toward risk management.

Santander Consumer Finance Global Services provides technological solutions and process services to the Santander Group's Consumer Finance business covering the end-to-end of technology, from architecture design, infrastructure management, development and integration of own and third-party maintenance applications and technological support and project management. In addition, we provide business consulting services, methodology and functional support.

THE DIFFERENCE YOU MAKE

Santander Consumer Global Services is looking for an Information Protection Senior Analyst based out Boadilla del Monte Office, Madrid.

You will be part of SCF’s Global CISO Team within the Information Protection area. Your main responsibilities will be related to coordination and supervising Data Loss Prevention and to provide support for the Identity & Access Management department. Your scope will be all the SCF Units under scope (14 entities in 16 countries).

• Facilitate application integration, workflow definition, audit requirements for IAM/PAM
Lead and coordinate the integration of applications within the Identity and Access Management (IAM) and Privileged Access Management (PAM) ecosystem, ensuring alignment with corporate security standards. Define and optimize access workflows (joiner/mover/leaver processes, recertifications, privileged access requests), while embedding audit and compliance requirements (e.g., traceability, segregation of duties, least privilege). Act as a bridge between business, IT, and security teams to ensure scalable and compliant implementations.

• Support internal and external auditors (SOX controls and deficiencies)
Act as a key point of contact during internal and external audits, particularly in relation to SOX controls linked to access management and data protection. Provide evidence, documentation, and control narratives, ensuring timely and accurate responses. Identify control gaps or deficiencies, support remediation plans, and follow up on their implementation to ensure compliance and audit readiness.

• Track and oversee DLP controls deployment and incident handling
Monitor and oversee the implementation and effectiveness of Data Loss Prevention (DLP) controls across endpoints, networks, and cloud environments. Analyze alerts related to potential data exfiltration, support triage and escalation processes, and provide risk-based decision support in the event of suspected data leaks. Collaborate with technical teams to continuously improve detection rules and reduce false positives.

• Support coordination of DLP services and forums
Assist in the coordination and governance of DLP-related services, ensuring alignment across different teams and regions. Participate in and help organize DLP forums or working groups, contributing to knowledge sharing, standardization of practices, and continuous improvement of data protection capabilities.

• Maintain communication with local and global stakeholders
Establish and maintain effective communication with local Information Protection focal points across different countries, as well as with Global Cybersecurity teams. Ensure alignment of policies, controls, and initiatives, while facilitating the exchange of best practices, risks, and ongoing activities in the data protection and IAM domains.

WHAT YOU’LL BRING

Our people are our greatest strength. Every individual contributes unique perspectives that make us stronger as a team and as an organization. We’re enabling teams to go beyond by valuing who they are and empowering what they bring.

The following requirements represent the knowledge, skills, and abilities essential for success in this role. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Professional Experience

• At least 5 years of experience

Education

• Computer Engineering / Computer Science or similar.

Languages

• High level of English, at least, B2 + recommendation C1 (Required)

• Spanish (Required)

Hard Skills

• Specific knowledge of Information and Access Management and Data Loss Prevention, including deployment of products and management of IAM and DLP programs.

• Any cyber/network security or IT audit/risk management Certification is a plus: PMP, CISSP, CEH, ISACA (CISM/CSX/CISA) or similar.

Soft Skills

• Capable of working in a highly demanding and agile environment.

• Team player

• Ability to work productively with diverse teams.

• Ability to adapt to changes as they come.

• High level administrative, management and negotiating skills, and the capacity to build effective relationships with a wide range of stakeholders in a complex partnership environment.

WE VALUE YOUR IMPACT

Your contribution matters, and it’s recognized. You can expect a fair, competitive reward package that reflects the impact you create and the value you deliver. But we know rewards go beyond numbers.

• We’re enable our teams to go beyond through global opportunities and broad career paths.

• Flexibility that works. Enjoy a hybrid working models—some days remote, some days onsite with your team—along with flexible hours.

• Learning for life. Access hundreds of courses on our platforms, including exclusive access to our global learning space: Santander Open Academy (www.santanderopenacademy.com)

• Competitive rewards. Receive a highly competitive salary with performance-based bonuses, motivating you to keep growing with us.

• Financial advantages. Benefit from preferential banking terms, special interest rates on loans, life insurance, and more.

• Your health is our priority. Through BeHealthy, our global wellness programme, we promote Holistic wellbeing.

• We know family is everything. That’s why we offer childcare support and family-friendly programmes tailored to each life stage.

• Always by your side. Get access to Santander Contigo, our program for employees and their families offering legal, emotional, and administrative advisory services.

• Extra benefits. Gym/WellHub membership, medical centers in some of our facilities, meal subsidy, parking, shuttle service from various points in Madrid, as well as exclusive discounts and offers for Santander employees. And that’s only the beginning—we’ll tell you more when you join!

We’re here to keep you motivated, help you reach your goals, and celebrate your progress, every step of the way.

LOCAL COMPLIANCE

Santander is proud of being an organization where there are equal opportunities regardless of age, gender, disability, civil status, race, religion or sexual orientation. We are committed to providing an inclusive and accessible application process for all candidates.

WHAT TO DO NEXT

If this sounds like a role you are interested in, then please apply.
 

READY TO TAKE THE NEXT STEP IN YOUR JOURNEY?