Cryptography Control Owner

Some careers shine brighter than others

Cybersecurity is responsible for fielding solutions that help defend HSBC against a wide range of threats to the business as well as its

customers, clients, partners, and staff. The team works in concert, with partner teams across HSBC, to implement novel defensive capabilities that are effective and adaptable against a constantly evolving threat landscape. The function operates under the vision: “Enabling HSBC to be safely successful everywhere the Firm chooses to do business.”

Global Defense – Cybersecurity Engineering and Operations is comprised of several inter-joined teams: Technical Directors Office (TDO), Site Reliability Engineering (SRE), Global Defense Governance & Delivery (GDD), Global Cybersecurity Operations (GCO) and Cybersecurity Intelligence & Threat Analysis (CITA). Together, the function enables an adaptive and constantly evolving capacity to address risks borne through an ever-shifting threat landscape. The function serves as an engine for innovation and problem solving with partner teams across the Firm who share a common imperative to be the best for our customers and drive the Global HSBC Purpose of “Opening up a world of opportunity.”

Your career opportunity

Our Technology teams work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world; to bank quickly, simply and securely. We also run and manage our IT infrastructure, data-centres and core banking systems that power the world’s leading international bank.

Our multi-disciplined Technology teams include amongst others: DevSecOps engineers, IT architects, front and back-end developers, infrastructure specialists, cybersecurity experts, and delivery, project and programme managers.

Following extensive investment across our Technology and Digital domains and with plans for continued expansion throughout 2021 and beyond, we are currently seeking a Global Head of Vulnerability Management to join the HSBC Cybersecurity team within Technology.

What you’ll do

The Control Owner for the Cryptography (CRYP) control is accountable for but not limited to the following:

Responsibilities:

⦁ Providing the first line of defense (1LOD) for the organization for all matters relating to Cryptography controls. Drive implementation of controls to protect the groups key data.

⦁ Maintaining the accuracy and alignment of the CRYP control to the banks Risk Control framework.

⦁ Control Design and Continuous Control Monitoring - MPs/OIs enhancements, Control effectiveness rationale. Managing, reporting, and improving performance metrics (KCIs).

⦁ Ensure Cryptography controls align with relevant regulations, standards, and industry best practices, and support compliance efforts. Maintain internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.

⦁ 2LoD/3LoD engagement - Responding to informal control queries and formal review and challenges and observations. Collaborate with senior stakeholders to facilitate understanding and alignment of CRYP control objectives, including business units, audit and regulators. Providing specialist knowledge and timely feedback, working in partnership with those stakeholders.

⦁ Develop and deliver training and awareness programs to educate stakeholders and communities within Cyber about the Cryptography control strategy.

Required skills:

⦁ Deep understanding of technology (preferably in the Cryptography area) or who is willing to build up knowledge quick.

⦁ Ablility to communicate complex technical information to non-technical stakeholders and explain Cryptography control policies and procedures in a clear and concise manner. The control owner must be able to communicate to stakeholders on senior level, addressing challenges and feedback.

⦁ Ability to work effectively with cross-functional teams, including Cybersecurity and business units to ensure that Cryptography control strategies align with organizational goals and requirements.

⦁ Ability to identify and remediate challenges in (governance) processes

What we offer

⦁ Competitive salary

⦁ Annual performance-based bonus

⦁ Additional bonuses for recognition awards

⦁ Multisport card

⦁ Private medical care

⦁ Life insurance

⦁ One-time reimbursement of home office set-up (up to 800 PLN).

⦁ Corporate parties & events

⦁ CSR initiatives

⦁ Nursery discounts

⦁ Financial support with trainings and education

⦁ Social fund

⦁ Flexible working hours

⦁ Free parking

If your CV meets our criteria, you should expect the following steps in the recruitment process:

⦁ Online behavioural test

⦁ Telephone screen

⦁ Job interview with the hiring manager

We are looking to hire as soon as possible so don’t wait and apply now!

You'll achieve more when you join HSBC.