If you’re looking to take an exciting new direction with your HSBC career, an internal move can open the door to many opportunities, allowing you to take on a new challenge, and develop your skills. Bring your knowledge of our brand to a new role and grow yourself further.
Our Risk and Compliance function has a critical role to play in supporting, challenging and advising across all areas of the business through establishing policy, monitoring profiles, and identifying and managing forward-looking risk and compliance. We focus on creating an environment that encourages our people to speak up and do the right thing, as well as protecting our customers, the organisation and the integrity of the financial markets in which we operate. Already an industry-leader in many respects, we want to continue setting standards and evolving to respond to strategic changes.
Global Enterprise Risk Management (ERM) is a sub function of Group Risk and Compliance. Its purpose is to make sure HSBC understands and effectively controls its non-financial risk position, through end-to-end oversight of processes, risks, and controls and by robust stewardship of the bank's risk appetite to comply with risk, business and regulatory priorities. It seeks to strengthen the risk culture across the organisation through the application of effective policies and frameworks that drive consistent risk management practices across our businesses and functions at global, regional and market level.
The role holder is responsible for overseeing the identification, assessment, and management of cyber security risks across the organization. This role involves ensuring that the company’s digital assets and information systems are secure, compliant with regulatory requirements, and aligned with industry best practices. The role holder will lead a team of cyber security professionals, collaborate with various departments, and act as a trusted advisor to senior leadership on all matters related to cyber risk across HSBC UK including WPB and CMB, UKRFB.
A move across the business allows you to continue to access tailored professional development opportunities, and our fantastic benefits packages.
In this role you will:
* Provide independent oversight and challenge to the prioritization of cyber security risks across the HSBC UK.
* Advise senior management, executives, and board-level committees on key cyber risks and emerging threats.
* Ensure compliance with relevant cyber security frameworks, standards, and regulations (e.g., NIST, ISO 27001, GDPR).
* Manage and mentor a team of cyber security professionals, fostering a culture of continuous improvement and learning.
* Assess and manage the cyber security risks associated with third-party vendors and partners.
To be successful in this role you should meet the following requirements:
* In-depth knowledge of cyber security frameworks, standards, and regulations.
* Strong understanding of risk management principles and practices.
* Excellent leadership and team management skills.
* Strong analytical, problem-solving, and decision-making abilities.
* Experience with incident response, threat intelligence, and vulnerability management.
This role is based in Birmingham on a Hybrid basis.
Being open to different points of view is important for our business and the communities we serve. At HSBC, we’re dedicated to creating diverse and inclusive workplaces - no matter their gender, ethnicity, disability, religion, sexual orientation, or age. We are committed to removing barriers and ensuring careers at HSBC are inclusive and accessible for everyone to be at their best.
If you have a need that requires accommodations or changes during the recruitment process, please get in touch with our Recruitment Helpdesk:
Email: hsbc.recruitment@hsbc.com
Telephone: +44 207 832 8500