GSC: Cybersecurity Control Design Manager - 274496

ID del contrato

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunity

Whilst the job holder will be based in Krakow, Poland, this is a Global role covering Global Cybersecurity Controls applicable to all countries and legal entities

Cybersecurity Controls Design Manager will play a key role in the design and maintenance of the Cybersecurity control environment. The role holder will be tasked with defining and maintaining operational controls instances, their measurements as well as Policies, Procedures and Standards for Group Cybersecurity.

What you’ll do

• Working with the Control Owners, ERM and GCIO CCO to ensure that the Cybersecurity owned controls in the Risk and Controls Library are designed according to the Bank’s requirements and industry standards and best practices (e.g. NIST 800-53);
• Working with the Control Owners and other stakeholders to ensure that Cybersecurity control measurements are defined in accordance with HSBC’s KCI Design Framework and industry best practices (CIS);
• Working with CSAT and GCIO CCO teams to ensure that the defined controls are compliant with Legal/Regulatory/Mandatory requirements and that measurements provide sufficient data for stakeholder reports;
• Design, manage and maintain Policies, Procedures and Standards for Cybersecurity controls, covering all areas across Engineering, Operations and Security Assessment and Testing.

What you need to have to succeed in this role

• Strong Risk and Controls Background
• Significant, subject matter expertise in Control Management. This includes but is not limited to controls design and implementation and control assessment;
• Ability to translate difficult IT concepts into business-friendly language;
• Experience with Technology risks and controls.
• Knowledge of Cybersecurity – at least a generalist with specialist area expertise welcome. Well understanding of Management Domain will be a plus.
• Understanding of metrics and measures in managing risks and controls (KCIs, KRIs, KPIs) is a must;
• Technical writing skills and highly proficient use of written English is required to ensure quality output for Control, Policies, Procedure and Standards design and maintenance.
• Strong stakeholder management and communications skills
• Experience of working at an operational level in international environments which drive a true international perspective;
• Team-oriented mentality combined with ability to complete tasks independently to a high quality standard

What we offer

• Competitive salary
• Annual performance-based bonus
• Additional bonuses for recognition awards
• Multisport card
• Private medical care
• Life insurance
• One-time reimbursement of home office set-up (up to 800 PLN).
• Corporate parties & events
• CSR initiatives
• Financial support with trainings and education
• Nursery discounts
• Social fund
• Flexible working hours
• Free parking

If your CV meets our criteria, you should expect the following steps in the recruitment process:

• Online behavioural test (for external candidates)
• Telephone screen (for external candidates)
• Job interview with the hiring manager

We are looking to hire as soon as possible so don’t wait and apply now!

You'll achieve more when you join HSBC.

We thank all interested candidates for their applications. We reserve the right to contact only selected candidates.

In case you would like to resign from participation in recruitment process or withdraw previously sent to us application, please email us at: krakow.recruitment@hsbc.com