Senior Information Security Analyst at Santander Bank

Job Description

As a PKI, HSM, and Cybersecurity analyst, you will play a fundamental role in critical protection initiatives, acting at the heart of our digital strategy. Your work will be essential to ensure the trust, integrity, and confidentiality of corporate systems and data.

MAIN RESPONSIBILITIES:

Develop and maintain the PKI infrastructure, including CA(s) authorities, ensuring certificate policy and digital certificate lifecycle management.
Responsible for administering and managing the complete lifecycle of HSMs, continuous monitoring, key rotation, firmware updates, and preventive maintenance.
Secure decommissioning and destruction of sensitive keys according to standards and policies.
Support internal and external audits (PCI PIN, 3DS, etc.).

REQUIRED KNOWLEDGE:

5 years of experience in Cryptography/HSM.
Completed graduation in areas such as IT, Engineering, or Information Security.
Solid experience in PKI, HSM, and security protocols (SSL/TLS, strong authentication, etc.).
Experience with HSM solutions (Thales, Utimaco, AWS Cloud HSM, Azure Key Vault, or similar).
Experience with cryptographic key management (Key Management Lifecycle), rotation, and secure storage.
Knowledge of Windows/Linux environments and PKI integration with Active Directory.
Knowledge of security standards and protocols: TLS/SSL, S/MIME, IPsec, RSA, 3DS, OCSP, etc.
Ability to troubleshoot authentication, encryption, and secure communication environments.
Familiarity with security standards and frameworks: ISO27001, NIST, PCI-DSS, LGPD.
Mastery of concepts and practices of symmetric and asymmetric cryptography, hashing, digital signature, and x.509 certificates.
English and Spanish for interaction with suppliers and peers from other countries.

DIFFERENTIALS:

Experience in financial verticals.
Experience in PCI Audits.
Knowledge in process automation with scripts (Python, Bash).

LANGUAGES:

Intermediate English
Intermediate/Advanced Spanish

Apply