IDPS and DDoS Capability Owner

IDPS and DDoS Capability Owner

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunity

Global Defence Engineering is responsible for fielding solutions that help defend HSBC against a wide range of threats to the business as well as its customers, clients, partners, and staff.  The team works in concert, with partner teams across HSBC, to implement novel defensive capabilities that are effective and adaptable against a constantly evolving threat landscape.  The function operates under the vision: “Enabling HSBC to be safely successful everywhere the firm chooses to do business”.

The IDS/IPS and DDoS Capability Owner is responsible for developing and implementing comprehensive strategies to protect HSBCs network infrastructure from intrusions and DDoS attack. This role involves leading the design, configuration, and management of IDS/IPS and DDoS solutions, ensuring compliance with regulatory requirements, and collaborating with cross-functional teams to integrate the security measures into the overall network architecture. The capability owner will also seek to continuously improve security practices by remaining current with latest technologies and trends for cyber defence. This position requires deep technical expertise, strategic vision, and effective communication skills to ensure success.

What you’ll do

• Define and deliver vision, strategy & roadmap of the Capability.  
• Prioritise teams' backlogs based on objectives & value released to identify what teams work on next.  
• Lead definition of scope and prioritisation of user stories to be developed in teams, including acceptance criteria/definition of done.  
• Lead vendor relationships with owned technologies.  
• Interact with stakeholders across the organisation to understand their security needs and expectations.  
• Evaluate and adopt of new technologies and practices which may impact the control environment.  
• Monitor and communicate progress of capability performance through agreed KPIs and metrics.  
• Run a Pod per L2 capability with Architecture, Engineering, Service Delivery, Control Owner, Program Manager and Product Management.

What you need to have to succeed in this role

• Leadership and managing skills. Demonstrated leadership experience with large, complex programmes, and deeply technical global expert teams. Strong stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders. Seasoned technology leader with rich experience of leading engineering teams, supporting a group of platforms / services comprised of a mix of technologies and tools. Ability to influence beyond his/her department, lead transformation initiatives to change behaviours and mindset which makes the bank better. Experience leading high performing teams of cybersecurity subject matter experts. 
• Communication and collaboration skills. An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner. Proven ability to collaborate across industry, academia, and government to solve complex cybersecurity problems. 
• Cybersecurity experience. Excellent understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws. Strong commercial background and knowledge of cybersecurity offerings.
• Engineering background. Likely from a technology or engineering background with developed understanding of Technology Delivery Lifecycle, engineering practices, underlying infrastructure, tooling, and architecture & design principles. A background in information systems, technology, architecture, design, and service delivery of defence-in-depth capabilities. Engineering experience in a large enterprise.  
• Product owner experience. Experienced in owning a capability, technology, or platform together with the responsibilities associated with running a team of up to 20 individuals. Experience in a product owner or technology strategy role in a large enterprise.
• Deep understanding of networking concepts. Deep SME knowledge of network security, including capabilities aligned typically to firewalls and other networking technologies that control traffic flow by policy. 
• Technical skills.  Understanding and knowledge of common industry cyber security frameworks, standards, and methodologies, including OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. 
• Cloud knowledge. Experience working within Cloud, SaaS, and emerging cloud use-cases for web/mobile and enterprise companies. Specific background knowledge cloud technologies including Amazon Web Services, Google Cloud Platforms and Microsoft Azure.

What we offer

• Competitive salary
• Annual performance-based bonus
• Additional bonuses for recognition awards
• Multisport card
• Private medical care
• Life insurance
• One-time reimbursement of home office set-up (up to 800 PLN).
• Corporate parties & events
• CSR initiatives
• Nursery discounts
• Financial support with trainings and education
• Social fund
• Flexible working hours 
• Free parking

If your CV meets our criteria, you should expect the following steps in the recruitment process:

• Online behavioural test 
• Telephone screen 
• Interview with the hiring manager 

We are looking to hire as soon as possible so don’t wait and apply now!

You'll achieve more when you join HSBC.