Our purpose – Opening up a world of opportunity – explains why we exist. Here at HSBC we use our unique expertise, capabilities, breadth and perspectives to open up new kinds of opportunity for our more than 40 million customers. We’re bringing together the people, ideas and capital that nurture progress and growth, helping to create a better world – for our customers, our people, our investors, our communities and the planet we all share.

Global Enterprise Risk Management (ERM) is a sub function of Group Risk and Compliance. Its purpose is to make sure HSBC is equipped with a coherent Risk Management Framework, Risk Taxonomy and the tools to enable it to understand and operate within its Global Risk Appetite and effectively manage its overall risk position. It seeks to strengthen the risk culture across the organization through driving consistent risk management practices across our businesses and functions at global, regional and market level. ERM achieves this through robust oversight and stewardship of the end-to-end processes, risks, and controls ensuring it complies with risk, business and regulatory priorities. Enabling the bank to grow safely, be forward looking, and meet its strategic objectives.

As our Head of Tech, Cyber and Data Security Risk you will:

Ensure Technology, Cyber and Data Risk across the US is managed, embedded and adheres to the defined standards as per the appropriate frameworks, policies, procedures and regulatory requirementsProvide technical advice and support to ensure stakeholders understand and are aware of the control environment and assessment of Technology, Cyber and Data Security risk commensurate with the scale and nature of operationsSupport the ERM Business Functions team to explain in non-technical terms the impact of issues or events, and top and emerging risks that may require changes (for example, to controls, resources or business operations) to remain within respective risk appetitesSupport the ERM Business Functions teams to ensure risk and control owners have clear understanding of the effectiveness of the current control environmentMonitor the local external environment to get early sight of emerging Technology, Cyber and Data Security risks and provide detailed guidance on controls required to mitigate against themDeliver tailored and specific expertise across Technology, Cyber and Data Security risk enabling 1LOD to successfully deploy and operate mitigating key controlsProvide technical guidance to support development and completion of ERM and regulatory reporting obligations (e.g. RAS, top emerging risks, risk profile reporting, RMM, Board reporting where relevant, etc.)Ensure the root cause of relevant regional operational risk issues and events are fully understood and correctly treatedEnsure any concerns with key controls and material change programs, relevant to Technology, Cyber and Data Security risk, are understood and escalated as neededWork in conjunction with the ERM Business Functions teams and 1LOD to escalate any matters when needed

For this role, HSBC targets a pay range between $275,000.00 and $350,000.00

The final fixed pay offer will depend on the candidate and a number of variables, including but not limited to, role responsibilities, skill set, depth of experience and education, licensing/certification requirements, internal relativity, and specific work location.

At HSBC, our overall goal is to provide a competitive Total Reward Package, with an appropriate mix of fixed pay, and variable pay, as part of an employee’s overall total compensation and benefits. Variable pay generally takes the form of discretionary, annual awards (sometimes referred to as a “bonus”). Additionally, HSBC offers a wide range of competitive and flexible benefits designed to help you improve your health and well-being, finances, and lifestyle.

Our purpose – Opening up a world of opportunity – explains why we exist. Here at HSBC we use our unique expertise, capabilities, breadth and perspectives to open up new kinds of opportunity for our more than 40 million customers. We’re bringing together the people, ideas and capital that nurture progress and growth, helping to create a better world – for our customers, our people, our investors, our communities and the planet we all share.

Global Enterprise Risk Management (ERM) is a sub function of Group Risk and Compliance. Its purpose is to make sure HSBC is equipped with a coherent Risk Management Framework, Risk Taxonomy and the tools to enable it to understand and operate within its Global Risk Appetite and effectively manage its overall risk position. It seeks to strengthen the risk culture across the organization through driving consistent risk management practices across our businesses and functions at global, regional and market level. ERM achieves this through robust oversight and stewardship of the end-to-end processes, risks, and controls ensuring it complies with risk, business and regulatory priorities. Enabling the bank to grow safely, be forward looking, and meet its strategic objectives.

As our Head of Tech, Cyber and Data Security Risk you will:

Ensure Technology, Cyber and Data Risk across the US is managed, embedded and adheres to the defined standards as per the appropriate frameworks, policies, procedures and regulatory requirementsProvide technical advice and support to ensure stakeholders understand and are aware of the control environment and assessment of Technology, Cyber and Data Security risk commensurate with the scale and nature of operationsSupport the ERM Business Functions team to explain in non-technical terms the impact of issues or events, and top and emerging risks that may require changes (for example, to controls, resources or business operations) to remain within respective risk appetitesSupport the ERM Business Functions teams to ensure risk and control owners have clear understanding of the effectiveness of the current control environmentMonitor the local external environment to get early sight of emerging Technology, Cyber and Data Security risks and provide detailed guidance on controls required to mitigate against themDeliver tailored and specific expertise across Technology, Cyber and Data Security risk enabling 1LOD to successfully deploy and operate mitigating key controlsProvide technical guidance to support development and completion of ERM and regulatory reporting obligations (e.g. RAS, top emerging risks, risk profile reporting, RMM, Board reporting where relevant, etc.)Ensure the root cause of relevant regional operational risk issues and events are fully understood and correctly treatedEnsure any concerns with key controls and material change programs, relevant to Technology, Cyber and Data Security risk, are understood and escalated as neededWork in conjunction with the ERM Business Functions teams and 1LOD to escalate any matters when needed

For this role, HSBC targets a pay range between $275,000.00 and $350,000.00

The final fixed pay offer will depend on the candidate and a number of variables, including but not limited to, role responsibilities, skill set, depth of experience and education, licensing/certification requirements, internal relativity, and specific work location.

