Cybersecurity Lead Analyst

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunity

Global Cybersecurity Operations (GCO) provides a coordinated suite of “Network Defense" services responsible for detecting and responding to information and cybersecurity threats to company assets across the globe and is under the management of the Head of Global Cybersecurity Operations. This includes dedicated functions for the monitoring and detection of threats within the global estate as well as Cybersecurity Incident Management and Response activities.

What you’ll do

• Reviewing and approving new Use Cases and Playbooks created by Cybersecurity colleagues.

• Continuously reviewing the effectiveness of analysis playbooks, processes, and tooling.

• Applying structured analytical methodologies to maximise threat intelligence growth and service efficacy.

• Supporting the triage of potentially malicious events to determine severity and criticality of the event.

• Provide expert-level advice and technical leadership to the team, driving the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes.

• Train, develop, mentor and inspire cybersecurity colleagues in area(s) of specialism.

• Collaborate with the wider Cybersecurity (and IT) teams to ensure that the core, underlying technological capabilities that underpin an effective and efficient operational response to current and anticipated threats and trends remain fit for purpose.

• Identify processes that can be automated and orchestrated to ensure maximum efficiency of Global Cybersecurity Operations resources.

What you need to have to succeed in this role

• An understanding of organisational mission, values and goals and consistent application of this knowledge as well as highest ethical standards and values.

• Experience defining and refining operational procedures, workflows and processes to support the team in consistent, quality execution of monitoring and detection.

• Good understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, CIST and NIST standards and network protocols such as TCP, UDP, DNS, DHCP, IPSEC, HTTP.

• Technical expertise in analysing threat event data, evaluating malicious activity, documenting unusual files and data and identifying tactics used by attackers.

• Demonstrated experience in analysis and dissection of advanced attacker tactics and of common log management suites, Security Information and Event Management (SIEM) tools, 

• use of “Big Data" and Cloud-based solution for the collection and real-time analysis of security information.

• Knowledge of common cybersecurity technologies such as; IDS / IPS / HIPS, Advanced Anti-malware prevention and analysis, Firewalls, Proxies, MSS, etc. and experience with operating systems and platforms e.g. Windows, Linux, UNIX, Oracle, Citrix, GSX Server, iOS, OSX, etc.

• Functional knowledge and technical experience of 3rd party cloud computing platforms such as AWS, Azure and Google.

• Basic knowledge of common cybersecurity incident response and forensic investigation tools such as: EnCase, FTK, Sleuthkit, Kali Linux, IDA Pro, etc.

What we offer

The pay range for this role is  16565 PLN  24840PLN (monthly, gross).

Variable pay is discretionary, but influenced by Group performance, business/function performance and individual performance.

We offer a comprehensive and competitive package of benefits covering healthcare, family friendly leaves, pension and life assurance, as well as many other benefits to support your wellbeing.

• Additional bonuses for recognition awards

• Multisport card

• Private medical care

• Life insurance

• One-time reimbursement of home office set-up (up to 800 PLN).

• Cafeteria platform

• Employee assistance program

• Additional contributions to PPK scheme

• Corporate parties & events

• CSR initiatives

• Nursery discounts

• Financial support with trainings and education

• Social fund

• Flexible working hours 

• Free parking
  

If your CV meets our criteria, you should expect the following steps in the recruitment process:

• Online behavioural test

• Telephone screen

• Interview with the hiring manager
  

Being open to different points of view is important for our business and the communities we serve. At HSBC, we’re dedicated to creating diverse and inclusive workplaces. We are committed to removing barriers and ensuring careers at HSBC are inclusive and accessible for everyone to be at their best.

If you have a need that requires accommodations or changes during the recruitment process, please let us know.

We are looking to hire as soon as possible so don’t wait and apply now!

You'll achieve more when you join HSBC.

We thank all interested candidates for their applications. We reserve the right to contact only selected candidates.

Applications sent to us will be taken into consideration only if they include the following statement:

“I hereby declare that I have familiarized myself with the Privacy Statement for Applicants published at http://www.about.hsbc.pl/careers and I hereby give consent for personal data included in my application to be processed for the purposes of recruitment in HSBC Service Delivery (Polska) Sp. z o. o. according to rules described in the Privacy Statement for Applicants, as per the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).”

In case you would like to resign from participation in recruitment process or withdraw previously sent to us application, please email us at: krakow.recruitment@hsbc.com