1. Home
  2. IT Security/Analyst/Cyber Security

Offers “HSBC”

Expires soon
HSBC

IT Security/Analyst/Cyber Security

  • Hyderabad (Hyderābād)
  • IT development
Apply Now

Job description

Location : Hyderabad

Designation : Analyst

Role Purpose (overall high level summary of the role)

• Protect and maintain the Confidentiality, Integrity and Availability of the Group's information assets in accordance with Group Policy and Standards thus preventing potentially serious financial loss through fraud or inability to provide computer services. Defend for Today and Prepare for the Future
• Ensure the establishment and consistent implementation of Cybersecurity policy and standards,
• Assist in securing IT services to Group Standards,
• Investigating and responding to security incidents;
• Co-ordinate and assist in implementation of local security policies and standards in accordance with Group policy

Principal Accountabilities: Key activities and decision making areas

Typical KPIs and Targets

Impact on the Business
· Coordinate global email account – respond to general queries and provide advice and guidance on HSBC security policies, standards and procedures, new project engagement enquiries, adhoc requests i.e. whitelisting requests, change requests etc. etc.
· Coordinate the allocation about Self Service queue: review engagement requests to verify the details, ensure the appropriate services have been selected and the required information and documentation has been submitted (involving systems and/or third parties).
· Project Consultancy Support through the comet requests. This includes Cybersecurity team’s involvement, Cybersecurity requirements, security reviews / tests, third-party security reviews, progress tracking and communication to all stakeholders.
· Meet expectations of internal Stakeholders through delivering a high quality of service, meeting their needs and demonstrating the added value of service provided.

· Understanding the project requirement, comet updates.
· Completion of projects on time
· Achieve ‘trusted partner’ status with all Stakeholders.
· Understanding the project requirement, build up the security setup for manage security services,

Customers / Stakeholders
· Escalate and reach out for assistance from other Cybersecurity Lead in order to provide the required advice or guidance, prioritisation, resource assignment
· Communicate to the Cyber Security Engagement Consultant and/or Lead any information or issues with particular engagements/line of business/functions, and share any feedback/views from the service requester or Global Business / Function.
· Acquire good process knowledge and be informed of all new updates/additions and functions.
· Maintain and update Comet and JIRA’s Task system to reflect progress, go-live dates or other relevant project updates (provide final status about Security NFR).
· Resolve problems and make decisions based on sound, rational judgment and stakeholder needs. Provide suggestions for the improvement of existing
security setup.

· All actions / information gathered recorded in the tool
· Customer Feedback mails / surveys.
· Realize measureable improvements in customer satisfaction and service quality.
· Provide security support to IT Development, IT delivery teams.

Leadership & Teamwork

· Team Interaction & Training and Knowledge Sharing

· Should be a team player and maintain congenial work environment.
· Flexibility.
· Provide training to the team members on the security setup for management and processes follow in handlingthe setup. Knowledge sharing between the team
· members on various security technologies

Operational Effectiveness & Control
· Ensuring strict adherence to all regulatory issues and
Compliance of all internal controls.

· Implement and comply with Group Compliance Policy
· Should deliver considering the operational risk associated with the role.

Major Challenges (The challenges inherent in the role that require a continual test of the role holder’s abilities)

The principal challenges of this role include:
• Dealing with rapid and on-going changes in technology resulting in new Cybersecurity vulnerabilities
• Keeping up to date with Local Regulatory and Compliance related issue to understand their impact from a Cybersecurity point of view.
• Maintaining an independent and informed assessment of commercial risk and the appropriate application of IT controls.
• Assist in managing the broad scope of skills required by Cybersecurity.
• Maintaining an understanding of relevant business requirements and issues.
• Technical capability: Continuously upgrading and learning various technologies and various security issues associated with it

Role Context (The environment and operating conditions of the role including the extent of guidance and authority)

HTI fully owned subsidiary of the HSBC Group with resources dedicated to the development of software solutions for the HSBC Group. The business model of HOST - HTI is that of a dedicated captive software arm. It services IT which in turn services the business needs of the HSBC Group. With over 8500 resources spread across multiple locations, it has a top-down view of the HSBC Group’s Software Footprint. The services it offers are Software Engineering, Engineering Analysis and Design, ITID, Cybersecurity, Business Analysis, Test Execution and Analysis. The HSBC Group has embarked on a strategy of moving to common systems and processes globally, to further leverage it’s global reach, and to reduce IT and Operating costs and maximize shareholder return. HOST – HTI has traditionally been at the heart of development and support of HSBC systems and is now called upon to leverage its engineering talent in the engineering of new systems, re-engineering of legacy applications and the deployment thereof.

This role is required regularly to work with, amongst others:
a. Business Units –Ensure Cybersecurity controls are in place, adequate and protect the business.
b. Support Areas –Ensure requisite Cybersecurity support for internal operations and other support activities

Management of Risk (Operational Risk / FIM requirements)

The jobholder will also continually reassess the operational risks associated with the role and inherent in the business, taking account of changing economic or market conditions, legal and regulatory requirements, operating procedures and practices, management restructurings, and the impact of new technology.

This will be achieved by ensuring all actions take account of the likelihood of operational risk occurring.
Also by addressing any areas of concern in conjunction with line management and/or the appropriate department

Observation of Internal Controls (Compliance Policy / FIM requirements)

· Maintains HSBC internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.
· The jobholder will also adhere to and be able to demonstrate adherence to internal controls. This will be achieved by adherence to all relevant procedures, keeping appropriate records and, where appropriate, by the timely implementation of internal and external audit points, including issues raised by external regulators.
· The jobholder will implement the Group compliance policy by containing compliance risk in liaison with Global Head of Compliance, Global Compliance Officer, Area Compliance Officer or Local Compliance Officer. The term ‘compliance’ embraces all relevant financial services laws, rules and codes with which the business has to comply.
· This will be achieved by adhering to all relevant processes/procedures and by liaising with Compliance department about new business initiatives at the earliest opportunity. Also and when applicable, by ensuring adequate resources are in place and training is provided, fostering a compliance culture and optimising relations with regulators.

Role Dimensions (e.g. balance sheet size, lending/expenditure limits, size/volume of transactions, budget. in USD’000)

· Completes 100 requests (included all type of tasks of engagement support)

Desired profile

Qualifications :

Knowledge & Experience / Qualifications ( For the role – not the role holder. Minimum requirements of the role.)

·  2+ years proven and broad-based IT experience or equivalent, including experience of Cybersecurity related activity or equivalent.
·  University degree in information systems, or a related field, or equivalent experience;
·  Basic technical, Basic management, Strong problem-solving, lateral thinking, planning, organizational, communication and interpersonal skills
·  Ability to work and communicate effectively and articulately as a team member with management and staff at all levels.
·  Knowledge of Project Management, SDLC, Agile & Devops
·  Knowledge of risk matrix/ risk frame work including vendor risk management
·  Technical / Security related Certification (Windows/Unix/Network/Cloud/VM/Security+)

Make every future a success.
  • Job directory
  • Business directory
    •