Oferta pracy

Cybersecurity Controls Design Manager

HSBC Service Delivery (Polska) Sp. z o.o.O firmie

Rekrutacja zdalna

Rekrutacja zdalna

To wyróżnienie ofert oznacza, że cały proces rekrutacyjny jest prowadzony zdalnie. Dowiedz się więcej
Rekrutacja zdalna

HSBC Service Delivery (Polska) Sp. z o.o.

Kapelanka 42A


Cybersecurity Controls Design Manager
The ideal candidate will possess strong problem solving and communication skills, with the ability to present information at different organisation tiers. The role holder will be required to manage stakeholders including the Group CISO, Cybersecurity Leadership and staff, Chief Controls Office and 2LoD Resilience Risk teams.

Key Accountabilities:

  • Working with the Control Owners, 2LoD and CCO Technology to ensure that the Cybersecurity owned controls in the Risk and Controls Library are designed according to the Bank’s requirements and industry standards and best practises (e.g. NIST FSS);
  • Working with the Control Owners and other stakeholders to ensure that Cybersecurity control measurements are defined in accordance with HSBC’s KCI Design Framework and industry best practices (CIS);
  • Working with CRCS teams to ensure that the measurements defined provide sufficient data for stakeholder reports and are aligned with the CRQ model;
Design, manage and maintain Mandatory Procedures and Operating Instructions (standards) for Cybersecurity controls, covering all areas across Engineering, Operations and Security Assessment and Testing.

Essential Experience/Knowledge:

Strong Risk and Controls Background

  • Significant, subject matter expertise in Control Management. This includes but is not limited to controls design and implementation and control assessment;
  • Ability to translate difficult IT concepts into business-friendly language;
  • Experience with Technology risks and controls;
  • Knowledge of Cybersecurity – at least a generalist with specialist area expertise welcome.

Technical background

  • Understanding of Cybersecurity concepts such as threats, vulnerabilities, attack vectors, inherent/residual risk;
  • Understanding metrics and measures in managing risks and controls (KPIs, KCIs, KRIs) is a must;
  • Familiarity with the NIST Cyber Security Framework (CSF) would be beneficial;
  • Knowledge of Centre for Internet Security (CIS) Measures and Metrics is a plus;
  • Experience with GRC Tools such as HELIOS and Archer) is a plus;
  • Technical writing skills and highly proficient use of written English is required to ensure quality output for Control, Procedure and Operating Instructions (Standards) design and maintenance.

Strong stakeholder management and communications skills

  • Experience of working at an operational level in international environments which drive a true international perspective.

Team-oriented mentality combined with ability to complete tasks independently to a high quality standard

  • Experience within fast-moving, complex and demanding corporate environments where Cybersecurity controls issues have to be handled on a large scale and with a need to multi-task whilst dealing with ambiguity and change.

Interpersonal Skills

  • Influential, credible and persuasive, active listener, embraces HSBC Values, shows good judgement and demonstrating high level of communication skills in order to achieve effective stakeholder management.

We offer:

  • Stable job in professional team,
  • Interesting path of career in an international organization,
  • Consistent scope of responsibilities,
  • Private health care, employees’ benefits,
  • Option to work remotely from every location in Poland (commuting to Krakow occasionally - to be agreed individually with manager).


You'll achieve more when you join HSBC.

To apply for this position please send your curriculum vitae in English, using "Apply now" button below.

Applications sent to us will be taken into consideration only if they include the following statement:
I hereby declare that I have familiarized myself with the Privacy Statement for Applicants published at http://www.about.hsbc.pl/careers and I hereby give consent for personal data included in my application to be processed for the purposes of recruitment in HSBC Service Delivery (Polska) Sp. z o. o. according to rules described in the Privacy Statement for Applicants, as per the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).”
In case you would like to resign from participation in recruitment process or withdraw previously sent to us application, please email us at: [email protected]

Ogłoszenie archiwalne

Pracodawca zakończył zbieranie zgłoszeń na tę ofertę

Aktualne oferty pracodawcy