Some careers shine brighter than others.
If you’re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.
HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.
We are currently seeking an experienced professional to join our team in the Associate Director/ Associate Project Manager
In this role, you will be theThreat and Controls Assessment Senior Consultant rolewill work as part of a global team to perform Threat Modelling on HSBC services , closely collaborating with peers across Penetration Testing; Secure Development, Third Party Security Assessment and Cybersecurity business and regional leads, enabling effective end-to-end vulnerability identification.
· Independently identify and assess the potential security threats and vulnerabilities in systems, applications, and networks.
· Work on complex architecture, systems, network to identify the potential security gaps and help HSBC bank to achieve expected security posture of the systems.
· Perform effective threat and control assessments of services within our internal, external and cloud estate.
· Liaise with Developers, Architects and other Technical Leads to understand the end to end service and identify where there are any control gaps.
· Understand the Business requirements, evaluate potential products / solutions and provide technical recommendations.
· Be "hands on" with technology and contribute to the design, development and the support of projects with security recommendations.
· Identify threats across the IT estate; including applications, databases, network and other infrastructure components.
· Engage with other Cybersecurity teams, senior management and members of the Business when confronted with potential security issues.
· Work as Technical Lead and take ownership to improve theprocesses, procedures andhelp team to improve technically.
· Knowledge and exposure of Risk and Control Management
· Ability to understand and assess both threats, controls and vulnerabilities, articulating these to both technical and business stakeholders
· Desirable to have one or more industry-recognised cybersecurity-related certifications including CISSP, CRISC, CISM or Cloud Security Certifications