Some careers have more impact than others.
If you’re looking for a career where you can make a real impression, join HSBC and discover how valued you’ll be.
We are currently seeking an experienced professional to join our team in the role of Lead IT Security Analyst
Business: Cybersecurity
Principal responsibilities
You will be a key part of the CSAT Vulnerability Management Reporting Team, aligning into the Head of the team. The role holder will be tasked with designing, building, and maintaining Cybersecurity reporting capabilities, and will be responsible for providing data insights, thematic reporting on large datasets.
Key Responsibilities
DATA
• Performing quantitative and observational data analysis.
• Documenting development efforts as required by change management practices.
• Providing insights into large datasets – validation, data quality and metrics.
• Accurately completing MI and other business data requirements and presenting supporting statistics / reports / returns to business / management within agreed timescales.
REPORTING
• Providing detailed and accurate reporting of Vulnerability data to help drive and prioritise risk based remediation.
• Producing routine operational reports by exporting data from existing sources (Databricks and SQL Server).
• Reviewing automated reports for data variances and creating/ implementing action plans to resolve identified issues.
• Ensuring clear and concise senior management reporting.
• Maintaining operational documentation on what reports are available and how to access and utilise existing filters.
• Maintaining the documents associated with the Standard Operating Procedures (SOPs) for the creation, maintenance, and alteration of standard management reports.
• Continual improvement in the depth and breadth of reporting capabilities against the Vulnerability Management control to support improvements in the bank’s security posture.
• Thematic analysis of trending and identifying opportunities for control improvements through changes to or additional key control or risk indicator metrics.
• Reporting Cybersecurity Metrics at all levels of the organisation
• Providing executive dashboards and senior management and board level
• Designing and producing of Key Control Indicators (KRIs / KCIs / RIs / KMIs), working together with Global Cybersecurity Control Owners
• Sourcing and providing a consistent commentary with business focus, highlighting key Cybersecurity themes across the group, supporting the metrics
• Designing, building, delivering, and maintaining multiple MI report products for key Cybersecurity stakeholders.
• Building and maintaining Cybersecurity MI knowledgebase on key controls information, data documentation, business processes, and team expertise.
• Working Closely with Cyber Sciences Analytics team to progress dashboard development
• Attending key management meetings to support discussions of the reports and underlying data.
• Supporting the preparation of required governance and control meeting submissions for Vulnerability Management reporting, and/ or information requests from regulators/ Audit/ 2LoD.
• Ad hoc tasks as required; including support to other operational and governance activities within CSAT.