Associate Project Manager - IT Sec Analyst / Cybersecurity : 0000FHST
The health and safety of our employees and candidates is very important to us. Due to the current situation related to the Novel Coronavirus (2019-nCoV), we’re leveraging our digital capabilities to ensure we can continue to recruit top talent at the HSBC Group.
As your application progresses, you may be asked to use one of our digital tools to help you through your recruitment journey.
If so, one of our Resourcing colleagues will explain how our video-interviewing technology will be used throughout the recruitment process and will be on hand to answer any questions you might have.
Some careers have more impact than others.
If you’re looking for a career where you can make a real impression, join HSBC and discover how valued you’ll be.
HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories.
We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.
We are currently seeking an experienced professional to join our team in the role of Associate Project Manager - IT Sec Analyst
The Cyber Security Technology function supports a number of technologies and services across a globally dispersed team. This includes cryptography and encryption technology, Data Loss Prevention, Security Infrastructure and vulnerability management.
These collective teams assure critical functions and billions of pounds worth of transactions across the organisation.
The DLP SME role-holder is charged with protecting the HSBC brand, shareholder value, information and financial assets, managing a team across the globe in the following ways :
Supporting the delivery and operating Strategy
Providing key representation for and source of expertise on all issues.
Support the delivery of tooling to implement controls ensuring compliance with HSBC Information Security policies and standards globally including any regulatory requirements.
Collaborate to drive the implementation of the enterprise wide and regional / business level IT Strategy.
Ensure information security requirements are adhered to globally by ensuring effective compliance and measures are in place.
Work closely with the team as the 1LOD function and understand strategy while maintaining visibility of their IT security risk profile, exposures and control effectiveness and to provide robust challenge to the same audience when information security risk appetites are breached.
Drive engagement with all relevant regional and global stakeholders (cyber security colleagues across Strategy and Architecture, Security Shared Services, Security Engineering and business and IT Functions).
Key Experience :
Wide range of cyber experience across cyber with specific focus on DataSecurity and DLP engineering&Operations, Integration (Middleware technologies Web Application Servers, Web Servers, ESB, MQ, Integration platforms, API Security) and DLP engineering
Experience of building, deploying and using the tooling to support Data Security and Data Integrationstrategies
Monitoring the DLP tickets generated by DLP tooling (Symantec, etc )
Proven experience of successful operational management, utilising relevant tools and techniques to ensure consistent delivery
A minimum of 4 / 5 years Cyber experience would be beneficial
Experience working in a highly regulated environment
Promoted and led best practice in risk and compliance management in a similar organization
A track record of making strategic business decisions, considering relevant risks, long term implications, commercial realities and stakeholders'' needs
Typically educated to degree level within IT
Experience working in relevant environments on Data Security principles and controls
Knowledge of Data Classification and Data Leakage Protection Tools (Installing, monitoring)
Relevant product knowledge including knowledge of past working experience (hands-on experience) on Symantec CASB, OCR and ICA
Demonstrable experience in IT or Cyber Security pertinent to this role with 5+ years experience
Regulatory engagement, experience in dealing with compliance matters, and regulatory liaison would be beneficial
Knowledge of any global regulatory requirements would be beneficial
Ability to build strong relationships and communicate on complex IT Security issues with a wide spectrum of stakeholders.
Understanding of business finance and experience of effective management of budgets and expenditure
Comprehensive understanding of security in context of wider industry trends and direction
Experience of working in a financial organisation would be beneficial
Information Security Certification such as GIAC, CISSP, CISA, CRISC or ISO 27001 Lead Auditor not required, but considered a plus
HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count.
We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment.
We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc.
We consider all applications based on merit and suitability to the role.
Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.
Issued By HSBC Software Development Centre