Cyber Security / Consultant Specialist

Some careers shine brighter than others.

If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role of Consultant Specialist

In this role, you will (Key responsibilities)

Vulnerability Management process includes from analysis of CVEs, priority and track till remediation.
Interface between the development teams and relevant Cybersecurity teams.
Overseeing effectiveness of controls to ensure compliance with HSBC Information Security policies and standards.
Advocate security policies and standards to the respective Service lines.
Support control testing and partner with the Service lines Risk and Control Officer to ensure threats are identified and risk rated, mitigating controls are identified where appropriate and any controls required have been implemented.
Support initial risk assessment process and providing consultancy and guidance.
Responsible for undertaking application security risk assessments as part of development projects. This entails using a threat modelling methodology to identify threats which could affect the Confidentiality, Integrity and Availability of the data and components in scope.
Support where necessary key Wholesale cyber security uplift initiatives.
Contribute to review of security standards and procedures.
Own driving the remediation of security issues (defects), or supporting other risk treatment methods as needed (e. g. risk acceptance).
Providing support for automated application security tooling working with Cybersecurity as necessary.
Interpret and advise on the results from security testing to both technical and non-technical audiences.
Collaborating with IT development teams and other HSBC teams working closely in a DevSecOps and agile development process. Support the Secure SDLC ensuring developers are coding in-line with security standards, practices and industry best-practice