Head of Cybersecurity Engagement, Education and Training - HSBC - Jersey City, New Jersey
Click Here to Apply Online
North America-United States-New Jersey-Jersey City
The Head of Cybersecurity Engagement, Education and Training is responsible for developing, leading and driving the Cybersecurity Engagement Strategy across HSBC, covering executives, staff and clients. Reporting to the Head of Governance, Risk, Control, and Engagement, this role is pivotal to raising cyber security competency across our 230,000 employees, their clients and their stakeholders.
Key responsibilities include:
- Own, develop and drive the implementation the Cybersecurity Engagement Strategy for HSBC globally. It’s purpose is to raise cyber competency levels across all employees and to inform, engage, and assist our clients, regulators, and suppliers in understanding cyber threats and the steps HSBC is taking to protect its clients and business partners.
- Communications and Engagement
- Develop and implement executive level and operational communication support within the Cybersecurity service lines, to deliver a communication strategy to advise, inform and promote Cybersecurity activities to senior stakeholders across GB/GFs, CIOs and Technology teams. This includes developing executive white papers and education of the successes of the Cybersecurity programmes etc.
- Working in partnership with Cybersecurity technical teams develop Executive education programme to enable business leaders to understand the threats to their businesses and how these are being addressed. This includes developing executive white papers and education of the successes of the Cybersecurity programmes etc.
- Working in partnership with the central communications team to develop and roll out an integrated global employee communications strategy, to establish strong engagement, employee awareness and collaboration across all functional teams within Cybersecurity
- Developing and implementing measures to assess the success of communication and engagement activity
- Education and Training
- Develop and implement tailored education and training packages to meet the needs of different stakeholders.
- Create measures to understand and assess the effectiveness of education training packages in delivering a more cyber competent workforce.
- In time, Develop education packages suitable for delivery to clients, and business partners.
- Team Leadership
- Manage a team (c5 FTE) with the view of growing and developing the team over time, based on demand. The team will support on specific global organisational change activities as required to drive forward the Cybersecurity strategic change agenda
Impact on the Business
- Ownership and accountability for cybersecurity engagement strategies across HSBC’s global organisation, constantly analysing the delivery model to ensure operational effectiveness and efficiency
- Create and lead a cohesive, global stakeholder engagement strategy to support the function’s vision, strategic objectives and people agenda, in line with HSBC’s strategy, values and purpose
- Influence and collaborate with senior stakeholders (CIO, COO, CEOs) and business partners, building strong relationships to ensure consensus and influence change outcomes. Fosters open and honest communication which anticipates stakeholder expectations
- Leads the creation of content and messages to engage stakeholders/employees about the progress and priorities of Cybersecurity, aligned to the purpose, strategy and values
- Partnering with Senior Technology and business stakeholders in reacting to delivery challenges and recommending and managing resolution plans
- Partnering and influencing senior stakeholders in delivering the Cybersecurity organisational change agenda
- Implementing and driving Cybersecurity organisational improvement initiatives while managing global teams to provide optimised services adjusted to addressing regional anomalies where appropriate
Customers / Stakeholders
- Ensures close and effective working relationships with Global Business and Regional teams. Business Service stakeholders largely split across multiple countries
- Builds trusted relationships with senior leadership across the Globe
- Establishes effective mechanisms for decision making and for appropriate escalation of information to appropriate Management Committees
- Ensure that Global Businesses and Global Functions have a clear understanding of Cybersecurity priorities and initiatives
Leadership & Teamwork
- Build out and lead a high calibre team whilst ensuring high engagement and motivation levels
- Actively encourages a learning culture, encouraging collaboration and cross-functional working to develop colleagues across the global Cybersecurity community
- Develops critical skillsets in team members and provide a stimulating work environment
- Recruits and retains high calibre, diverse team members, developing the capacity, capacity and talent to provide for succession and ensure delivery of Cybersecurity objectives
- Establishes effective career paths and mobility opportunities across the global Cybersecurity organisation
