If you’re looking for a career where you can make a real impression, join Global Service Center (GSC) HSBC and discover how valued you’ll be. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.
We are currently seeking an experienced professional to join our team in the role TPSA Senior Analyst
Role Purpose:
The risk consultant role will inform the development of and execute an end-to-end consultancy service to inform, guide and assess Cyber risk exposures in the selection and onboarding of critical suppliers.
This includes, but not limited to:
Green field opportunity, working with our transformation programme to define and shape a developing approach for Cyber risk consultancy integrating into the end-to-end procurement process from supplier selection to completed onboarding and issue remediation.Acting as a pioneer to prove the developing approach you will engage with other Cyber teams, Third Party Management, and other risk teams to deliver Cyber risk support and assessment of a selection of critical supplier engagements, with an initial focus in the UK.Develop as an SME and help to inform wider embedding and training on the consultancy approach to peer TPSA analysts to build and develop the team. Support Control Officers, Risk Stewards, Internal and External Audit, and Regulators with any relevant reviews, examinations, and information requests. As a leader within both CSAT and Cybersecurity, the role-holder will be expected to contribute to, be an ambassador for, and to drive delivery of the cybersecurity strategy.Main Activities:
The role functionally reports into the Global Head of Third Party Security Assessment.5-7 YoEThe candidate will be able to demonstrate strong leadership; communication in business English – both in verbal and written form; an obsession for delivering high-quality outcomes, whilst often under pressure/at pace; constant curiosity and drive to ensure repeatable outcomes are more effectively achieved; experience in managing and influencing stakeholders from diverse backgrounds and cultures, often remotely, and; leading a global team and relationships with global service providers. The role holder may be required to engage with senior stakeholders including Technology and Cybersecurity leadership in regions; stakeholders across all lines of defence: Chief Controls Office Technology, 2LoD Resilience Risk and 3LoD Internal Audit teams, and will be required to support regulatory examinations.Knowledge in many technology domains like: A. Risk Management, B. Information Security Policy, C. Human Resource Security, D. Asset Management, E. Physical Security Controls, F. Access Control, G. System Configuration/Management, H. Threat and Vulnerability Management, I. Data Loss Prevention, J. Network Management, K. Logging and Monitoring, L. Encryption, M. Change Management, N. Software Development Lifecycle (SDLC), O. Incident Management, P. Business Continuity, Q. Third Party Management, R. Cloud Computing, S. Compliance, X. Third Party Management (HSBC).If you’re looking for a career where you can make a real impression, join Global Service Center (GSC) HSBC and discover how valued you’ll be. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.
We are currently seeking an experienced professional to join our team in the role TPSA Senior Analyst
Role Purpose:
The risk consultant role will inform the development of and execute an end-to-end consultancy service to inform, guide and assess Cyber risk exposures in the selection and onboarding of critical suppliers.
This includes, but not limited to:
Green field opportunity, working with our transformation programme to define and shape a developing approach for Cyber risk consultancy integrating into the end-to-end procurement process from supplier selection to completed onboarding and issue remediation.Acting as a pioneer to prove the developing approach you will engage with other Cyber teams, Third Party Management, and other risk teams to deliver Cyber risk support and assessment of a selection of critical supplier engagements, with an initial focus in the UK.Develop as an SME and help to inform wider embedding and training on the consultancy approach to peer TPSA analysts to build and develop the team. Support Control Officers, Risk Stewards, Internal and External Audit, and Regulators with any relevant reviews, examinations, and information requests. As a leader within both CSAT and Cybersecurity, the role-holder will be expected to contribute to, be an ambassador for, and to drive delivery of the cybersecurity strategy.Main Activities:
The role functionally reports into the Global Head of Third Party Security Assessment.5-7 YoEThe candidate will be able to demonstrate strong leadership; communication in business English – both in verbal and written form; an obsession for delivering high-quality outcomes, whilst often under pressure/at pace; constant curiosity and drive to ensure repeatable outcomes are more effectively achieved; experience in managing and influencing stakeholders from diverse backgrounds and cultures, often remotely, and; leading a global team and relationships with global service providers. The role holder may be required to engage with senior stakeholders including Technology and Cybersecurity leadership in regions; stakeholders across all lines of defence: Chief Controls Office Technology, 2LoD Resilience Risk and 3LoD Internal Audit teams, and will be required to support regulatory examinations.Knowledge in many technology domains like: A. Risk Management, B. Information Security Policy, C. Human Resource Security, D. Asset Management, E. Physical Security Controls, F. Access Control, G. System Configuration/Management, H. Threat and Vulnerability Management, I. Data Loss Prevention, J. Network Management, K. Logging and Monitoring, L. Encryption, M. Change Management, N. Software Development Lifecycle (SDLC), O. Incident Management, P. Business Continuity, Q. Third Party Management, R. Cloud Computing, S. Compliance, X. Third Party Management (HSBC).Bachelor’s degree and/or similar experience, preferably in IT security in the Financial Services industry or global corporate service providerHave one or more industry-recognised cybersecurity-related certifications including CISA, CISM, CISSP, CRISC and CCSP etc.A demonstrable technical understanding in Cloud Security (particularly for SaaS) is desired.Risk and Control Management frameworksStrong stakeholder management and communications skillsExperience in third party / supply chain governanceExperience of working in international and diverse environmentsExperience in engaging with third parties, business, regional and regulator stakeholders.Ability to communicate to and influence executive leadership – effectively translating technical gaps into business risk.Ability to prepare concise updates, reports, and presentations for senior management.Ability to manage multiple projects and priorities concurrently.Effective Change Leader with the ability to complete tasks independently to a high-quality standard.Possess strong leadership and influencing skills to drive and embed change.Experience within fast-moving, complex, and demanding corporate environments able to provide trusted advice and guidance with authority to peers and senior stakeholders.Due to the urgent hiring need, candidates with immediate right to work locally and no relocation need will be prioritised.
At HSBC we offer our colleagues a greater number of leave days so that they can fully enjoy their wedding, take care of the new member of the family, or grieve the loss of a family member. Our paid leave package is at the forefront in Mexico, now you have one more reason to be HSBC and proudly live a culture of well-being, balance and care.
HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.
Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.
Issued By HSBC Electronic Data Process Mexico Private LTD
Bachelor’s degree and/or similar experience, preferably in IT security in the Financial Services industry or global corporate service providerHave one or more industry-recognised cybersecurity-related certifications including CISA, CISM, CISSP, CRISC and CCSP etc.A demonstrable technical understanding in Cloud Security (particularly for SaaS) is desired.Risk and Control Management frameworksStrong stakeholder management and communications skillsExperience in third party / supply chain governanceExperience of working in international and diverse environmentsExperience in engaging with third parties, business, regional and regulator stakeholders.Ability to communicate to and influence executive leadership – effectively translating technical gaps into business risk.Ability to prepare concise updates, reports, and presentations for senior management.Ability to manage multiple projects and priorities concurrently.Effective Change Leader with the ability to complete tasks independently to a high-quality standard.Possess strong leadership and influencing skills to drive and embed change.Experience within fast-moving, complex, and demanding corporate environments able to provide trusted advice and guidance with authority to peers and senior stakeholders.Due to the urgent hiring need, candidates with immediate right to work locally and no relocation need will be prioritised.
At HSBC we offer our colleagues a greater number of leave days so that they can fully enjoy their wedding, take care of the new member of the family, or grieve the loss of a family member. Our paid leave package is at the forefront in Mexico, now you have one more reason to be HSBC and proudly live a culture of well-being, balance and care.
HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.
Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.
Issued By HSBC Electronic Data Process Mexico Private LTD