Job description

Cybersecurity Lead – EU International 
 
Big Bank Funding. FinTech Thinking.
            
Our technology teams in the UK work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world’s leading international bank.

Our multi-disciplined teams include: DevOps engineers, IT architects, front and back end developers, infrastructure specialists, cyber experts, as well as project and programme managers. 
 
We work in small, agile DevOps teams with colleagues around the world from our offices at the Bluefin Building in Southwark, our global headquarters in Canary Wharf, and multiple other locations around the UK including Sheffield, Leeds, Barnsley and Birmingham. 
 
Following extensive investment across our Technology and Digital domains and with plans for continued expansion throughout 2022 and beyond, we are currently seeking an experienced Cybersecurity Lead – EU International to join HSBC Technology.

The Cybersecurity function is responsible for enabling businesses and functions to manage their Information and Cybersecurity risks as well as ensuring risk and controls are assessed and implemented appropriately, objectively and independently through professional and specialised subject matter experts.

The Cybersecurity Lead is responsible for supporting the Regional Information Security Officer (RISO) in driving the execution of the Group Information Security and Cybersecurity strategy across the Region, and helping meet the in-country cybersecurity objectives aligned to the RISO organisation and focus. The RISO’s organisation is part of the 1st line of defence (1LOD). 

What you will be doing;

•    Collaborating with cybersecurity team members within the region to collate and report on the management of information security and cybersecurity controls
•    Provide Information Security monitoring and risk reporting for the respective Country/Region, ensuring all Cybersecurity related activities within the allocated area are shared with the RISO and key regional stakeholders in a timely manner
•    Gather information to report on the compliance of local legal entity regulations; and produce technical information related to the cyber risk posture into consumable reports for various governance forums
•    Work with the RISO and is a key point of contact for managing Information and Cybersecurity risks and controls (including cyber owned and non-cyber owned controls), relating to their governance, operation, monitoring and reporting
•    Responsible for identifying, understanding and articulating risks in the respective Region/ Country by having a clear understanding of the Region/ Country’s critical assets, threats/vulnerabilities and information security risk levels based on globally established control requirements and local or jurisdictional requirements
•    Partner with the business to help them achieve their strategic objectives by ensuring that cybersecurity services provided are fit for purpose. Understand business/ regional/ country strategies and requirements and ensure business requirements are incorporated within the cyber global investment/ transformation programme
 

Requirements

What you will bring to the role;  
 
To be successful in this role you should have proven experience within the Technology sector with knowledge of the following skills:

•    Experience in IT security governance and operational processes, preferably in the Financial Services industry or global corporate service provider
•    Background – desirable but NOT essential exeprience in one or more of risk management, Audit, ISR
•    Positive and professional attitude, team player, flexible and adaptable, open to change(s)
•    Ability to communicate technical subject matter to non-technical stakeholders
•    Previous experience of delivering an excellent customer service
•    Ability to quickly develop good working relationships with stakeholders
•    Experience in People Management
•    Cybersecurity Experience and desirable one or more industry-recognised cybersecurity-related certifications required (as per Regional Regulatory Requirements) including ISO270001, CISA, CISM, CISSP, CRISC

Flexible on location – London / Birmingham / Sheffield and some travel maybe required. 

Come Power a Business that Defines How to Power the World

As a business operating in markets all around the world, we believe diversity brings benefits for our customers, our business and our people. This is why HSBC is committed to being an inclusive employer and encourages applications from all suitably qualified applicants irrespective of ethnicity, religion, age, physical or mental disability/long term health condition, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by local law in the jurisdictions in which we operate. Within the work place you will have access to various employee resource groups which aim to promote and achieve a healthy work / life balance and support our diversity ambitions.  HSBC has in place processes in order to avoid nepotism, which means to avoid creating circumstances in which the appearance or possibility of conflicts of interest may exist within the hiring process.
 
We want everyone to be able to fulfil their potential which is why we provide a range of flexible working arrangements and family friendly policies.
 
As an HSBC employee in the UK, you will have access to tailored professional development opportunities and a competitive pay and benefits package. This includes private healthcare for all UK-based employees, enhanced maternity and adoption pay and support when you return to work, and a contributory pension scheme with a generous employer contribution.