Cyber Education Control Operations Manager

Cyber Education Control Operations Manager

Ref. 13353

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunity

The Cybersecurity Education and Awareness Control (‘EDUC’) designs and delivers cybersecurity education and awareness activities, including social engineering simulations and eLearning, to different employee groups according to risk. The control is monitored via various Key Control indicators (KCIs).  

The EDUC Control Operations Manager is an internal facing role, responsible for ensuring that all EDUC control requirements are performed and evidenced correctly with particular responsibility for executing control operation requirements related to social engineering testing. The role will also manage initial responses to audit and regulatory compliance activities.

What you’ll do

• Proactively map out and plan tasks required for the day-to-day operations of the EDUC control.
• Responsible for executing control operations related to non-technical cybersecurity awareness training – particularly social engineering testing.  
• Responsible for ensuring that other EDUC control operators complete operation tasks on schedule and according to Control Operating Instructions  
• Proactively map out, plan and manage the annual cycle of audit and regulatory requests, reporting against issues and findings.
• Understand the impact of audit findings against the EDUC control, socialising recommendations with the team to improve current and future training and awareness plans.  
• Establish and maintain a central repository of supporting material and evidence, ensuring quick and efficient responses to both current and future audit needs.
• Design and implement standardised processes to support control operating instructions with particular focus on the management of social engineering testing activities and accompanying reporting of this Key Control Indicator (KCI)  
• Prepare and lead monthly meetings to report to Cybersecurity stakeholders’ current performance against KCIs and obtain buy-in to help drive continuous improvements in results.  
• Engage with peers and team members within the Cybersecurity functions to exchange knowledge, keep abreast with developments and work on continuously improving the team’s readiness and response to audit requirements.  

What you need to have to succeed in this role

• Proven experience in control operations or project management of compliance or audit management. 
• Understanding of metrics and measures in managing risks and controls (KCIs, KRIs, KPIs) is required.  
• Experience of control gap analysis, remediation planning and control process improvement is desirable.  
• Ability to interpret regulator/audit findings and turn it into insight to inform future awareness campaigns.  
• Adaptable to ever-changing priorities and evolution of role responsibilities  
• Knowledge of agile methodologies, and project management techniques.  
• A forward-thinking individual, willing to challenge and provoke stakeholders to deliver the best risk outcomes for the company. Positive and professional attitude, team player, flexible and adaptable. 

What we offer

• Competitive salary
• Annual performance-based bonus
• Additional bonuses for recognition awards
• Multisport card
• Private medical care
• Life insurance
• One-time reimbursement of home office set-up (up to 800 PLN).

• Corporate parties & events
• CSR initiatives
• Nursery discounts
• Financial support with trainings and education
• Social fund
• Flexible working hours 
• Free parking

If your CV meets our criteria, you should expect the following steps in the recruitment process:

• Online behavioural test (for external candidates only)
• Telephone screen (for external candidates only)
• Interview with the hiring manager. 

We are looking to hire as soon as possible so don’t wait and apply now!

You'll achieve more when you join HSBC.