Job description
Some careers have more impact than others.
If you’re looking for a career where you can make a real impression, join HSBC and discover how valued you’ll be.
We are currently seeking an experienced professional to join our team in the role of Lead IT Security Analyst
Business: Cybersecurity
Principal responsibilities
You will be a key part of the CSAT Vulnerability Management Reporting Team, aligning into the Head of the team. The role holder will be tasked with designing, building, and maintaining Cybersecurity reporting capabilities, and will be responsible for providing data insights, thematic reporting on large datasets.
Key Responsibilities
DATA
• Performing quantitative and observational data analysis.
• Documenting development efforts as required by change management practices.
• Providing insights into large datasets – validation, data quality and metrics.
• Accurately completing MI and other business data requirements and presenting supporting statistics / reports / returns to business / management within agreed timescales.
REPORTING
• Providing detailed and accurate reporting of Vulnerability data to help drive and prioritise risk based remediation.
• Producing routine operational reports by exporting data from existing sources (Databricks and SQL Server).
• Reviewing automated reports for data variances and creating/ implementing action plans to resolve identified issues.
• Ensuring clear and concise senior management reporting.
• Maintaining operational documentation on what reports are available and how to access and utilise existing filters.
• Maintaining the documents associated with the Standard Operating Procedures (SOPs) for the creation, maintenance, and alteration of standard management reports.
• Continual improvement in the depth and breadth of reporting capabilities against the Vulnerability Management control to support improvements in the bank’s security posture.
• Thematic analysis of trending and identifying opportunities for control improvements through changes to or additional key control or risk indicator metrics.
• Reporting Cybersecurity Metrics at all levels of the organisation
• Providing executive dashboards and senior management and board level
• Designing and producing of Key Control Indicators (KRIs / KCIs / RIs / KMIs), working together with Global Cybersecurity Control Owners
• Sourcing and providing a consistent commentary with business focus, highlighting key Cybersecurity themes across the group, supporting the metrics
• Designing, building, delivering, and maintaining multiple MI report products for key Cybersecurity stakeholders.
• Building and maintaining Cybersecurity MI knowledgebase on key controls information, data documentation, business processes, and team expertise.
• Working Closely with Cyber Sciences & Analytics team to progress dashboard development
• Attending key management meetings to support discussions of the reports and underlying data.
• Supporting the preparation of required governance and control meeting submissions for Vulnerability Management reporting, and/ or information requests from regulators/ Audit/ 2LoD.
• Ad hoc tasks as required; including support to other operational and governance activities within CSAT.
Requisitos
• Experience developing and implementing enterprise scale reports and dashboards in Power BI.
• Understanding and experience of using Structured Query Language (SQL).
• Knowledge of logical and physical data modelling concepts (relational & Dimensional).
• Knowledge of Azure cloud (Databricks & SQL Analytics).
• Understanding of Cybersecurity concepts such as threats, vulnerabilities
• Intermediate VBA Scripting skills.
• Intermediate/advanced Python Scripting skills.
• Experience with Excel macros, advanced formulas and pivot table functions; manipulation of large data sets
• High level of integrity and strong ethical values.
• Excellent organisational, administrative, analytical, problem solving and data management skills with the ability to work accurately and methodically whilst under pressure.
• Excellent written and oral communication skills, including the ability to work on reports/ presentations for senior management, and present to large audiences.
• Strong interpersonal skills with the ability to build effective working relationships with colleagues and work well as part of a team.
• Pro-active, independent, flexible approach to shifting or competing priorities.
• Proven track record on delivering activities on time to a high standard.
• Excellent understanding of SharePoint, Microsoft Teams and Confluence.
• Ability to work remotely.
About HSBC Technology China
We develop, implement and support software and IT services and processes that allow HSBC to remain at the forefront of high-quality banking systems.
You’ll achieve more when you join HSBC.
HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.”
Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.
***Issued By HSBC Software Development (GuangDong) Limited***