1. Home
  2. IT development
  3. Head of Cyber Service Resilience

Offers “HSBC”

New
HSBC

Head of Cyber Service Resilience

  • Chine, Moçambique
  • IT development
Apply Now

Job description

Job description

Some careers have more impact than others.
If you’re looking for a career where you can make a real impression, join HSBC and discover how valued you’ll be.

We are currently seeking an experienced professional to join our team in the role of Head of Cyber Service Resilience

Business: Cybersecurity

Principal responsibilities 
Our Technology teams work closely with HSBC’s Global Businesses to design, build and run digital services that allow millions of our customers around the world to bank quickly, simply and securely. We run and manage our Technology infrastructure, datacentres and core banking systems that power the world’s leading international bank, with one of the largest technology estates in the industry.

We are looking for a technology leader to join us to shape and turbo-charge our management of key Cybersecurity IT services and tools, enabling the bank to manage our cyber risk every day, in every market. This includes maturing current practice to meet service resilience goals, contributing to the bank’s technology transformation programmes and communities of practice, and driving the expansion/uplift of our capabilities across Cybersecurity from approximately 35 services to ~180. Technologies in-scope of this role include (but are not limited to): EDR, SIEM/SOAR, data security, vulnerability management, identity management and network security technologies – with a mixture of in-house and 3rd party products. The incumbent team of 50 FTE will be grown to deliver the above.

The future role-holder will be key in driving Cybersecurity’s vision of Engineering Excellence: building a world-class engineering capability, empowering HSBC to successfully navigate cyber risk with innovative, responsive and frictionless technologies and services. A culture driven by empowerment, experimentation, learning, partnership and delivery. A place where engineers thrive, solving meaningful problems that keep the bank and its customers safe. The role-holder will report to the Group Head of Cybersecurity Defence & Engineering. 

- Lead Production Support for Cybersecurity’s technology services and tooling across the bank. Includes: ensuring leadership of major IT incidents involving cybersecurity services and providing 24x7 incident management for all Cyber IT Services (opt-out by agreement). Includes: providing L1 and L2 support, continuous monitoring and response services for system events, ensuring their triage and timely resolution. Includes supporting the negotiation and integration of 3rd party (inc. SaaS) tool production support services.
- Lead Problem Management for Cybersecurity’s technology services and tooling across the bank. Includes: driving problem prioritisation, steering, support and tracking to sustainable resolution. Includes conducting thematic assessments to proactively uplift practice and services learning from previous events.
- Lead hygiene management for Cybersecurity’s technology services across the bank. Includes: delivering infrastructure and agent patching, consuming and/or building respective automation; ensuring hygiene approaches are defined and maintained; driving vulnerability remediation across Cyber’s tech-stack; and driving central coordination, oversight, delivery, roadmaps, and maturity uplift of evergreening practice.
- Lead communities of practice for Cyber IT Service Owners for relevant themes and acting as Cyber’s delegate for communities across technology: service continuity planning, data back-up and recovery, and inventory management among others. Recommends and oversees respective goals and targets across Cyber. Identifies opportunities to assist Cyber IT Service Owners with commodifiable tasks, either by creating a support service or overseeing the out-sourcing of such activities to 3rd parties as appropriate.
- Drive Observability practise across Cybersecurity’s technology services across the bank. Includes: ensuring teams have agreed roadmaps to uplift logging, monitoring and alerting capabilities; provides a CoE for observability best practise and adoption; optimises related observability technology use (e.g. Splunk ITSI). 
- Drives endpoint agent lifecycle management for all Cyber endpoint agents and sensors. Includes: working across Technology to delivery simplification of agent management via embedding agents in standard builds, automated testing, automated maintenance via Ansible/Terraform/Chocolatey etc.
- Develops and inspire a team of experienced engineers across multiple markets to meet our strategic aims.
- Creates a close partnership with Capability Engineering teams to deliver support for new products and services. Engaged in the handover of the product to service support teams throughout their operationalisation, including defining service levels / thresholds, and that runbooks exist and are maintained.

Requirements

Successful candidates have proven skills and experience similar to the below:
Mindset
• An inquisitive approach, always asking how to achieve goals in a smarter and more effective way.
• An ability and interest to learn and experiment with new approaches to achieve business and cybersecurity outcomes, in different and often challenge contexts.

Effective Leadership
• Possess strong leadership skills to bring out the best in a team. This includes both direct leadership and cross-functional capabilities.
• Experience within fast-moving, complex and demanding corporate environments and able to provide appropriate direction to the team whilst dealing with ambiguity and change.
• Act as a role-model for more junior members of Cybersecurity and Technology.

Mature stakeholder management and communications skills
• Ability to engage with and influence senior peers and leadership.
• Managing, developing and retaining high-performing individuals in different geographies, often remotely.
• Ability to prepare concise presentations, reports and updates for senior management.

Deep Technical background 
• Proven experience in technology leadership roles, running high performing technology teams.
• Proven experience working in a large scale, multi-national and technologically diverse environment.
• Proven experience in production support, technology incident management or problem management roles.
• Experience in continuous improvement and process optimisation.
• Experience in automation tool such as Ansible, Puppet, Chef, or equivalent.
• Knowledge of cybersecurity technologies such as firewalls, IP/DS, endpoint security solutions, and security information and event management systems is a plus.

Strong Risk and Controls understanding
• Knowledge and exposure of the application of Risk and Control Management and associated frameworks, preferably from a multi-market institution.
• Ability to articulate technical threats, scenarios, controls and risks to both technical and business stakeholders. 

Effective Interpersonal Skills
• Influential, credible and persuasive, active listener, embraces HSBC Values, shows good judgement and demonstrates high level of communication skills to achieve effective stakeholder management.

Some travel will be required.

HSBCTL1/GZ*

About HSBC Technology China

We develop, implement and support software and IT services and processes that allow HSBC to remain at the forefront of high-quality banking systems.

The chosen candidate for this role will be required to undergo enhanced vetting. Subject to local laws, this will require the individual to satisfactorily pass a series of additional checks as part of the recruitment process and on an ongoing basis, if appointed to the role. HSBC Group reserves its position with regard to any steps which it may take in relation to any material adverse findings which arise either when the checks are originally completed, and/or if relevant, on an ongoing basis. For more information about the enhanced vetting for this role please contact the recruiter for this role.

You’ll achieve more when you join HSBC. 

HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.” 

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Make every future a success.
  • Job directory
  • Business directory
    •