Network Security Control Owner
Join a digital first bank that’s powered by people.
Our technology team builds innovative digital solutions rapidly and at scale to deliver the next generation of banking services for our customers around the world.
In our cybersecurity team you’ll be helping to safeguard the financial system on which millions of people depend.
You’ll be making banking more secure by designing, implementing, and operating controls to manage cybersecurity risk. You’ll help define HSBC Group cyber security standards, deliver Global Security Operations ad Threat management services, provide round-the-clock monitoring and security incident response services, and oversee Network/Application/Infrastructure Security. The work you do will provid3e assurance of the adequacy and effectiveness of security controls to Business Risk Owners.
Global Defense – Cybersecurity Engineering and Operations is comprised of several inter-joined teams: Technical Directors Office (TDO), Site Reliability Engineering (SRE), Global Defense Governance & Delivery (GDD), Global Cybersecurity Operations (GCO) and Cybersecurity Intelligence & Threat Analysis (CITA). Together, the function enables an adaptive and constantly evolving capacity to address risks borne through an ever-shifting threat landscape. The function serves as an engine for innovation and problem solving with partner teams across the Firm who share a common imperative to be the best for our customers and drive the Global HSBC Purpose of “Opening up a world of opportunity”.
As an HSBC employee in the UK, you will have access to tailored professional development opportunities and a competitive pay and benefits package. This includes private healthcare for all UK-based employees, enhanced maternity and adoption pay and support when you return to work, and a contributory pension scheme with a generous employer contribution.
In this role you will:
• Providing the first line of defense (1LOD) for the organization for all matters relating to Network Security controls. Drive implementation of controls to protect the groups key data.
• Maintaining the accuracy and alignment of the NSEC control to the banks Risk Control framework.
• Control Design and Continuous Control Monitoring - MPs/OIs enhancements, Control effectiveness rationale. Managing, reporting, and improving performance metrics (KCIs).
• Ensure Network Security controls align with relevant regulations, standards, and industry best practices, and support compliance efforts. Maintain internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.
• Responding to informal control queries and formal review and challenges and observations. Collaborate with senior stakeholders to facilitate understanding and alignment of NSEC control objectives, including business units, audit and regulators. Providing specialist knowledge and timely feedback, working in partnership with those stakeholders.
• Foster a community of collaboration/knowledge sharing across all Control Owners in Global Defense - understanding the implication a change in one control area has on other control areas. Building and maintaining constructive working relationships with a diverse community of technical and non-technical audiences.
• Develop and deliver training and awareness programs to educate stakeholders and communities within Cyber about the Network Security control strategy.
To be successful in this role you should meet the following requirements:
• Deep understanding of technology (preferably in the Network Security area) or who is willing to build up knowledge quick.
• Be able to communicate complex technical information to non-technical stakeholders and explain Network Security control policies and procedures in a clear and concise manner. The control owner must be able to communicate to stakeholders on senior level, addressing challenges and feedback.
• Be able to work effectively with cross-functional teams, including Cybersecurity and business units to ensure that Network Security control strategies align with organizational goals and requirements. It is key that the Control Owner stays on top of developments in other controls areas.
• Must be able to manage relationships with stakeholders, including business units and audit/regulatory bodies, to ensure that Network Security control strategies are well received and adopted.
• Able to identify and remediate challenges in (governance) processes and must be able to get technical consultancy from the Network Security Technical Directors to respond to issues.
This role is based in Sheffield or Edinburgh .
Opening up a world of opportunity
Being open to different points of view is important for our business and the communities we serve. At HSBC, we’re dedicated to creating diverse and inclusive workplaces. Our recruitment processes are accessible to everyone - no matter their gender, ethnicity, disability, religion, sexual orientation, or age.
We take pride in being part of the Disability Confident Scheme. This helps make sure you can be interviewed fairly if you have a disability, long term health condition, or are neurodiverse.
If you’d like to apply for one of our roles and need adjustments made, please get in touch with our Recruitment Helpdesk:
Email: hsbc.recruitment@hsbc.com
Telephone: +44 207 832 8500