Platform Engineer

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunity

CSAT (Cyber Security Assurance and Testing) is a department within Cyber Security at HSBC. It owns the controls and services that provide pre-production and production application and infrastructure security scanning, remediation management and reporting.

In addition to vendor scanning products, CSAT has built a security integration toolkit on Kubernetes which provides a point for on-boarding and scan execution in front of all the scanning tools, and data processing to the Vulnerability Consolidation Platform and downstream to the Azure data lake and Power BI for reporting. CSAT have also built a vulnerability remediation management platform to manage pre-production vulnerability findings.

CSAT are undergoing a major programme to further simplify, streamline and enhance the vulnerability management systems. This will require data engineering, further integration with vendor scanning tooling, and additional services on Kubernetes.

You will report to the Global Head of CSAT Engineering and be responsible for reviewing requests for change to the existing estate to ensure that any solution design concerns, gaps to business requirements are identified and that the Secure development strategy and control principle are adhered to when designing new solutions. You will support the engineering team in delivering changes to services and ensure that the design documentation is approved at the necessary governance forums, taking on feedback and adapting the designs as appropriate.

What you’ll do

• Leading the technical design of systems and services in the CSAT space
• Developing and supporting all architectural artefacts for the projects that will implement these changes, including but not limited to: Architecture Impact Assessments, External Hosting Considerations to support Enterprise Architecture sign off to host the service in a cloud, Solution Design documents, Design authority sign off of appropriate documentation.
• Driving Tech/Arch requirements to meet business requirements for the technologies being deployed, which must be aligned to Sec Arch strategy.
• Advising on important security-related technologies and assessing the risk associated with proposed changes.
• Delivering architectural patterns and support quality assurance initiatives in the Engineering team.
• Interacting with and influencing senior stakeholders across departments.
• Collaborating with cross-functional teams to align the security data management system with overall business objectives.
• Staying abreast of emerging technologies and security trends to continually enhance the system's capabilities and apply innovative security architecture solutions to new or existing problems to able to justify and communicate design decisions.

What you need to have to succeed in this role

• Extensive experience in information security and/or IT risk management with a focus on security, performance, and reliability.
• Strong expertise in cloud technologies and integration with on-prem data centres, particularly Kubernetes and GCP.
• Senior experience owning and developing application and service architectures including the processes, infrastructure layers and application layers and how to integrate through SDLC build services such as CI and CD pipelines.
• Extensive experience with microservice architecture in Kubernetes
• Solid understanding of security protocols, cryptography, authentication, authorisation, and security.
• Good understanding of the foundation of SDLC and software delivery including DevOps and DevSecOps culture.
• Knowledge of Security Scanning tools and platforms including Nessus, Nessus IQ, Checkmarx, Netsparker, Aquasec (desirable but not essential).
• Knowledge of Vulnerability Scanning Capabilities (MAST, DAST, SAST, IAC, FOSS/SCA, Cloud, Infrastructure).

What we offer

• Competitive salary
• Annual performance-based bonus
• Additional bonuses for recognition awards
• Multisport card
• Private medical care
• Life insurance
• One-time reimbursement of home office set-up (up to 800 PLN).
• Corporate parties & events
• CSR initiatives
• Nursery discounts
• Financial support with trainings and education
• Social fund
• Flexible working hours 
• Free parking

If your CV meets our criteria, you should expect the following steps in the recruitment process:

• Online behavioural test 
• Telephone screen 
• Job interview with the hiring manager

We are looking to hire as soon as possible so don’t wait and apply now!

You'll achieve more when you join HSBC.