Cloud Security Controls Lead

Buscar trabajos
Cloud Security Controls Lead

Folio de la vacante

0000KL57

Ubicación

Sheffield, Reino Unido

Área de interés

Tecnología

Tipo de trabajo

Permanente: tiempo completo

Experiencia laboral

Trabajo híbrido

Fecha de publicación

10-Sep-2024

Fecha de cierre

25-Sep-2024

Job description

Cloud Security Controls Lead

Join a digital first bank that’s powered by people.

Our technology team builds innovative digital solutions rapidly and at scale to deliver the next generation of banking services for our customers around the world.

In our cybersecurity team you’ll be helping to safeguard the financial system on which millions of people depend.

You’ll be making banking more secure by designing, implementing, and operating controls to manage cybersecurity risk. You’ll help define HSBC Group cyber security standards, deliver Global Security Operations ad Threat management services, provide round-the-clock monitoring and security incident response services, and oversee Network/Application/Infrastructure Security. The work you do will provid3e assurance of the adequacy and effectiveness of security controls to Business Risk Owners.

The Cybersecurity Assessment and Testing (CSAT) function, part of Global Cybersecurity, is accountable for Vulnerability Management, Secure Development, Threat and Controls Assessment (threat modelling), Cloud Security and Third-Party Cybersecurity Assessment. The function drives the identification, capture, assessment, testing and ultimately the remediation of security defects, gaps and vulnerabilities across HSBC’s estate in concert with business and technology teams – on-premise, within the Cloud and resulting from third party engagements.

As an HSBC employee in the UK, you will have access to tailored professional development opportunities and a competitive pay and benefits package. This includes private healthcare for all UK-based employees, enhanced maternity and adoption pay and support when you return to work, and a contributory pension scheme with a generous employer contribution.

In this role you will:

• Leading and building a new team of Subject Matter Experts on how Cybersecurity controls operate on Cloud and Container platforms.
• Providing Consultancy to stakeholders on best practice of how security controls should operate on Cloud and Container platforms.
• Leading all Cloud Security engagement with Security Control Owners.
• Reviewing and challenging the existing Risk and Control Library, Policies, Procedures and Standards for Cybersecurity controls with specific reference to applicability for Cloud use cases.
• Proactively identifying gaps in the existing frameworks and proposing remediation solutions in line with the industry standards and best practices.
• Delivering reporting/ material for senior management meetings (e.g Technology/ Cybersecurity/ Cloud Risk and Controls Management Meeting); and responses to information requests from Regulators, Internal/ External Audit.

Requisitos

To be successful in this role you should meet the following requirements:

• Strong understanding of Security Controls in particular, how these are applied in the context of   Cloud.
• Ability to translate difficult IT concepts into business-friendly language.
• Experience with Technology risks and controls.
• Broad knowledge of Cybersecurity – concepts, requirements, operations.
• Broad knowledge of Cloud (esp.   Cloud), principles, operations, concepts.
• Understanding of metrics and measures in managing risks and controls (KCIs, KRIs, KPIs).
• Technical writing skills and highly proficient use of written English is required to ensure quality output to articulate Control, Policies, Procedure and Standards gaps and requirements with reference to   Cloud.
• Excellent written and verbal communication skills with an ability to Communicate with impact, ensuring complex information and data is articulated in a meaningful way to wide and varied audiences and stakeholders including senior management.

This role is based in Sheffield .

Opening up a world of opportunity

Being open to different points of view is important for our business and the communities we serve. At HSBC, we’re dedicated to creating diverse and inclusive workplaces. Our recruitment processes are accessible to everyone - no matter their gender, ethnicity, disability, religion, sexual orientation, or age.

We take pride in being part of the Disability Confident Scheme. This helps make sure you can be interviewed fairly if you have a disability, long term health condition, or are neurodiverse.

If you’d like to apply for one of our roles and need adjustments made, please get in touch with our Recruitment Helpdesk:

Email: hsbc.recruitment@hsbc.com
Telephone: +44 207 832 8500

Volver al resultado de la búsqueda

Únase a nuestra comunidad de Talento para que podamos mantenerlo actualizado e informado sobre los acontecimientos más recientes en HSBC.