Digital Operational Resilience & Emerging Risk

  • Monte
  • Banco Santander S.a.

Digital Operational Resilience & Emerging Risk Control Senior Analyst

Country: Spain

Santander Consumer Finance HQ is looking for a Digital Operational Resilience & Emerging Risk Control Senior Analyst based in our Headquarters in Boadilla del Monte (Madrid).

WHY YOU SHOULD CONSIDER THIS OPPORTUNITY

Santander Consumer Finance focuses on business development related to consumer finance products, sales channels and commercial agreements with dealers, vehicle manufacturers or retail distribution establishments, as well as commercial functions associated with direct sales (branches, call centers or digital channels) and indirect sales (through third parties) of consumer finance products.

Santander is proud of being an organization where there are equal opportunities regardless of gender identity, culture and disability. Our mission is to contribute to help more people and business prosper.

WHAT YOU WILL BE DOING

Operational resilience and emerging risks are an outcome that benefits from the effective management and control of the non-financial risks. Activities such as risk identification and assessment, risk mitigation (including the implementation of controls) and the monitoring of risks and control effectiveness work together to minimize operational disruptions and their effects. As a Digital Operational Resilience & Emerging Control Risk Senior Analyst **, in the second line of defense, you will promote the implementation of a common principle-based and forward-looking non-financial risk and monitor the cyber, technology & emerging risks, oversight, control and challenge the first line of defense across SCF HQ, Branches, Subsidiaries and JVs, ensuring consistent oversight and reporting.

We need someone like you to help us in different fronts:

  • Ensure that risk assessment, oversight and control processes are effectively governed and managed across the 1st line of defense in line with the responsibilities of the 2nd line of defense. This includes the completion of the Risk Control Self-Assessment and Internal Control exercises (and its mitigation measures) for SCF HQ, Subsidiaries and JVs, providing oversight and challenge of the results.
  • Provide appropriate oversight and continuous evaluation over the 1st line of defense KPIs / KRIs in line with agreed risk appetite.
  • Analyze the internal database and the possible deviation between losses and budget, including the identification and investigation of fraud trends and advisory in the implementation of preventive measures against fraud.
  • Coordinate the organization of the scenarios analysis yearly exercise, being responsible of the workshops´ celebration with the 1st line of defense.
  • Call the attention of the Sr. Management, when necessary, over those situations that under his/her judgment are worrisome from operational resilience and emerging risks perspective, or that may mean a violation of the defined limits for the entity´s risk appetite or its risk strategy.
  • Promote the correct documentation of the internal regulation across HQ, Branches, Subsidiaries and JVs, keeping the normative repository updated. In this sense, automatization and simplification of the already established normative workflows will be required.
  • Provide independent challenge associated to new products, projects or third-party services and ensuring emerging risks are adequately identified, assessed and mitigated
  • Manage and address any risks that threaten the delivery of critical operations, coordinating their business continuity planning, third-party dependency management, recovery and resolution planning and other relevant risk management frameworks to strengthen operational resilience across the SCF Group.
  • Assess the adequacy of the management of the technology stake and its infrastructure to the framework and policies.

EXPERIENCE

  • More than 7 years of experience accredited. Proven experience in operational and emerging risks management, governance and control frameworks and recognized expertise in developing risk & compliance frameworks in innovative and alternative ways while compliant with regulation.

EDUCATION

  • Relevant academic qualifications in STEM (Science, Technology, Engineering or Mathematics university degree) or Business Administration. Valuable any certification on CISSP, CISM, CISA, CEH, CSSP, COSO, Lead Auditor 27000.

SKILLS & KNOWLEDGE

  • Programming skills (VB, SQL, Phyton).
  • Data Management
  • MS Office / Power BI advanced knowledge.
  • Strong communication skills. Ability to build collaborative relationships across the different areas and strong interpersonal experience to achieve deliverables and practical business impact.
  • Hands-on approach, results oriented, strong intellectual curiosity, out-of-the box thinker, and attention to detail.
  • Desirable knowledge on Retail and Consumer business and products, operations and payments, etc.
  • Acceptable understanding of the regulatory environment

OTHER INFORMATION

  • Spani