IT Security Manager

Job description

Job description

Some careers have more impact than others.
If you’re looking for a career where you can make a real impression, join HSBC and discover how valued you’ll be.

We are currently seeking an experienced professional to join our team in the role of IT Security Manager

Business: Cybersecurity

Principal responsibilities

• Lead/perform and own the design and delivery of penetration tests across variety of technologies.
• Work within virtual teams of security and technical specialists to ensure quality delivery of world class security solutions to the business.
• Lead penetration tests designed to highlight and clearly articulate risk to the business, in terms the business can understand.
• Drive and lead penetration tests and resulting deliverables, to aid in ensuring that the Bank operates within defined risk appetite 
• Represent Cybersecurity function as technical SME in internal and external discussions.
• Help drive the maturity of Cybersecurity function by continuously improving quality of our services and removing inefficiencies, in line with wider Cybersecurity strategy.
• Ensure adherence to the three lines of defence organisational model, with clear lines of responsibility, accountability and segregation of duties.
• Ensure compliance with internal audit and external regulators, to ensure that any organisational changes are fit for purpose and meet their expectations.
• Collaborate with relevant stakeholders to enhances the delivery of a Cybersecurity strategy to secure the bank’s technology, protecting and enhancing HSBC’s values, reputation and stakeholder value.
• Provide supervision, guidance and mentor less experienced members of a team

A successful candidate will ensure the security of the company's custom applications and related implementations by identifying potential vulnerabilities and appropriate controls, guiding risk mitigation, and liaising directly with engineering and management teams, business owners, and global technical workgroups. 

Requirements

Knowledge & Experience / Qualifications

• Strong written and verbal communication skills in English language – used for all formal communication.
• Ability of critical thinking to form and clearly articulate identified issues and their consequences.
• Ability to comfortably hold a conversation on cyber security aspects with both technical and non-technical audience.
• Maintain a wide breadth of penetration testing and/or leadership management skills to a significant degree of depth.
• Understand the business context/significance of technical pentest findings.
• Consistently output superior quality of deliverables.
• Poses an entrepreneurial attitude to excel in loosely defined scenarios.
• Ability to work independently or lead any size team of penetration testers.
• Superior time management skills and self-discipline.
• Be subject matter expert in at least 2 of pentest domains (i.e. infrastructure/apps/mobile).
• Demonstrated ability to solve complex technical problems.

HSBCVZ/GZ*

About HSBC Technology China

We develop, implement and support software and IT services and processes that allow HSBC to remain at the forefront of high-quality banking systems. 

You’ll achieve more when you join HSBC. 

HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.” 

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website. 

***Issued By HSBC Software Development (GuangDong) Limited***