Senior Manager, Cyber Security Assessment & Testing CCO

Senior Manager Cyber Security Assessment & Testing CCO

The GCIO Chief Control Office (CCO) team plays an important role in enabling the bank to operate within its risk appetite by ensuring efficient and effective risk and control management. We do this by providing operational risk and control expertise specialist technical knowledge and a deep understanding of the businesses and functions we serve. Key activities include implementation and oversight of the Groups Risk Management Framework ongoing and targeted controls assessments implementing and maintaining robust risk governance and championing a proactive risk culture. GCIO CCO works closely with partners across all lines of defence and is responsible for maintaining positive relationships with our regulators and external partners.

In this fantastic new role you will join a growing team to partner with the CISO CCO to oversee the risk and control portfolio related to the services Cybersecurity Assessment and Testing (CSAT) provides to the Group. CSAT oversees Vulnerability Management Application Security Penetration Testing and Red Teaming Threat Modelling and other related services

You will be a leader within the GCIO Chief Control Office (GCIO CCO) Function that directly supports the

Group CISO within HSBC.

This is a truly global role and you will be expected to support and collaborate with other team members across multiple regions as well as manage their portfolio in maintaining an acceptable risk profile

In this role duties will include:

• Acting as a trusted advisor for senior management by partnering to manage their operational risk i.e. risk assessments control environment issues management.
• Promoting accountable risk and control decision-making based on quality data and analysis actively challenging poor inefficient or excessive controls related tasks and behaviours.
• Providing specialist risk and control knowledge and insights leading efforts to continuously improve the control environment and monitoring of risk including behaviours
• Advising and designing process and controls in a commercially viable practical and effective manner.
• Identifying trends to anticipate future developments in the risk and control environment.
• Influencing and shaping the development and implementation of future-fit risk management and regulatory frameworks.
• Providing Senior Management with updates on any relevant changes to policy or projects related to operational risk that have an impact on their area of responsibility.

To be successful in this role you should have the following skills:

Technical:

• One or more or the control capabilities in the domain (Vulnerability Management Penetration Testing and Red Teaming Application Security Threat Modelling)
• Management of operational risk non-financial risk and/or technology and information security risk
• Management of diverse risk types
• Identifying defining and solving problems that have impact on your work or the wider business
• Process improvement and delivery
• Stakeholder Management
• Active industry recognized certificates will be an asset e.g. CISA CISSP CRISC CCSP

Behavioural Skills:

• Business partnering
• Customer Orientated
• Outcome Orientated
• Problem Solver

Cognitive Skills:

• Divided attention
• Auditory processing
• Critical thinking
• Collaboration

This role is based in Sheffield on a hybrid basis.

Being open to different points of view is important for our business and the communities we serve. At HSBC were dedicated to creating diverse and inclusive workplaces - no matter their gender ethnicity disability religion sexual orientation or age. Wearecommittedto removing barriers and ensuring careersatHSBCareinclusiveandaccessible for everyone to be at their take pride in being a Disability Confident Leader and will offer an interview to people with disabilities long term conditions or neurodivergent candidates who meet the minimum criteria for the role.

Ifyouhaveaneedthatrequiresaccommodationsor changes duringtherecruitmentprocess please get in touch with our Recruitment Helpdesk:

Email:

Telephone: 44