Job description

GCB 3

Some careers have more impact than others.

If you’re looking for a role where you can continue to make an impression, take the next step at HSBC where your contributions will always be valued. 

Within International Wealth and Premier Banking, we serve 41 million customers globally, including 6.7 million who are international, from retail customers to ultra-high net worth individuals and their families. We help our customers look after their day-to-day finances and manage, protect and grow their wealth. The International Wealth and Premier Banking Chief Operating Office supports the business to deliver exceptional customer journeys and increase efficiency across our global network. We support the business through effective governance, financial and risk management, transformation, and operational management, ensuring that all International Wealth and Premier Banking business units and markets have the right capabilities and procedures to compete effectively and grow safely. We work in an agile manner and at pace, partnering with teams in Technology and Digital Business Services to bring innovative, digital-first solutions to our customers. 

We are currently seeking a high calibre professional to join our team as a Head of Resilience and Data Risk Controls & Analytics, IWPB BRR.

Role Purpose 

The Head of Resilience and Data Risk Controls & Analytics is responsible for Resilience Risk, which includes Data Risk, business continuity, third-party risk, IT and Cyber resilience. It also includes the oversight and implementation of operational resilience and effective data risk management across IWPB Markets and Sub-LoBs. This role will provide oversight of the Operational Resilience Programme and ongoing management of IWPB IBSs, in line with compliance with internal policies and external regulatory expectations globally. The role holder will also be accountable for the development and management of management information and proactive analytics of the risk environment, collaborating with various analytics and artificial intelligence teams in IWPB to provide IWPB with risk analytics to support proactive remediation across all risk typologies.

Reporting to Head of BRR IWPB, this is a key leadership position, and the successful candidate will need to be able to work in a fast-paced environment where requirements and priorities can rapidly change. Being able to provide clarity to key stakeholders and to drive change will be key.

The role will consolidate activities that align with the Resilience Risk and Data Risk taxonomy to provide a single oversight across IWPB BRR, IWPB Sub-LoBs and IWPB Market FCCS teams. The Head of RDR will partner with IWPB Businesses / Markets / Sub-LoBs, regional and global stakeholders (across WPS, GPB, Asset Management and Insurance), working closely with IWPB businesses and 2nd LOD ‘Risk Stewards’ to continuously oversee, remediate and enhance risk and control 1LoD activities in relation to resilience and data risk (collaborating with IWPB BRR teams). It will also require close engagement and collaboration with entities and Business Service Owners.

At a high level the role will be accountable for the following:

Resilience Risk

  • Lead the development, implementation, and continuous improvement of the operational resilience framework, aligned with regulatory requirements and business priorities.

  • Oversee business continuity planning, disaster recovery, and crisis management initiatives across IWPB.

  • Drive third-party resilience assessments, ensuring adequate controls are in place for critical service providers and working with IWPB Businesses / Markets / Sub-LoBs to exit service providers in a timely manner where required.

  • Collaborate with technology and cyber security teams to assess and manage risks related to system disruptions, outages, and recovery.

Operational Resilience

  • Oversee coordination, socialisation and endorsement of all Material changes to Group Op Res Polices and Cross GB/GF Procedures for IWPB.

  • Oversee Process mapping and IT Delivery for all markets globally (including Home Markets).

  • Oversee the implementing all requirements from Group Op Res Policy to IWPB.

Data Risk

  • Develop robust data control, governance and management framework covering data quality, usage, privacy, and retention.

  • Perform policy/regulatory impact assessment and advise IWPB Businesses / Markets / Sub-LoBs on how controls should be enhanced accordingly to ensure adherence. Advise and provide SME input to IWPB Businesses / Markets / Sub-LoBs to support the delivery of enhancements activities, e.g. Chief Commercial Office. 

  • Identify and manage issues/risks arising from the misuse, loss, or unauthorized access to sensitive data, particularly customer and financial information. Advise and provide SME input to IWPB Businesses / Markets / Sub-LoBs regarding best course of action to remediate.

  • Engage with data owners, technology, compliance, and front-line units to promote a culture of data accountability and stewardship.

  • Provide risk oversight over strategic data initiatives, including data platforming, data analytics, AI/ML model usage, and digital transformation programs.

Business Risk Analytics

  • Build and lead a Business Risk Analytics capability to generate actionable insights.

  • Drive proactive risk identification with an aim to drive continuous control improvements in IWPB.

  • Develop risk dashboards and reporting framework focusing on findings and key risks.

  • Champion automation, data-driven tooling, and AI.

Leadership and Governance

  • Represent resilience and data risk in internal risk committees and support external regulatory engagements.

  • Lead and develop a high-performing team, fostering cross-functional collaboration.

  • Provide regular risk reporting to senior management, including risk profile, control effectiveness, policy & procedure developments and issue remediation progress.

  • Monitor and report KRIs and OKRs and tolerance thresholds for resilience and data risk.

Key responsibilities will include: 

  • Shape and drive action to strengthen Resilience and Data Risk oversight and monitoring, risk assessment, and reporting/regulator engagement within the IWPB global, region and market teams leveraging the risk teams in IWPB. 

  • Drive collaboration across IWPB Businesses / Markets / Sub-LoBs.

  • Focal point for interaction and liaison with 2LOD Risk Stewards on new regulatory and policy development and implementation in BRR. Work with IWPB Businesses / Markets / Sub-LoBs to embed and monitor compliance.

  • Provide subject matter expertise and coordination in implementing Policy and Procedure refreshes into IWPB markets and sub-LoBs.

  • Leadership in considering and planning for emerging risks as the agenda develops.

  • Ensure a comprehensive and actionable portfolio of MI.

  • Drive development and rollout of training and awareness for IWPB staff on subject matter.

Principal Accountabilities:  Key activities and decision-making areas

Impact on the Business / Function 

  • Responsible for the evolution of Global scalable and standardized business practices to mitigate sustainability risk via implementation of new procedures and processes.

  • Responsible for driving first line of defence capability across IWPB (WPS, GPB, Asset Management and Insurance) to recognise importance of regulatory compliance and take appropriate action.

  • Implementation of oversight and monitoring processes to enable effective management regulatory compliance. 

  • Responsible as Global WPB 1LOD representative in governance forums and responsible for defining and producing RC metrics. 

  • Identify and raise awareness of emerging RC topics risk 

Customers / Stakeholders 

  • Provide subject matter guidance and support to IWPB BRR / Businesses / Markets / Sub-LoBs where needed. 

  • Drive awareness of RDR risk and a risk culture across IWPB via training/comms

  • Advocate risk management processes that ensure minimal impact on customer experience 

Leadership & Teamwork 

  • Lead an effective and professional team, driving up standards of knowledge, competency, and skill within the team.

  • Plan, priorities and allocate resource to achieve team objectives effectively.

  • Secure appropriate funding to deliver team objectives.

Requirements
  • Well developed risk management knowledge
  • Demonstrable ability to manage global teams
  • Solid knowledge and experience in processes, Bank systems and/or project management 
  • Strong analytical and problem solving abilities
  • Organized and logical thinker
  • Strong interpersonal sensitivity
  • Strong written and verbal communication and presentation skills

Your local internal application policy should be followed. For internal applicants in Hong Kong with less than twelve months in their current role, please also obtain and enclose the endorsement from your current line manager in the application as well; for more information, you can visit HRDirect and search for content "HKG: Do I need any approval to look for internal career opportunities?".

Opening up a world of opportunity

HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Issued by The Hongkong and Shanghai Banking Corporation Limited. 

Recruiter name
Stella Tsang Li
Recruiter email
stella.tsang.li@hsbc.com.hk
Back to search results