(Cybersecurity Technology) Data at Rest (DAR) SME

  • Kraków, małopolskie
  • Kapelanka 42, 30-347 Kraków, Polska pokaż mapę
  • Specjalista
  • 23.07.2019
  • Ważna jeszcze 3 dni (do 22.08.2019)

    Pracodawca ma prawo zakończyć rekrutację we wcześniejszym terminie.

    HSBC Service Delivery (Polska) Sp. z o.o. is a part of HSBC Holdings plc, the parent company of the HSBC Group, headquartered in London. The Group serves customers worldwide from over 6,300 offices in over 75 countries and territories in Europe, Asia, North and Latin America, and the Middle East and North Africa. HSBC is one of the world’s largest banking and financial services organisations. Currently, we are looking for a candidate for the position of:

    (Cybersecurity Technology)
    Data at Rest (DAR) SME
    Location: Kraków
    Ref No: HTK/CST/DAR/07/2019


    The Cybersecurity team at HSBC are engaged to transform the way Cybersecurity is accomplished at the bank and we are set to enable the business to do more, as securely as we want, or need to be. In short, in line with the Bank’s strategy, we are to be Simpler, Better, Faster and of course – More Secure.

    To achieve this we have many exciting challenges ahead and are looking for people with a real passion for what they would like to do. Working with some of the best technology talent we are searching for technologists and enablers that will help support us on this journey.

    We are currently seeking an experienced individual to join this team in the role of Cybersecurity Data at Rest SME. 

    The Cyber Security Technology Data at Rest Service team are accountable for but not limited to the following:

    • Supporting the establishment of HSBC as a valued contributor to information sharing efforts across the industry that helps to drive a positive image of the bank with our peers and regulators in the markets we serve.
    • Supporting a “self-critical” culture whereby identification of weaknesses in the bank’s control plane (people, process and technology) are brought to light in an effective manner and addressed.
    • Supporting a culture of individual self-improvement, whereby staff are expected to maintain subject matter expertise within their area of focus and within the realm of cybersecurity more broadly.
    • Supporting engagement of Global Businesses and Functions everywhere HSBC does business, that drives a global up-lift in cybersecurity awareness, helping to “tell the story” of HSBC Cybersecurity efforts.
    • Supporting engagement within the Lines of Defence Risk Management framework adopted by HSBC, to ensure complete transparency and effective working relationships across all lines of defence.
    • Train, develop and mentor less experienced analysts both in the cybersecurity space and in the wider business.
    • Specialist in the Data at Rest service engagement process.
      • Work with lines of business to understand requirements for scanning.
      • Work with the policy generation team to create new policies.
      • Work with the lines of business to onboard them into the Data at Rest scanning process.
    • Assist with new innovations and development initiatives in the Data at Rest portfolio.
    • Learn the technical details of new tools and their usage including
      • Identifying sensitive data
      • How to perform bulk actions on multiple files
      • How the tooling works with other products in the security portfolio
      • Generation of policy/search/categorization scripts
    • Help to drive improvements in service and customer usability of data security product offerings.
    • Provide MI and KXI information and reports for senior management on data security tooling and reporting.
    • Learn and support the management of unstructured data so that discovery, classification and governance tools can be used to manage risk

    To be successful in this role you will need to have:

    • Excellent knowledge and demonstrated experience in use of data scanning tools and products, ideally Symantec DLP but other similar tools (McAfee, Azure IP, etc.) would also be relevant
    • Ability to help develop and produce key performance indicators (KPIs) and metrics for evaluation of operational effectiveness as well as providing recommendations for control improvement and mitigating control adjustments.
    • Experience of workflow management and engagement tools to track customer engagements and progress.
    • Experience of scripting specifically use of REGEX for pattern matching and scanning solutions.
    • Excellent investigative skills, insatiable curiosity and an innate drive to win.
    • A good understanding of cybersecurity principles, global financial services business models, regional compliance regulations and laws.
    • Good understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards.
    • Extensive experience within an enterprise scale organisation, preferably in the finance or similarly regulated sector.

    We offer:

    • Contact with top IT technologies available in the market.
    • Employees’ benefits: Multisport Card, private medical and dental health care, life insurance,
    • Free parking space for our employees – few minutes from the office,
    • Internal training events and workshops,
    • Realistic career progression opportunities in an international organization,
    • Commutable office location – Kapelanka street,
    • Casual dress code,
    • Cultural exchange.


    You'll achieve more when you join HSBC.

    Applications sent to us will be taken into consideration only if they include the following statement:
    I hereby declare that I have familiarized myself with the Privacy Statement for Applicants published at http://www.about.hsbc.pl/careers and I hereby give consent for personal data included in my application to be processed for the purposes of recruitment in HSBC Service Delivery (Polska) Sp. z o. o. according to rules described in the Privacy Statement for Applicants, as per the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).”
    In case you would like to resign from participation in recruitment process or withdraw previously sent to us application, please email us at: [email protected]