SOFTWARE PRODUCT SECURITY ENGINEER - Cybersecurity (ODS)
Country: Spain
Open Digital Services is the software development company of Santander Group powering the next generation of banks by creating innovative banking products and implementing them in collaboration with Santander Group Affiliates. Santander Group is one of the world's largest financial institutions and the Eurozone's leader, committed to being the best Digital Bank in the industry.
Our mission at ODS is to design and support an advanced digital and omnichannel platform, ensuring the best customer experience using cutting-edge technology. Openbank, our flagship partner, is where we develop our most advanced concepts first.
Be part of our Best-in-Class team and help us create unique value for our customers! Join us to tackle exciting tech challenges in an agile environment, benefiting from learning, growth, and local and international career opportunities in a modern, diverse setting.
Mission and Responsibilities:
The Software Security Engineer mission is to ensure that our Software products are secure from threats and vulnerabilities throughout their lifecycle. This involves identifying potential risks, designing and implementing security measures, and developing strategies aligned with the Global Cyber policies and market best practices to mitigate these risks considering different areas such as application security, data security, cloud security, customer journeys, cyber operational readiness, fraud, and third-party products and vendors that might be part of the platform.
Main Tasks:
1. Risk Identification & Mitigation:
o Identify potential risks within existing and new software developments.
o Define strategies to mitigate security risks effectively, fine-tuning the existing SW controls or designing new ones.
o Conduct threat modeling, analyzing customer journeys, cyber operational readiness, and fraud risks.
2. Security Design & Implementation:
o Translate user stories into detailed technical requirements, ensuring alignment with cybersecurity principles and systems architecture.
o Ensure the efficiency and effectiveness of implemented controls.
3. Collaboration & Cross-Team Support:
o Syndicate the detailed implementations with the Global Cyber Corporate Teams to align the results with Global policies and standards.
o Collaborate closely with other CISO areas and development teams.
o Work with development squads to manage impacts, dependencies, and documentation of technical requirements.
4. Testing & Quality Assurance:
o Support the development and execution of acceptance tests, ensuring all criteria are met.
o Coordinate all test activities and ensure that each story meets acceptance criteria.
5. Delivery & Progress Tracking:
o Analyze and report delivery progress, risks, and opportunities.
o Approve final release plans in collaboration with the Release Manager, ensuring priorities and dependencies are well-managed.
#J-18808-Ljbffr