HSBC Group

Director, Technology Delivery – Risk, Governance and Strategy, UAE Technology (0000LTHC)

GCB3

Some careers grow faster than others. 

If you’re looking for a role where you can continue to make an impression, take the next step at HSBC where your contributions will always be valued.

Our GCIO organization plays a critical role for the bank. This team partners with the businesses to build the platforms, systems, and products that our customers use every day. This team keeps people’s money and data safe and are at the forefront of driving innovation for our businesses, customers, and colleagues.

The role holder, reporting to the CIO MENAT, will play a critical role in uplifting technology governance, executing on strategic initiatives, strengthening HSBC’s MENAT technology risk management framework and ensuring adherence to regulatory requirements. This role involves identifying, assessing, monitoring, and reporting on technology risks, as well as driving compliance initiatives across the bank's technology landscape. 
The working location for this position is HSBC Tower, Dubai, UAE.

In this role you will:

• Conduct technology risk assessments (e.g., application, infrastructure, third-party, cloud) to identify potential vulnerabilities, threats, and control gaps. 
•  Evaluate the effectiveness of technology controls and recommend enhancements to mitigate identified risks. 
• Maintain and update the bank's technology risk register, tracking key risks, control effectiveness, and mitigation actions.
• Monitor technology risk metrics and Key Risk Indicators (KRIs) to provide early warnings of potential issues. 
• Participate in technology project lifecycle reviews (SDLC) to ensure security and risk-by-design principles are incorporated from inception.
• Maintain an end-end regulatory position of technology regulatory engagements across GBGIs. 
• Interpret, implement, and monitor compliance with various Regulators within the MENAT region and industry standards, including but not limited to requirements for cybersecurity, data governance, business continuity, outsourcing and incident management.
• Represent the Bank in Regulatory discussions relating to technology risks and resilience challenges. 
• Assist in the development, review, and update of technology risk management policies, standards, guidelines, and procedures. 
• Ensure policies are aligned with regulatory requirements, industry best practices, and the bank's risk appetite.
• Drive awareness and adoption of technology risk and compliance policies across the organization.
• Support the technology incident management process, focusing on identifying root causes, assessing impact, and ensuring a read across for effective remediation.
• Conduct technology risk assessments for third-party vendors and service providers, especially those handling sensitive data or critical services.
• Ensure third-party contracts include appropriate security and compliance clauses.
• Provide expert advice and guidance to technology and business teams on technology risk, control, and compliance matters.
• Develop and deliver training and awareness programs on technology risk and security best practices to employees and customers.
• Manage governance for all key forums including RMM and OpCO and ensure high quality deliverables for these forums. 
• Prepare regular risk reports, dashboards, and presentations for management, risk committees, and the Board (as required).

To be successful in the role, you should meet the following requirements:

• Knowledge of Technology Risk Management, IT Audit, Information Security, or IT Compliance within the financial services industry. 
• Progressive experience in program management for global companies with a proven record of delivering large scale change.
• Strategic mindset with awareness of market trends, competitors and emerging technology with ability to proactively initiate activities beneficial for the region.
• Excellent analytical and problem-solving skills, with the ability to identify, assess, and articulate complex technology risks.
• Strong understanding of MENAT Region Government organizations. 
• Previous experience of liaising with Regulators and or Government bodies.
• Excellent written and oral skills to deliver executive level presentations and analysis/research/recommendations on key topics.
• Strong interpersonal skills and ability to build relationships with various stakeholders across different departments.
• Bachelor’s degree in information technology, Computer Science, Information Systems, Business, or a related field. Master's degree is a plus. Graduation degree is a MUST to secure a UAE Visa and Work Permit.
• Under the New Labour Law, only fixed term contracts shall be available to all employees of HSBC UAE (except DIFC and ADGM employees) – hence in line with the term of work permit, a 4 years’ contract would be issued.

For further details and application information please visit our careers site, searching under reference number 0000LTHC. 

You’ll achieve more at HSBC.

www.hsbc.com/careers                    

HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working, and opportunities to grow within an inclusive and diverse environment. 
We believe diversity brings benefits for our customers, our business and our people. Different ideas and perspectives help us innovate, manage risk and grow the business in a sustainable way. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Issued by The Hong Kong and Shanghai Banking Corporation Limited.