At HSBC, our overall goal is to provide a competitive Total Reward Package, with an appropriate mix of fixed pay, and variable pay, as part of an employee’s overall total compensation and benefits. Variable pay generally takes the form of discretionary, annual awards (sometimes referred to as a “bonus”). Additionally, HSBC offers a wide range of competitive and flexible benefits designed to help you improve your health and well-being, finances, and lifestyle.

You´ll likely have the following qualifications to succeed in this role:

Experience in risk management at a Globally Significant Financial Institution (GSFI) or equivalentUnderstands the risk landscape of HSBC Group and its commercial context and strategic ambitions and the importance of the maintenance and management of key frameworksVery strong knowledge of the relevant regulatory landscape and ability to assess the impact of proposed changes in regulatory rules to the bank, especially those that will impact Technology, Cyber and Data Security RiskExtensive knowledge of a financial institutions business model, products and key risk drivers and a demonstrated ability to effectively balance risk management, regulatory expectations, and commercial pragmatismA deep understanding and technical expertise of developing, embedding and maintaining Technology, Cyber and Data Security risks, including how these risks can be identified, assessed, monitored and controlled and mitigated where relevantSignificant experience of establishing and maintaining external relationships ideally with regulatorsLeading a multi-locational team of professionalsProviding expert advice and robust challenge by delivering risk management policies and managing risks and controlsOperate and influence within a changing and rapidly developing regulatory environmentRelevant Technology, Cyber qualifications/certificates/experience

In compliance with applicable laws, HSBC is committed to employing only those who are authorized to work in the U.S. HSBC may engage in immigration sponsorship for this position if needed.

As an HSBC employee, you will have access to tailored professional development opportunities to ensure you have the right skills for today and tomorrow. We offer a competitive pay and benefits package including a robust Wellness Hub, all in a welcoming, diverse and inclusive work environment. You will be empowered to drive HSBC’s engagement with the communities we serve through an industry-leading volunteerism policy, a generous matching gift program, and a comprehensive program of immersive Sustainability and Climate Change Initiatives. You’ll want to join our Employee Resource Groups as they play a central part in life at HSBC, including the development of our employees and networking inside and outside of HSBC. We value difference. We succeed together. We take responsibility. We get it done. And we want you to help us build the bank of the future

All qualified applicants will receive consideration for employment without regard to age, ancestry, color, race, national origin, ethnicity, disability or medical condition, genetic information, military or veteran service, religion, creed, sex, gender, pregnancy, childbirth, caregiver status, marital status, citizenship or immigration status, sexual orientation, gender identity or expression or any other trait protected by applicable law.

You´ll likely have the following qualifications to succeed in this role:

Experience in risk management at a Globally Significant Financial Institution (GSFI) or equivalentUnderstands the risk landscape of HSBC Group and its commercial context and strategic ambitions and the importance of the maintenance and management of key frameworksVery strong knowledge of the relevant regulatory landscape and ability to assess the impact of proposed changes in regulatory rules to the bank, especially those that will impact Technology, Cyber and Data Security RiskExtensive knowledge of a financial institutions business model, products and key risk drivers and a demonstrated ability to effectively balance risk management, regulatory expectations, and commercial pragmatismA deep understanding and technical expertise of developing, embedding and maintaining Technology, Cyber and Data Security risks, including how these risks can be identified, assessed, monitored and controlled and mitigated where relevantSignificant experience of establishing and maintaining external relationships ideally with regulatorsLeading a multi-locational team of professionalsProviding expert advice and robust challenge by delivering risk management policies and managing risks and controlsOperate and influence within a changing and rapidly developing regulatory environmentRelevant Technology, Cyber qualifications/certificates/experience

In compliance with applicable laws, HSBC is committed to employing only those who are authorized to work in the U.S. HSBC may engage in immigration sponsorship for this position if needed.

As an HSBC employee, you will have access to tailored professional development opportunities to ensure you have the right skills for today and tomorrow. We offer a competitive pay and benefits package including a robust Wellness Hub, all in a welcoming, diverse and inclusive work environment. You will be empowered to drive HSBC’s engagement with the communities we serve through an industry-leading volunteerism policy, a generous matching gift program, and a comprehensive program of immersive Sustainability and Climate Change Initiatives. You’ll want to join our Employee Resource Groups as they play a central part in life at HSBC, including the development of our employees and networking inside and outside of HSBC. We value difference. We succeed together. We take responsibility. We get it done. And we want you to help us build the bank of the future

All qualified applicants will receive consideration for employment without regard to age, ancestry, color, race, national origin, ethnicity, disability or medical condition, genetic information, military or veteran service, religion, creed, sex, gender, pregnancy, childbirth, caregiver status, marital status, citizenship or immigration status, sexual orientation, gender identity or expression or any other trait protected by applicable law.