Descripción

If you’re looking for a career where you can make a real impression, join Global Service Center (GSC) HSBC and discover how valued you’ll be. HSBC is one of the largest banking and financial services organizations the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realis their ambitions.

We are currently seeking an experienced professional to join our team in the role of Título de puesto.

 

 

Global Data Loss Prevention (GDLP) provides a coordinated suite of “Information Defence” services responsible for detecting and responding to information threats to HSBC assets across the globe and is under the management of the Head of Global Information Protection Response. This includes dedicated functions for the Monitoring of potential loss events within the global estate as well as Information Protection Incident Management and Response activities.  These two principal functions are supported by additional internal GCO capabilities in: Cyber Intelligence and Threat Analysis, Security Sciences and Client Engagement and Support Services.  Critical to the success of GDLP is its close partnership with sister Cybersecurity teams, IT Infrastructure Delivery, and Global Business and Function clients. The overall GDLP mission is placed under the purview of the Group Chief Information Security Officer (CISO).

Information Protection Response (IPR) acts as a strategic response function across the Group on a 24x7x365 basis where existing Information Security controls fail.  This function is charged with efficiently and effectively handling Data related incidents resulting from high severity events and confirmed incidents.  The objective is to ensure containment of the issue whilst maintaining close liaison with relevant internal and external parties ensuring an effective risk treatment plan is in place.  This mission is critical to the protection of HSBC customers, the HSBC brand, shareholder value as well as HSBC information and financial assets.

The Data Loss Prevention Operations Lead is accountable for:

·         Managing triage and/or escalation of DLP events with local and regional DLP staff, regional teams, and the Information Protection Response (IPR) team to assist with risk assessment and resolution process.

·         Collaborating with other local and global DLP Leads/SME and IPR Leads/Incident Managers to ensure co-ordination of workload and continuous 24x7 information security operations service provision. Raising cases and following up with support for any issues.

·         Ensuring a comprehensive and smooth hand-over between the global teams as shifts end and begin.

·         Developing and reporting metrics and KPIs related to the Data Loss Prevention mission to management in all areas of responsibility.

·         Managing a highly skilled, efficient, and effective team of DLP Analysts in achieving their responsibilities, which include:

o   Protecting HSBC Internal, Restricted, and Highly Restricted data in relation to the global DLP monitoring & quarantine tool.

o   Following detailed processes and procedures in security incident response lifecycle and its phases to respond to alerts from DLP monitoring/detection systems within defined OLAs and, where appropriate, escalate data breach events.

o   Triaging potentially malicious events to determine severity of the event.

o   Supporting handovers to other teams and countries at the start and end of the working shift.

·         Leading the continued evolution of data loss prevention capabilities and processes, including automation and orchestration

o   Assessing new technology products and projects utilizing security technologies pertinent to the function.

o   Maintaining a strong awareness of regulatory trends, legislation and industry best practice relating to DLP and Identifying and developing new ideas to enhance our DLP monitoring and response capability.

·         Performance management and development of the DLP Analyst team.

o   Acting as a role model to more junior members of the team including training, developing, and mentoring colleagues.

o    

o   Embedding a culture of individual self-improvement, development, and self-directed learning whereby staff are expected to maintain subject matter expertise within their area of focus and within the realm of cyber security more broadly.

o   Ensuring compliance with internal audit and external regulators.

o   Ensuring compliance with HSBC Cybersecurity policies and standards.

·         Collaborating with other teams and industry groups on information security related issues and concerns.

·         Educating Bank staff on personnel risks and controls pertaining to information security-related concepts, compliance, and audit requirements to drive a global up-lift in cyber-security and information protection awareness.

·         Provide Service improvement to the management. Support the fine tuning of Monitoring rules.

·         Responsible for implementing best security practices by understanding the business requirements.

Requisitos

Skills

·         Excellent investigative skills, insatiable curiosity, and an innate drive to win.

·         Proficiency in multiple technical disciplines, analytic and quality assurance techniques.

·         Strong problem-solving and trouble-shooting skills.

·         Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.

·         Proven experience in crisis management, crisis response frameworks and communications. 

·         Demonstrated project and task management skills and ability to track and report progress against established milestones, metrics, and deliverables.

·         Self-motivated and possessing of a high sense of urgency and personal integrity.

·         Instinctive and creative.

·         Quick learner with an ability to share and transfer knowledge.

·         Proficient in preparation of reports, dashboards, and documentation. Experience in maintaining various metrics and SLAs. Banking experience is preferred.

·         Highest ethical standards and values.

·         Experience defining and refining operational procedures, workflows, and processes to support the team in consistent, quality execution of monitoring and detection.

·         Good understanding of HSBC cyber security principles, global financial services business models, regional compliance regulations and laws.

·         An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.

·         Ability to work independently in a fast-paced environment as part of a distributed team with effective communication and collaboration skills.

·         Strong written and oral communication skills. The ability to communicate effectively (clear, concise, and professionally) at all levels within the Bank.

·         Ability to speak, read and write in English, in addition to your local language.

 

Technical Skills

 

·         Must have worked as DLP practitioner/SME and lead the team.

·         Hands-on experience implementing, managing, and monitoring security tools and technologies related to DLP, EDR, IAM, PAM, etc.

·         Hands-on experience in security incident response lifecycle and its phases. Ability to handle, resolve data security incidents minimizing impact and respond to escalations.

·         Strong knowledge of various data security tool & techniques such as DLP, CASB etc.

·         Knowledge of industry cyber security regulations and standards.

·         Knowledge of cyber security frameworks (e.g., ISO27001, NIST 800-53, HITRUST CSF, etc).

·         Knowledge of various DLP systems including but not limited policy creation.

·         Knowledge of risk assessment frameworks, tools, technologies, and methods; experience in planning, researching, and developing security policies, standards, and procedures, then performing testing and evaluation of documentation and controls with remediation recommendations.

·         Good to have knowledge of tools used for network security (CASB, EDR, NIPS, WAF, HIPS, AV, Firewalls, etc).

·         Knowledge of deploying or supporting enterprise logging infrastructure is a plus.

·         Experience with or knowledge of cloud security frameworks on Azure, GCP and AWS is a plus.

 

Industry Experience and Qualifications

 

Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role, as described above. For reference, the typical work experience and educational background of candidates in this role are as follows:

·         10 years of progressive experience in Data security and incident response.

·         4 years of experience in one or more of the following areas:

o   DLP security control maintenance

o   ITIL Foundation knowledge

o   Strong background in Security processes and incident management tools

·         Experience in Information Technology or Information Security/Cybersecurity.

·         Experience within an enterprise scale organisation; including hands-on experience of complex regulatory environments, preferably in the finance or similarly regulated sector.

·         Professional certification of GIAC, SSCP, CISSP, CCSP, MCSE, or CNA/CNE is a plus.

·         Any suitable combination of education, training, or experience is acceptable.

 

 

Due to the urgent hiring need, candidates with immediate right to work locally and no relocation need will be prioritised.

At HSBC we offer our colleagues a greater number of leave days so that they can fully enjoy their wedding, take care of the new member of the family, or grieve the loss of a family member. Our paid leave package is at the forefront in Mexico, now you have one more reason to be HSBC and proudly live a culture of well-being, balance and care.

HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified personsirrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

***Issued By HSBC Electronic Data Process Mexico Private LTD***