Cyber Security Spec III Country: Brazil **If you are eager to grow and learn continuously, and passionate about impacting people through your analyses, this could be your place.** By joining Santander’s Cyber Security & Anti-Fraud team, you will work on preventing internal and external fraud, mitigating cyber security and information security risks, with a strategic focus on Data Loss Prevention (DLP). We have an opening for you to become a **Cyber Security Specialist III**. Here in the Cyber Security area, you will be part of the team responsible for Data Loss Prevention (DLP). You will join the team responsible for the strategy, performing assessments, structuring, and supporting the creation and evolution of rules used by corporate data protection tools. This could be your next step to grow and develop your career. **Here, your role will be:** Support local and global teams in the DLP strategy, assessing, structuring, and supporting the creation of rules to prevent data exposure or leakage. **You will identify with us if you have:** Think Customer – I think about the customer Embrace Change – I drive change Act Now – I act quickly Move Together – I work as a team Speak Up – I speak openly **Essential Requirements:** Academic Qualifications Bachelor’s degree completed in: Cybersecurity, Information Technology, Computer Science, Information Systems, Computer Engineering, Network Technology or related fields; **Desirable Requirements:** **Technical and Functional Knowledge** * Experience aligned with the following frameworks: + ISO 27001 / ISO 27701 + NIST * In-depth knowledge of Data Loss Prevention (DLP) for: + Endpoints (workstations and servers) + Email (Exchange, M365, gateways) + Web and Cloud (CASB, SaaS, IaaS) * Knowledge and experience with tools to propose configuration and monitoring improvements * Microsoft Purview * Netskope * Integration of DLP solutions with: + **SIEM (Splunk)** * Ability to: + Create, review, and evolve DLP policies + Define rules based on content, context, and behavior + Implement information classification and labeling * Experience analyzing and handling data leakage incidents, including: + Investigation + Impact assessment + Mitigation recommendations * Ability to map sensitive data and support data inventories * Familiarity with: + Encryption; + Data masking. + Access controls and exception groups. **Indicators, Metrics and Reports (KPIs and KRIs)** * Ability to **define, build, and maintain security indicators** related to data protection and alerts generated by DLP tools: + Volume of DLP incidents by severity level + False positive rate + Mean time to respond (MTTR) + Compliance with information classification policies + Risk trends and event recurrence * Development of **executive dashboards and reports**, providing visibility at: + Operational level + Tactical level + Strategic level * Support decision-making in security, risk, and privacy forums **Governance, Privacy and Global Engagement** * Knowledge of **privacy and data protection regulations** * Experience working in regulated and auditable environments * Alignment and dissemination of best practices implemented in the Local Geography, evaluating adoption across other Group geographies * Ability to lead: + Workshops Awareness initiatives for data leakage prevention + **Languages – desirable** * **English:** **advanced** level (reading, writing, and speaking), for interaction with global teams, participation in meetings, and preparation of documents and reports. * **Spanish:** intermediate level **desirable** (reading and speaking). **# BENEFITS** Variable Compensation (PLR + Bonus); Medical and Dental Assistance; Meal and Food Allowance; Supplementary Pension; Life Insurance; Childcare/Babysitter Allowance; Gympass or Totalpass; Transportation Allowance; Nascer Program; Be Healthy – Program encouraging everyone to adopt healthier habits; PAPE – Specialized Personal Support Program **So? Want to be ignited?** Here is the space to create the new, question and challenge the market. It means having the urgency of both now and the future, aligned to serve customers in the best possible way. It means being part of a global company that values each person’s full potential and champions diversity in all its dimensions. It means being simple, personal, and fair. **If this resonates with you, join Santander!** #AquiSuaChamaTransforma #CyberSecuritySpecialist&Anti-Fraud #VemProSantander #LI-DNI