Head of Cybersecurity Data Engineering - HSBC - Jersey City, New Jersey - EXPIRED

---

Posted on: 02-19-2020 in Jersey City, New Jersey

This is an archive of an expired job.

Job Information:

Company: HSBC

North America-United States-New Jersey-Jersey City

Cybersecurity Science and Analytics empowers Cybersecurity in protecting the bank by leveraging data and innovative capabilities to create effective and proactive security measures, as well as enabling data driven business decisions.

Cybersecurity Science and Analytics (CS&A) is made up of four core teams, who’s functions are to; move data, ensure it is in the right structure, automate processes, design infrastructure and keep the systems functioning (Data Engineering); manage the analytic engines and develop capabilities that generate knowledge (Analytic Engines); prove concepts and methods, while also solving the tactical challenges presented to the organization (Advanced Projects) and; develop the analytics methods (Artificial Intelligence).

This highly skilled and specialized team maintains subject matter expertise across a range of relevant topics, stays abreast of the latest adversary tactics, techniques and methodologies, and maintains the domain knowledge of advanced cyber security techniques and procedures. This knowledge base is maintained through close partnerships across HSBC and global engagements with industry, academia, and government.

The CS&A mission is critical to the protection of HSBC customers, the HSBC brand, HSBC information, financial assets and ultimately shareholder value, through ensuring HSBC remains a market leader in protecting our customers and assets.

The Head of Data Engineering will lead the Data Engineering Team and is accountable for:

• Developing and maintaining a highly skilled and effective team, both dedicated and rotational, of data engineers and infrastructure subject matter experts
• Setting the strategic and tactical direction of data engineering and infrastructure design for HSBC Cybersecurity Sciences and Analytics.
• Drive four missions:
  • Design and implement the infrastructure required for performing the analytic and science mission
  • Enable the optimal transfer of large datasets and information
  • Optimize analytic processes through scheme design and data structuring
  • Enable and drive automation throughout the sciences and analytic mission areas
• Driving strategic capabilities. Creating innovative data driven capabilities and prototypes that push the bounds of computer security analytics.
• Establishing HSBC as a valued contributor to the scientific community to improve the world wide state of security
• Working with the HSBC Leadership team to ensure the successful transition from AI prototypes to standard business practices, to improve HSBC’s security posture and business processes.
• Establish HSBC as a leader analytic methods and algorithms for information security through contributions across multiple sectors in industry, academia, and government.
• Prototype and push to production internal HSBC analytic capabilities, leveraging the global HSBC footprint and datasets, as well as external datasets, that can detect and enable the investigations of malicious cybersecurity activity 
• Working across Cybersecurity Sciences and Analytics to ensure a collaborative environment.
• Participation in and support of external offensive engagements with industry partners, law enforcement and the wider security community, that projects HSBC expertise in protecting the bank and its customers against systemic threats.
• Supporting the development of a “self-critical” culture, whereby identification of weaknesses in the bank’s control plane (people, process and technology), are brought to light in an effective manner, and addressed through performing strategic assessments that analyze the processes, techniques and procedures across the HSBC mission areas.
• Participation in special projects on behalf of HSBC and GCO Leadership.

• Supports the development of the Cybersecurity Science and Analytics function, engaging with colleagues across Cybersecurity and other IT functions to drive and deliver sustainable operational plans in line with department strategy.
• Leads and facilitates change through clear strategy, operational planning and effective communication and stakeholder management.
• Drives business performance, clear thinking and utilises experience whilst under pressure. 
• Delivers sustainable business outcomes. 
  • Responsible for building effective technology and process control capability that is continuously re-factoring to meet evolving security and compliance needs
  • Works closely with peers and business leads to build and implement controls in adlignment with risk-posture, architectural constraints, company strategic direction and industry trends and best practices.
• Drives delivery of the highest standards and outcomes, inspiring others to do the same.  Focuses on medium and long term goals even when under pressure or facing uncertainty.  Manages expectations, results and impact of agreed outcomes, thinking ahead to identify and overcome potential issues. 
• Strategically drives innovation to gain competitive advantage, taking calculated, entrepreneurial risks to achieve business outcomes.  Generates an environment in which innovation is seamlessly embedded into working practices. 

