GESBAN is looking for a Vendor Risk – Data Privacy, based in our MADRID office.
WHY YOU SHOULD CONSIDER THIS OPPORTUNITY
At Santander (www.santander.com) we are key players in the transformation of the financial sector. Do you want to join us?
The General Intervention and Management Control Division is composed of different areas (Regulatory Capital; Management Control; Internal Control; General Intervention; Pensions; Projects and Systems; Accounting Regulation) but with complementary functions, some of which are: interpretation of accounting regulations, preparation of income statements and business management balance sheets, planning and coordination of the process of preparing objectives and budgets of the units/business units/business, Estimates and financial planning, among others.
Our mission is to contribute to help more people and businesses prosper. We embrace a strong risk culture and all our professionals at all levels are expected to take a proactive and responsible approach toward risk management.
Santander is proud of being an organization where there are equal opportunities regardless of age, gender, disability, civil status, race, religion or sexual orientation.
WHAT YOU WILL BE DOING
As a Vendor Risk – Data Privacy, you will be member of our European Vendor Risk Assessment Center team based in Madrid. He/she will be responsible for certifying and managing Vendors regarding compliance with Data Privacy regulations.
We need someone like you to help us on different fronts:
Conduct Privacy Risk Assessments aimed at Santander Group providers.Monitoring and implementing action plans to mitigate the inherent risk.Reviewing and updating existing data protection policies and procedures related to Privacy Risk Assessments within the Group.To support the key account management for providing vendor risk service in Santander Group.Reporting and collaboration with corp. 2nd Line of Defense team and local DPOs regarding risk assessment results, continuous improvement of risk methodology, etc.EXPERIENCE
Minimum 5 years of working in risk management with a focus on data protectionEDUCATION
Bachelor´s degree in Law, technology or a related fieldRelated industry certifications (such as GDPR, ISO 27001, ENS …)SKILLS & KNOWLEDGE
Fluent in English. (mandatory)Experience with local Spain and European data protection laws (In-depth knowledge of the GDPR).Experience with regulatory and compliance matters.Good risk-based judgement skills include the ability to assess compliance risks appropriately.Excellent written and oral communication and interpersonal skills.Assertiveness and firmness in negotiations, maintaining a results-oriented approach without losing empathy and professionalismIf you want to know more about us, follow us on https://es.linkedin.com/company/banco-santander