HSBC Group

Business: Cybersecurity
Open Positions: 1
Recruiter Name: Veronica Zhong

Why join us? 
Global Cybersecurity Technology and Engineering function is responsible for Build, Deploy, Engineer of all technologies that protects the company.  This ensures that the highest standards of availability and security are maintained across all Cybersecurity tooling and that the function will maintain capability.  

The Opportunity: 
This role requires solid hands-on experience on security vulnerability remediation, remediation tools, techniques and building automation for security vulnerability remediation.

What you’ll do: 

• Examples of problems you'll be solving:
• Prioritize remediation of open vulnerabilities through risk assessment
• Provide vulnerability analysis and produce monthly reports
• Work closely with product owners on  
  Application architecture 
  Discovered vulnerabilities 
  Application and infrastructure dependencies
• Vulnerabilities categorized under Exception/False positives  
• Interaction with multiple global teams (IT, Product owners, Risk stewards )
• Review deferred item status and revise or implement fixes.
• Remediation of open vulnerabilities identified by vulnerability scanners (Nessus, Tanium etc..)
• Collaborate and interact with global infrastructure and applications teams
• Perform remediation of the platform vulnerabilities (such as OS, Application, Database )  through SSP (Self-service portals), Puppet/Ansible, SCCM and other available tools in the company.
• Perform on-demand scanning for open vulnerabilities
• Maintain knowledge of the threat landscape
• Automate vulnerability remediation through available tools and processes in the company

What you will need to succeed in the role: 

• Perform continuous security vulnerability remediation and patching
• Leverage and enhance existing automation
• Perform remediation of the platform vulnerabilities (such as OS, Application, Database )  through SSP (Self-service portals), Puppet/Ansible, SCCM and other available tools in the company.
• Vulnerability analysis
• Vulnerability remediation
• Vulnerability remediation techniques
• Vulnerability remediation automation
• Scripting; Bash; Python; PowerShell; Windows Server; Linux Server; Operating System; Jenkins; Ansible

What additional skills will be good to have?

• Ansible

Link to Candidate User Guide: 
https://hsbchrdirect.service-now.com/hrsp?id=kb_article&sys_id=60ce20691ba69010280dc9df1d4bcb56 

You’ll achieve more at HSBC 
HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.” 

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.