ate Director, Cybersecurity Specialist

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team as Sr. Associate Director, Cybersecurity Specialist.

In this role, you will be leading a small team tasked with the identification and implementation of continuous improvement opportunities across our diverse, global cyber-security threat-prevention control stack.

The role holder will lead the team to achieve the desired outcomes via proactive and collaborative engagements with technology owners and the operational security teams, continuously reviewing security posture and cyber-threat landscape, and taking responsibility for identifying, developing and maintaining a cyber-threat intelligence led approach to the prioritization of engagements and focus areas.

• Identifying and actioning opportunities to "shift left" with our current technical cybersecurity control stack through the implementation of improved policy configuration, tighter prevention rules or other configurations that tighten our preventative/protective posture against cyber-threat. For example, tuning EDR platform policies, enabling extra features or configuration options on security email gateways or leveraging new log data sources to feed into the SIEM to support new and interesting ways to support rapid and automatic cyber-threat detection and response processes.
• Engaging with the CITA and Threat Hunter team in order to develop, implement and maintain a cyber-threat intelligence led approach to the prioritisation of workload and to focus on areas that offer the most value in terms of risk reduction.
• Coordinating activities with the Global Heads of M&D and IM&R to ensure strategic alignment and support of the functions and their underpinning Controls.
• Building relationships with the many technology and platform owners. Navigating and managing complex relationships whereby priorities are often divergent.
• Becoming an SME in many tools, technologies and platforms in order to be able to drive the necessary change quickly, effectively and safely.
• Ensuring the team are proactive, tenacious and self-driven. This is role where work needs to be 'found', it isn't always clear or obvious as to what needs to be done where.
• Managing team performance, setting team goals and objectives.
• Embedding a culture of individual self-improvement, development and self-directed learning whereby staff are expected to maintain subject matter expertise within their area of focus and within the realm of cybersecurity more broadly.
• Developing and implementing tracking and reporting metrics to support accurate measurements of the time and effort involved and expended during CTP work. These metrics should also cover KPIs linked to the service catalogue item 'CTP' and be a good barometer of service health e.g. CTP request backlog health, average time to complete a CTP change, hours expended across different teams to complete a CTP task.