职位描述
此招聘广告仅提供英文版,敬请知悉
(Grade: GCB4)
Digital Business Services (DBS)
Our GCIO organisation plays a critical role for the bank. This team partners with the businesses to build the platforms, systems, and products that our customers use every day. We keep people’s money and data safe, and are at the forefront of driving innovation for our businesses, customers, and colleagues.
We are currently seeking an experienced professional to join our team.
In this role, you will:
DevOps Strategy and Automation:
• Lead the design and implementation of secure, automated CI/CD pipelines to streamline development, testing, and deployment of banking applications.
• Implement Infrastructure as Code (IaC) using tools like Terraform or Ansible to provision and manage secure, scalable infrastructure.
• Automate security scanning, compliance checks, and vulnerability management within development workflows using tools like Snyk, SonarQube, or Aqua Security.
• Drive adoption of DevSecOps best practices to embed security into the software development lifecycle (SDLC).
Incident Support:
• Collaborate with the production support team to troubleshoot and resolve production incidents, ensuring minimal downtime for critical banking systems (e.g., core banking, payment platforms).
• Provide technical expertise during incident response, focusing on identifying security-related issues and implementing rapid fixes.
Collaboration and Coordination:
• Work closely with production support and application teams to integrate secure DevOps practices into operational workflows.
• Partner with the bank's operation resilience project team to align on security and resilience initiatives, ensuring compliance with regulatory requirements.
• Coordinate with global and regional SRE and DevOps teams to maintain consistency in tools, processes, and security standards across distributed systems.
Security and Compliance:
• Ensure banking systems comply with China's regulatory requirements (e.g., Cybersecurity Law, data localization) and global banking standards.
• Implement secure coding practices, secrets management (e.g., HashiCorp Vault), and encryption to protect sensitive financial data.
• Conduct regular security assessments and audits to identify and mitigate risks in production environments.
Monitoring and Observability:
• Deploy and maintain monitoring tools (e.g., Prometheus, Grafana, Splunk) to track system performance, security events, and compliance metrics.
• Develop dashboards and alerts to proactively detect and respond to potential issues in production systems.
Process Improvement:
• Optimize CI/CD pipelines, deployment processes, and security workflows to reduce lead time, improve deployment frequency, and enhance system reliability.
• Collaborate with SRE teams to integrate reliability and security practices into automated workflows.
Team Leadership and Mentorship:
• Lead and mentor a team of DevSecOps engineers, fostering a culture of security-first development, automation, and collaboration.
• Provide training and guidance on DevSecOps tools and practices to development and operations teams.
要求
To be successful in the role, you should meet the following requirements:
• Education:
Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field. Advanced degrees or certifications (e.g., AWS Certified DevOps Engineer, CISSP, CISM) are a plus.
• Experience:
Minimum of 7 years of experience in DevOps, DevSecOps, or related roles, with at least 3 years in a leadership or senior engineering role.
Proven experience in automating CI/CD pipelines and implementing security practices in a financial services or banking environment.
Experience supporting production support teams during incidents, with a focus on rapid resolution and root cause analysis.
Familiarity with coordinating with global/regional SRE and DevOps teams in a distributed environment.
• Technical Skills:
CI/CD Pipelines: Expertise in Jenkins, GitLab CI, GitHub Actions, or CircleCI for building secure, automated pipelines.
Infrastructure as Code: Proficiency in Terraform, CloudFormation, or Ansible for automated infrastructure provisioning.
Cloud Platforms: Deep knowledge of AWS, Azure, or GCP for managing secure, scalable infrastructure. Knowledge of Ali Cloud would be an advantage.
Containerization: Experience with Docker, Kubernetes, or Helm for secure containerized deployments.
Security Tools: Proficiency in Snyk, SonarQube, Aqua Security, or Checkmarx for vulnerability scanning and code analysis.
Secrets Management: Familiarity with HashiCorp Vault, AWS Secrets Manager, or similar for secure key management.
Monitoring: Expertise in Prometheus, Grafana, Splunk, or Datadog for observability and security monitoring.
Programming/Scripting: Strong skills in Python, Bash, or Go for automation and tool development.
Networking: Knowledge of TCP/IP, load balancing, and firewalls for secure system connectivity.
Version Control: Proficiency with Git for managing code and infrastructure changes.
• Communication Skills:
Excellent verbal and written communication skills in English and Mandarin to engage with local teams, global/regional SRE and DevOps teams, production support, and the operation resilience project team.
Ability to explain complex technical and security concepts to non-technical stakeholders, including bank operations and compliance teams.
• Soft Skills:
Strong problem-solving skills and the ability to remain calm under pressure during critical incidents.
Leadership and mentorship abilities to guide teams in adopting DevSecOps practices.
Proactive mindset with a focus on driving automation, security, and operational efficiency.
• Additional Requirements
Willingness to participate in on-call rotations to support production incidents.
Ability to work across time zones to coordinate with global and regional teams.
Strong understanding of banking systems (e.g., core banking, payment platforms) and compliance with local and global regulations.
Interested employees please ensure that you submit your application before Unposting Date (as below).
For employees with less than 12 months in the same role, please obtain and attach your current functional manager's (and entity manager’s if you are a Regulatory Approval/Filing Required Role) approval in the application.
Please ensure to completely understand the 'Internal Job Application Guidance' below and adhere to it before you submit a job application.
https://hsbchrdirect.service-now.com/esc?id=kb_article&sys_id=69c810a51b659690ff35fe64164bcb83&spa=1
For details, please contact Jingle Ji at (021) 38882092 Tie Line 82092 [jinglelji@hsbc.com.cn]
You’ll achieve more at HSBC.
HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within and inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.
Issued by HSBC Bank (China) Company Limited
招聘人员名称
Ling Ji
招聘人员电子邮件
jinglelji@hsbc.com.cn