Job description

Location: REMOTE
Duration: 6 month CTH
Location: Remote for contract work, must live in Miami post conversion

Nice to have for ALL ROLES:

Bilingual is a plus
Banking/Financial Services/FinTech experience is important

Positions:
Position: IAM/PAM Specialist

Own enterprise identity lifecycle management activities (provisioning, recertification, Privileged Access Management etc.) across SBNA
Provide deep subject matter expertise for AWS Identity & Access Management services, entities, configuration, and best practices
Develop any required automation necessary to build, test, deploy, manage, or maintain IAM Cloud Solutions following DevOps pipeline processes
Day-to-day management and maintenance of any AWS IAM roles, policies, and other configurations required to support business requirements, application integrations, workloads, regulatory compliance, and other cloud platform efforts or deliverables
Provide knowledge leadership in the evolution of our governance, control framework and our IAM Cloud Solution strategy
Automate Identity and Access Management related process regarding workforce management events of onboarding/offboarding/transfers/access requests
Design, Develop and Operate IAM controls regarding access controls and certifications following our framework
Work with Cyber Security Operations and other stakeholders to implement monitoring processes and correlation of events regarding digital identities
Collaborate with various groups and individuals to troubleshoot and resolve escalated production issues

Position: Cloud Security Controls Specialist/CSPM Specialist

Oversees ability of Santander to identify and remediates risks by managing tooling and automating critical activities (e.g., automating viability, threat detection, monitoring, remediation workflows) tied to the organizations cloud security management of diverse environments and infrastructure (IaaS)
Design, definition and implementation of cloud controls based on the organizations cloud security framework
Define and build security design patterns for cloud-based security services
Ability to understand information security compliance frameworks and can apply to cloud environments (CIS for AWS, CCM, NIST, etc.)
Define and automate security controls to mitigate security risks
Supports maintaining AWS security products, such as CloudWatch, GuardDuty, Inspector
Supports deployment and use of Cloud Security Posture Management (CSPM) tools like AWS Config, Sysdig, Wiz or Cloudguard
Enables use of and maintains cyber security tools for CI/CD pipelines including IaC solutions*
Interacts with partners as needed to explain work product, security techniques, methodology and results to ensure appropriate business value
Discovers and maintains visibility into cloud infrastructure assets and security configurations
Eliminates security risks and accelerates the delivery process by comparing cloud application configurations to industry and organizational benchmarks so violations can be identified and remediated in real-time
Enables detection of threats across the application development lifecycle by cutting through the noise of multi-cloud environment security alerts with a targeted threat identification and management approach
Integrates into DevOps processes and activities to provide centralized cloud-native, agentless visibility and control on all cloud resources
Supports seamless integration with the SIEM to streamline visibility and capture insights and context about misconfigurations and policy violations

Position: Cyber Ops Cloud Monitoring Specialist

Monitor AWS cloud system logs (CloudTrail, CloudWatch, VPC Flow Logs), set-up alert systems and create performance reports
Advanced knowledge of Amazon GuardDuty and Inspector
Build feature-rich dashboards using AWS native tools for continuous cyber operations cloud monitoring
Work alongside developers to make improvements to the cloud security system and ensure it is functioning optimally
Monitor and ensure the reliability of cloud security infrastructure
Develop and maintain cloud security monitoring tools and processes, such as cloud SIEM, CSPM, and others
Identify and troubleshoot performance issues in real-time
Anticipate future problem areas by monitoring workflows and network traffic patterns
Clean and organize cyber operations data for analysis and monitoring use applicable tools
Generate queries to develop meaningful insights from the analysis to support decision making
Work with stakeholders to create dashboards to present insights, using visualization tools
Manage cyber operations cloud change control policies and procedures in SBNA's cloud environment
Centralize, coordinate, and communicate cyber operations cloud changes to relevant stakeholders
Perform alert triage and remediation, as well as incident response