1. Home
  2. Business Analyst/IT Operational Risk Analyst/IT Infrastructure Delivery

Offers “HSBC”

Expires soon
HSBC

Business Analyst/IT Operational Risk Analyst/IT Infrastructure Delivery

  • Hyderabad (Hyderābād)
  • IT development
Apply Now

Job description

Group Entity:

Identity and Access Management

Role Profile Date:

Role Title

Analyst – Cyber Security

GHRS Job Code:

Current Global Career Band:

6

Role Purpose (overall high level summary of the role)

The role of the Global Transformation, Implementation and Control (GTIC) team is to leverage Identity and Access Management expertise to centrally manage and coordinate a portfolio of initiatives & activities designed to support and enable the IAM function. These include:
· Risk assessments and control activity to include RCA's compilation and internal and external KPI and KRI reporting and monitoring
· Compliance and regulatory considerations and concerns
· Management of IAM audit points both internal and external to the team
· MSII coordination activities
· Coordination of centralised project initiatives to meet the IAM objectives of more secure, automated and centralised IT Security activities
· Where applicable, implementation of Global tools supporting globalisation and automation initiatives
· Provision of ongoing assurance of processes, approaches and standards across the IAM organisation
· support of large scale transformational activities by provision of programme coordination and support
· facilitation and support of centralised methods of working for the IAM team, to include ownership and development oversight of the sharepoint site
· coordination of significant budgets and resource requests on behalf of the IAM Global team
· SME guidance to the IAM Exco across the activities in which GTIC is involved.

Principal Accountabilities: Key activities and decision making areas

Typical Targets and Measures

Impact on the Business/Function [COMPLETE 3-4 AREAS]
· Working with IAM internal stakeholders, coordinate programme of transition activities, identifying issues and proactively managing resolutions.
· Coordination of significant budgets and resource requests on behalf of the IAM Global team
· Provision of ongoing assurance processes, approaches and standards across the IAM organisation
· Facilitation and support of centralized methods of working for the IAM team.
· Proactively identify improvement opportunities in line with strategic IAM and manage these to handover.

Regular, timely programme activity updates provided to schedule.
Risks identified and tracked and issues proactively managed with regular management updates provided.
Accurate budget plans collated and submitted on time.
Resource requests coordinated with clarity and prioritization.
Assurance processes designed to required standards and managed within agreed timescales with any deviations highlighted at the earliest opportunity. Metrics presented are meaningful to each stakeholder group. Improvement opportunities identified and projects managed to successful completion in terms of time, quality and budget.

Customers / Stakeholders [COMPLETE 3-4 AREAS]
· Build positive relationships with stakeholders across all key teams including BRCM, other IT functions, ISR and Audit.
· Identity opportunities to automate and globalize and manage projects to deliver improvements; thereby increasing customer value.
· Identify requirements and manage Implementation of global tools to support automation and globalization; thereby assisting key stakeholder in the IAM organization to meet overall strategic objectives.

Positive feedback received from broad range of stakeholders.
Improvement initiatives that support strategy identified and managed to delivery.
Tool requirements identified and projects implemented to budget, time and quality agreed.

Leadership & Teamwork [COMPLETE 3-4 AREAS]
· Build proactive and effective relationships with peers in the IAM organization and act as an SME across the activities in which the GTIC team are involved.
· Visibly lead and motivate staff within the broader IAM function in understanding the importance of pursuing excellence across the remit of the GTIC team.

Peers regularly proactively seek advice and expertise from the role holder.
SME assistance provided to broader IT Security teams who seek the role holder's assistance as an SME.
Positive feedback received from broad range of stakeholders.

Operational Effectiveness & Control [COMPLETE 3-4 AREAS]
· Manage the team's audit points and MSIIs
· Coordinate risk assessment and control activity to include RCAs and associated KPI and KRI reporting.
· Provide diligent oversight over all regulatory and compliance matters to ensure IAM is both globally & regionally compliant.

All audit points and MSIIs are managed to successful completion with timely updates.
Relevant and accurate RCAs are maintained with KPI and KRI reporting designed and regularly reported, any potential exceptions escalated prior to breach and at the earliest opportunity.
Regulatory and compliance matters managed diligently with attention to timelines and ensuring all stakeholders are appropriately updated.