- Promotes an environment that supports diversity, inclusion which reflects the Technology Manifesto behaviours
- Works with key senior stakeholders in Technology and across the Group to identify priorities and recognise potential areas of opportunities
Operational Effectiveness & Control
- Ensures appropriate oversight mechanisms and high standards of internal control
- Leads the development of metrics to track and measure the delivery and impact of engagement programmes, sharing insights with the Cybersecurity leadership team
- Enhances operational controls through constructive identification and challenging of issues
- Ensure adherence to all set governance and policies
- Flexibility and adaptability – constantly changing priorities and tasks that are potentially highly restricted in nature, unpredictable and wide ranging, complex and time sensitive requires the simultaneous handling of a broad range of issues
- Stakeholder considerations – effective stakeholder management to ensure the highest quality, most succinct output that is suitable for senior executive management and external parties. Builds strong partnerships with key stakeholders, possess the credibility to build relationships, counsel and constructively challenge senior leaders
- Staying abreast of external developments, global regulation and competitor activity. Proactive identification of issues and initiation of structured discussions with the key stakeholders, maintaining alignment to deliver against the Cybersecurity strategy and goals
- Sensitivity and trust – engendering a true sense of urgency, pace and collaboration across the global Cybersecurity community and buy-in from senior stakeholders
Management of Risk
- The jobholder will ensure the fair treatment of our customers is at the heart of everything we do, both personally and as an organisation.
- This will be achieved by consistently displaying the behaviours that form part of the HSBC Values and culture and adhering to HSBC risk policies and procedures, including notification and escalation of any concerns and taking required action in relation to points raised by audit and/or external regulators.
- The jobholder is responsible for managing and mitigating operational risks in their day to day operations. In executing these responsibilities, the Group has adopted risk management and internal control structure referred to as the ‘Three Lines of Defence’. The jobholder should ensure they understand their position within the Three Lines of Defence, and act accordingly in line with operational risk policy, escalating in a timely manner where they are unsure of actions required.
- Through the implementation the Global AML, Sanctions and ABC Policies, supporting Guidance, and Line of Business Procedures the jobholder will make informed decisions in accordance with the core principles of HSBC's Financial Crime Risk Appetite.
Observation of Internal Controls
- The jobholder will adhere to, and be able to demonstrate adherence to, internal controls and will implement the Group compliance policy by adhering to all relevant processes/procedures.
- The term ‘compliance’ embraces all relevant financial services laws, rules and codes with which the business has to comply. This will be achieved by adherence to all relevant procedures, keeping appropriate records and, where appropriate, by the timely implementation of internal and external audit points, including issues raised by external regulators.
- The jobholder will implement measures to contain compliance risk across the business area. This will be achieved by liaising with Compliance department about business initiatives at the earliest opportunity. Also and when applicable, by ensuring adequate resources are in place and training is provided, fostering a compliance culture and optimising relations with regulators.
- Strong interpersonal skills – ability to influence, lead and drive teams to deliver. Demonstrate good judgement and a high level of communication skills to achieve effective stakeholder management. Proven ability to articulate complex issues concisely, suitable for all levels across the HSBC group. Gravitas and ability to interact with and coach senior executives
- Ability to lead and motivate teams to effectively transform and embed cultural change
- Strong Commercial Orientation, ability in balancing risks vs. rewards and maximizing the cost effectiveness and profitability for the business
- Able to translate complex technical processes and tools, to simple concepts which can be understood by non-technical audiences
- Respectful of different cultures, working with colleagues from across all the globe
- Significant experience in tech marketing
- Experience leading major marketing/influence campaigns both for internal stakeholders and external clients across multiple geographies.
If you would like to notify the Diversity Recruitment team of your application or if you are simply interested in learning about opportunities at HSBC, please email [email protected]
This job is currently active.