Lead Researcher (Cybersecurity Science & Analytics)

Big Bank Funding. FinTech Thinking.

Our technology teams in the UK work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world’s leading international bank.

Our multi-disciplined teams include: DevOps engineers, IT architects, front and back end developers, infrastructure specialists, cyber experts, as well as project and programme managers.

We work in small, agile DevOps teams with colleagues around the world from our offices at the Bluefin Building in Southwark, our global headquarters in Canary Wharf, and multiple other locations around the UK including Sheffield, Leeds, Barnsley and Birmingham.

Business area overview

Cybersecurity Science & Analytics is currently building its Advanced Projects team. This teams focuses on finding novel solutions to cybersecurity problems across the organization, both by rapidly developing prototypes that solve an immediate business challenge, and exploring longer term, potentially ground-breaking technologies in partnership with international centers of excellence in industry and academia.

We are looking for motivated people with a lot of passion that are either already firmly positioned within cyber security or have strong technical skills and some exposure to the security world and want to grow in it.

What you will be doing;

In this role, you will:

• Be part of the global Advanced Projects team, a subgroup specialised in a firm all-rounder security skill set
• Respond to critical requirements that require an immediate tactical capability, developing code or analytics
• Rapidly develop new and innovative capabilities for cyber that will later become a normal business capability, spearheading the next generation of cyber security tools and techniques
• Build partnerships with industry, academia, and governments to empower the development of next gen cybersecurity capabilities
• Write proof-of-concept exploits, provide generalised attack patterns, guidance, and solutions to help strengthen the bank’s defences
• Be an open subject matter expert to the company, provide knowledge and support to cyber, keeping a close eye on the latest cyber security research. Publications and talks are encouraged.

Technologies and tools we use:

• Whatever is necessary to get the job done. Previous projects have been done in Go, Rust, Python, C#, and others
• We use AWS, Azure, and an on-premise laboratory securely for special projects, as well as needing to understand and operate in the regulated corporate estate
• We administrate our own networks and infrastructure, mostly Windows and Linux servers
• State-of-the-art tools like IDA Pro or Binary Ninja for deep dives
• We strive to adopt new technologies, software, and workflows to stay on top of things

Your qualifications:

• You should have a background in computer science or engineering, either via a university or previous work experience

Your technical skills:

• You must be eager to quickly learn new skills, languages, and techniques as they come up
• You should be fluent in Python, other languages are a plus
• You should have strong knowledge in at least one area (system internals, protocols, cryptography, adversary techniques, web and binary exploitation, reverse engineering) and interest in general cyber security

Cybersecurity Science and Analytics (CS&A) is made up of four core towers, who’s functions are to; move data, ensure it is in the right structure, automate processes, design infrastructure and keep the systems functioning (Data Engineering); manage the analytic engines and develop capabilities that generate knowledge (Analytic Engines); prove concepts and methods, while also solving the tactical challenges presented to the organization (Advanced Projects) and; develop the analytics methods (Artificial Intelligence).

Qualifications

What you will bring to the role; 

Skills

• Proven ability to deliver novel technical solutions quickly, including hands-on coding
• Understanding of applying technology and research to the cyber security domain.
• An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative and actionable manner.
• The following would be an advantage, but could be grown within the role:
  • A background in research and development, to include one or more of security technology, data analytics and AI
  • Proven ability to collaborate across industry, academia and government to solve complex cyber security problems.
  • Understanding of the Financial Sectors cyber security principles, global financial services business models, regional compliance regulations and applicable laws.
  • Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards.

Technical Skills

The team needs to cover the following areas, so individual team members should have technical skills in at least one of:

• Knowledge and experience in developing and deploying real-time analysis capability of large-scale and often diverse data sets, that enable more effective, efficient and coordinated defence capabilities.
• Experience interfacing with technology teams to bring lab concepts to market within an organisation and building effective operational models to ensure capabilities are able to be fully utilised and grow to meet the needs of the team.
• Knowledge in the thought process, methodologies and techniques used by advanced criminal and nation state adversaries spanning multiple aspects of the security domain.
• Experience in artificial intelligence methods to include machine learning (ML), Satisfiability modulo theories (SMT), and graph analysis methods.
• Some knowledge and experience in advanced adversary tactics, techniques and procedures, both from an offensive and defensive perspective.

Industry Experience and Qualifications

• Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role, as described above. For reference, the typical work experience and educational background of candidates in this role are as follows:
• Proven experience in artificial intelligence or development of tools in cybersecurity prevention, detection, or response capabilities
• Advanced degree in computer science, engineering, IT, allied subject, or previous work experience in these areas.

This role will primarily be London based but some travel may be required.

Come Power a Business that Defines How to Power the World

As a business operating in markets all around the world, we believe diversity brings benefits for our customers, our business and our people. This is why HSBC is committed to being an inclusive employer and encourages applications from all suitably qualified applicants irrespective of ethnicity, religion, age, physical or mental disability/long term health condition, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by local law in the jurisdictions in which we operate. 

Within the work place you will have access to various employee resource groups which aim to promote and achieve a healthy work / life balance and support our diversity ambitions.  

HSBC has in place processes in order to avoid nepotism, which means to avoid creating circumstances in which the appearance or possibility of conflicts of interest may exist within the hiring process.

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Job Field

 : Technology

Primary Location

 : Europe-United Kingdom-Greater London-London

Schedule

 : Full-time 

 : 

Job Posting

 : 29-Sep-2021, 19:00:00 

Unposting Date

 : 14-Dec-2021, 04:29:00