GSC: Senior Security Researcher - 272659

Job Advert Details

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunity

The Cybersecurity Research and Offensive Security (CROS) function is building up its capabilities to form a global team of highly skilled security researchers.

The Security Research team, within the Global CROS function, provides a specialist approach to assessing the security of systems and technology, identifying previously unknown vulnerabilities and new attack techniques. Additionally, the Security Research team supports the wider CROS function by developing tools and automation of processes to enhance security assessment.

The role holder will be responsible for leading, managing and delivering CROS security research projects, on a wide range of technologies to ensure that HSBC is well positioned against a variety of Cybersecurity related advanced attack scenarios.

What you’ll do

• Deliver security research projects focused on HSBC critical services and projects to ensure that design, quality and implementation of controls do not expose the bank to a significant level of risk.

• Achieve excellence by driving performance, compliance and security.

• Identifying previously unknown vulnerabilities and new attack techniques.

• Develop tools and automation of processes to enhance security assessment.

• Work with key stakeholders to proactively drive the reduction in Cybersecurity risks and to improve the security risk posture of HSBC within the business risk appetite.

• Provide subject matter expertise and guidance to a broad range of stakeholders across global business and functions.

• Engage with a diverse set of stakeholders in order to achieve CROS objectives, including Business and Functions, Cybersecurity leads, Head of Cybersecurity functions and Control Owners.

• Engage with specialist technology functions such as, Cybersecurity Technology, Cybersecurity Operations and Security Architecture.

What you need to have to succeed in this role

• Experience in vulnerability identification and exploitation.

• Demonstrated experience in network security, embedded systems & hardware hacking.

• Understanding of analysis of mobile technologies.

• Demonstrated experience in third party vulnerability disclosure, source code review and penetration testing.

• Demonstrated experience in black box software security review techniques, including ‘fuzzing’ and reverse engineering.

What we offer

• Competitive salary

• Annual performance-based bonus

• Additional bonuses for recognition awards

• Multisport card

• Private medical care

• Life insurance

• One-time reimbursement of home office set-up (up to 800 PLN).

• Corporate parties & events

• CSR initiatives

• Nursery discounts

• Financial support with trainings and education

• Social fund

• Flexible working hours

• Free parking

If your CV meets our criteria, you should expect the following steps in the recruitment process:

• Online behavioural test (for external candidates only)

• Telephone screen (for external candidates only)

• Interview with the hiring manager

We are looking to hire as soon as possible so don’t wait and apply now!

You'll achieve more when you join HSBC.

We thank all interested candidates for their applications. We reserve the right to contact only selected candidates.

Applications sent to us will be taken into consideration only if they include the following statement:

“I hereby declare that I have familiarized myself with the Privacy Statement for Applicants published at http://www.about.hsbc.pl/careers and I hereby give consent for personal data included in my application to be processed for the purposes of recruitment in HSBC Service Delivery (Polska) Sp. z o. o. according to rules described in the Privacy Statement for Applicants, as per the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).”

In case you would like to resign from participation in recruitment process or withdraw previously sent to us application, please email us at: krakow.recruitment@hsbc.com