Major Challenges (The challenges inherent in the role that require a continual test of the role holder's abilities)

· Achieving global consistency against a backdrop of regional variation.
· Delivering tool and technology changes against a backdrop of complex internal and external requirements.
· Working with a large number of diverse stakeholders and building positive working relationships in a new organizational framework such that swift delivery of solutions to support IAM Objectives can commence.
· Driving cultural change across a broad range of teams who are not direct reports.
· Drawing together the feedback from all relevant stakeholders and converting disparate needs and desires to a realistic commercial business case and cost reduction.
· Understanding, monitoring and balancing the challenges of swift implementation in a risk adverse climate.
· Working across time zones, regions and cultures to drive change and uphold and enhance quality with a small number of FTE will require a carefully considered efficient and effective approach.
· Influencing stakeholders across all levels of the organization.
· Maintaining a continually responsive approach to both regulatory and legal initiatives outside the jobholder's control in conjunction with an awareness of the business environments supported.
· Maintaining Security focused Subject Matter Expertise in order to support continual evolution of approaches.
· Proactively developing the role, contribution and remit of the GTIC team whilst multi tasking on a daily basis to manage a broad range of requirements.

Role Context (The environment and operating conditions of the role including the extent of guidance and authority)

· Contribute to the GTIC team's broad set of deliverables.
· Required to independently and proactively identify requirements and expand the team's remit to assist in meeting strategic IAM and HSBC objectives.
· Flexible approach as required in terms of working hours and/or travel to locations away from base on a number of occasions each year; however full use of remote working technology solutions should be made where possible.
· Close ongoing liaison with Head of GTIC


Management of Risk (Operational Risk / FIM requirements)

The jobholder will also continually reassess the operational risks associated with the role and inherent in the business, taking account of changing economic or market conditions, legal and regulatory requirements, operating procedures and practices, management restructurings, and the impact of new technology.

This will be achieved by ensuring all actions take account of the likelihood of operational risk occurring.
Also by addressing any areas of concern in conjunction with line management and/or the appropriate department.

Observation of Internal Controls (Compliance Policy / FIM requirements)

The jobholder will also adhere to and be able to demonstrate adherence to internal controls. This will be achieved by adherence to all relevant procedures, keeping appropriate records and, where appropriate, by the timely implementation of internal and external audit points, including issues raised by external regulators.

The jobholder will implement the Group compliance policy by containing compliance risk in liaison with Global Head of Compliance, Global Compliance Officer, Area Compliance Officer or Local Compliance Officer. The term ‘compliance' embraces all relevant financial services laws, rules and codes with which the business has to comply.

This will be achieved by adhering to all relevant processes/procedures and by liaising with Compliance department about new business initiatives at the earliest opportunity. Also and when applicable, by ensuring adequate resources are in place and training is provided, fostering a compliance culture and optimising relations with regulators.

Role Dimensions (e.g. balance sheet size, lending/expenditure limits, size/volume of transactions, budget)

· No direct budget responsibility but requirement to be mindful of budget constraints.

Headcount reporting to this role

Direct:

Indirect:

Total:

Knowledge & Experience / Qualifications (For the role – not the role holder. Minimum requirements of the role.)

· Experience and Subject Matter expertise in a Security related discipline, preferably across different geographic locations.
· Experience managing and tracking audit and MSII improvements.
· Understanding of the RCA process and management of risk.
· Experience and knowledge of processes to support delivery of Identity and Access Management.
· Proven ability to lead a team delivering a large number of varied initiatives whilst ensuring high quality delivery.
· Proven ability to understand high level technical implications and limitations when coordinating technical programme delivery.
· Proven experience overseeing operational approaches and tools and assessing effectiveness.
· Proven experience in setting organizational direction and communicating and implementing overall strategic goals.
· Highly self-motivated and proactive with very well developed analytical reasoning and communication skills.
· Experience delivering significant transformational initiatives and managing multiple simultaneous initiatives with a broad range of stakeholders.
· Excellent proven presentation and conflict resolution skills.
· Excellent communication, influencing and interpersonal skills – Leads by example, promotes 2-way communication, tailoring own style and approach to meet audiences needs, win confidence and credibility
· Understanding of sharepoint use and set up useful experience.
.

Desired profile

Qualifications :

Qualification - Graduation

Make every future a success.
  • Job directory
  • Business directory
    •