• Leads a customer-focused and collaborative culture by championing customer and stake-holder engagement throughout the team.
• Demonstrates an understanding of customer and stakeholder requirements by providing specialist input and knowledge and having a detailed understanding of the different short and long term shifts in business/function patterns of activity and demand.
• Understands and interprets developments and changes in future business requirement and ensures the appropriate reaction and response through discourse and the implementation of relevant, security focused, technical and procedural solutions.
• Strengthens stakeholder relationships and enhances key relationships using rapport-building expertise and appropriate influencing skills to add and increase stakeholder advocacy.  Key relationships to include Functional heads across the other HOST functions  and external account managers for third party suppliers and vendors, along with other regional counterparts across the globe, Cultivate strong relationships with organisationally important global and/or high value stakeholders with a tailored approach.

• Supports the development of the Cybersecurity Science & Analytics Team, making sustainable decisions that protects and enhances HSBC’s values, reputation and stakeholder value. 
• Actively encourages a learning culture, encouraging collaboration and cross-functional working to develop and nurture teams and identify talent. 
• Authentically engages a diverse group of stakeholders internally and externally to influence the achievement of best outcomes for all stakeholders.
• Builds rapport and mutual understanding to communicate and create opportunities for cross-business and/or international working, encouraging debate and open discussion.  Encourages people to build sustainable relationships beyond transactional levels and use empathy and insight to build better understanding of mutual benefits. 
• Advanced coach / mentor contributes to the establishment of good coaching and mentoring practices.  Demonstrates alternative techniques for diagnosing and coaching individuals and teams.

• Governs risk responsibly. Promotes ethical management of risk across regions and business areas within their area of responsibility. 
• Communicates changes in policy and governance effectively, reinforcing risk processes within their area of responsibility. 
• Builds and sustains a risk aware culture. Shows integrity whilst promoting and managing relevant monitoring and reporting requirements within their area of responsibility. 
• Embeds efficient risk and compliance processes and procedures into business as usual practices.
• Builds collaborative relationships, defines and articulates to stakeholders the targeted benefits for a change intervention. 
• Demonstrates effective financial skills to develop a detailed business case, including investments, detailed benefits (financial, non-financial and strategic) and link to overall finances of the business.
• Identifies and highlights financial implications of risks/issues, involves stakeholders and supports management of budget variation as appropriate.

Local Job Requirements (This includes, Role Dimensions, Role Context and Major Challenges)

• Budget & People – This role will manage a team of circa 6 direct reports and no direct accountability for departmental budgets.
• Relationships - Key relationships include other Cybersecurity Service Lines, ITID, ADM and HOST and extends to peers across regions, other GB/GF and Security Function heads and generally up to 2 level higher in the organisation, as well audit, regulators and key government agencies and security forums. Will also include external relationships with vendors, acting as a subject matter expert.
• Regulatory & Risk Management - Working closely with Cybersecurity Functions and peers across the HOST function to deliver sustainable results, build strong relationships with internal and external stakeholders (risk, audit, government agencies, industry forums etc.) to understand the IT/Information Security risk profile, monitor compliance with policies and standards and identify and address any regional or country specific requirements. 
• Strategic input - Providing influence and input to ensure alignment between Cybersecurity and GB/GF strategic outcomes and business goals.  Uses extensive technical knowledge and experience to solve complex problems and propose implementable solutions, to deliver ongoing improvements in line with business strategy.
• Technology - The role holder will have exceptional knowledge of their technical environment and will have significant influence in setting the way forward in the types of technology they utilise. Forward thinking, making the right decisions based on strategy.

• The jobholder will ensure the fair treatment (service excellence) of our customers is at the heart of everything we do, both personally and as an organisation.
• The jobholder will also continually reassess the IT Security and operational risks associated with the role and inherent in the business, taking account of changing economic or market conditions, legal and regulatory requirements, operating procedures and practices, management restructurings, and the impact of new technology.
• This will be achieved by ensuring all actions take account of the likelihood of operational risk occurring. Also by addressing any areas of concern in conjunction with entity management and/or the appropriate department.

• Maintains HSBC internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.
• The jobholder will also adhere to and be able to demonstrate adherence to internal controls. This will be achieved by adherence to all relevant procedures, keeping appropriate records and, where appropriate, by driving the timely implementation of internal and external audit points, including issues raised by external regulators, and internally identified IT security risks.
• The jobholder will implement the group compliance policy by containing compliance risk in liaison with Global Head of Compliance, Global Compliance Officer, Area Compliance Officer or Local Compliance Officer. The term ‘compliance’ embraces all relevant financial services laws, rules and codes with which the business has to comply.
• This will be achieved by adhering to all relevant processes/procedures and by liaising with compliance department about new business initiatives at the earliest opportunity. Also and when applicable, by ensuring adequate resources.

 

 

If you would like to notify the Diversity Recruitment team of your application or if you are simply interested in learning about opportunities at HSBC, please email [email protected]