HSBC Group

If you’re looking for a career where you can make a real impression, join Global Service Center (GSC) HSBC and discover how valued you’ll be. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role of Head of Cybersecurity Service Stability

Our Technology teams work closely with HSBC’s Global Businesses to design and build digital services that allow millions of our customers around the world to bank quickly, simply, and securely. We run and manage our Technology infrastructure, datacentres and core banking systems that power the world’s leading international bank, with one of the largest technology estates in the industry.

We are looking for a technology leader to join us to shape and turbo-charge our management of key Cybersecurity IT services and tools, which enable the bank to manage its cyber risk every day, in every market. This includes maturing our current practice to meet service resilience goals, contributing to the bank’s technology transformation programmes and communities of practice, and driving the expansion/uplift of our capabilities across Cyber from approximately 35 services to ~200. Technologies in-scope of this role include (but are not limited to): EDR, SIEM/SOAR, data security, vulnerability management, identity management and network security technologies – with a mixture of in-house and 3rd party products. The incumbent team of 50 FTE will be grown to deliver the above.

The future role-holder will be key in driving Cybersecurity’s vision of Engineering Excellence: building a world-class engineering capability, empowering HSBC to successfully navigate cyber risk with innovative, responsive, and frictionless technologies and services. A culture driven by empowerment, experimentation, learning, partnership, and delivery. A place where engineers thrive, solving meaningful problems that keep the bank and its customers safe. The role-holder will report to the Group Head of Cybersecurity Defence & Engineering.

Main Activities:

• Lead Production Support for Cybersecurity’s technology services and tooling across the bank. Includes: ensuring leadership of major IT incidents involving cybersecurity services and providing 24x7 incident management for all Cyber IT Services (opt-out by agreement). Includes: providing L1 and L2 support, and continuous monitoring and response services for system events, ensuring their triage and timely resolution. Includes supporting the negotiation and integration of 3rd party (inc. SaaS) tool production support services.
• Lead Problem Management for Cybersecurity’s technology services and tooling across the bank. Includes: driving problem prioritisation, steering, support and tracking to sustainable resolution. Includes conducting thematic assessments to proactively uplift practice and services learning from previous events.
• Lead hygiene management for Cybersecurity’s technology services and tooling across the bank. Includes: delivering infrastructure and agent patching services, consuming and/or building respective automation; ensuring hygiene approaches are defined with Cyber IT Service Owners and maintained; driving vulnerability remediation across Cyber’s tech-stack; and driving central coordination, oversight, delivery, roadmaps and maturity uplift of evergreening practice.
• Lead communities of practice for all Cyber IT Service Owners, including DevOps teams where activities are federated, for relevant themes (and act as Cyber’s delegate for communities across technology) including service continuity planning, data back-up and recovery, and inventory management among others. Recommends and oversees respective goals and targets across Cyber. Identifies opportunities to assist Cyber IT Service Owners with commodifiable tasks, either by creating a support service or overseeing the out-sourcing of such activities to 3rd parties as appropriate.
• Drive Observability practise uplift across Cybersecurity’s technology services and tooling across the bank. Includes: ensuring teams have agreed roadmaps to uplift logging, monitoring, and alerting capabilities; provides a CoE on observability best practise and adoption; optimises related observability technology use (e.g. Splunk ITSI).
• Drives endpoint agent lifecycle management for all Cyber endpoint agents and sensors. Includes: working across Technology to delivery simplification of agent management via embedding agents in standard builds, automated testing, automated maintenance via Ansible/Terraform/Chocolatey etc.
• Develops and inspire a team of highly experienced cybersecurity engineers across multiple markets to meet our strategic aims.
• Creates a close partnership with Capability Engineering teams to deliver support for new products and services. Engaged in the handover of the product to service support teams throughout their operationalisation, including defining service levels / thresholds, and that runbooks exist and are maintained.

• An inquisitive approach, always asking how to achieve goals in a smarter and more effective way.
• An ability and interest to learn and experiment with new approaches to achieve business and cybersecurity outcomes, in different and often challenge contexts
• Possess strong leadership skills to bring out the best in a team. This includes both direct leadership and cross-functional capabilities.
• Experience within fast-moving, complex, and demanding corporate environments and able to provide appropriate direction to the team whilst dealing with ambiguity and change.
• Act as a role-model for more junior members of Cybersecurity and Technology.
• Ability to engage with and influence senior peers and leadership.
• Managing, developing, and retaining high-performing individuals in different geographies, often remotely.
• Ability to prepare concise presentations, reports, and updates for senior management.
• Proven experience in technology leadership roles, running high performing technology teams.
• Proven experience working in a large scale, multi-national and technologically diverse environment.
• Proven experience in production support, technology incident management or problem management roles.
• Experience in continuous improvement and process optimisation.
• Experience in automation tool such as Ansible, Puppet, Chef, or equivalent.
• Knowledge of cybersecurity technologies such as firewalls, IP/DS, endpoint security solutions, and security information and event management systems a plus
• Knowledge and exposure of the application of Risk and Control Management and associated frameworks, preferably from a multi-market institution.
• Ability to articulate technical threats, scenarios, controls, and risks to both technical and business stakeholders.
• Influential, credible, and persuasive, active listener, embraces HSBC Values, shows good judgement, and demonstrates high level of communication skills to achieve effective stakeholder management.

Due to the urgent hiring need, candidates with immediate right to work locally and no relocation need will be prioritised.

At HSBC we offer our colleagues a greater number of leave days so that they can fully enjoy their wedding, take care of the new member of the family, or grieve the loss of a family member. Our paid leave package is at the forefront in Mexico, now you have one more reason to be HSBC and proudly live a culture of well-being, balance and care.

HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

***Issued By HSBC Electronic Data Process Mexico Private LTD***