.
Head of Cybersecurity Operations Integration
  • Kraków
Head of Cybersecurity Operations Integration
Kraków, Kraków, Lesser Poland Voivodeship, Polska
HSBC Service Delivery (Polska) Sp. z o.o.
8. 11. 2024
Informacje o stanowisku

about-project :


  • Some careers shine brighter than others.
  • If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.
  • Your career opportunity
  • Reporting directly into the ‘Head of Sustainable Cybersecurity Operations’, the Head of Cybersecurity Operations Integration is responsible for leading a small team tasked with the onboarding of new technologies, business services logging feeds and cybersecurity tooling into the Global Cybersecurity Operations Security Operation Centre (SOC).
  • The role holder will lead the team to achieve the desired outcomes via proactive and collaborative stakeholder engagements across the technology landscape. Working closely with the technology owners and the operational security teams, the role holder will continuously review and manage onboarding requests to ensure a cyber-threat intelligence led approach to the prioritization of engagements and focus areas.

responsibilities :


  • Develop, implement, and maintain a technology and log ingestion framework that aligns to control requirements and supports a cyber-threat intelligence led approach to the detection, response and containment of cyber-threats.
  • Develop and maintaining a flexible stakeholder engagement model that caters for both proactive and reactive collaboration and can rapidly adjust and reprioritise workloads in response to the changing threat-landscape.
  • Build and maintaining strong processes and collaborative working practices with supporting teams in Sustainable Cybersecurity Operations and the wider Global Cybersecurity Operations & Intelligence teams.
  • Build relationships and engagements with the many technology and platform owner stakeholders.
  • Successfully maintain these relationships and delivering prioritised outcomes in an environment where relationships can be complex and priorities are often divergent.
  • Maintain governance across all Cyber Ops Integration activities and ensuring the creation, collection and processing of key data points to feed into relevant service reporting e.g. service delivery metrics, KPIs, KCIs, and performance dashboards.
  • Set team goals and objectives and managing staff performance.
  • Ensur the team are proactive, tenacious and self-driven. This role requires both a reactive and a proactive approach to ensure risks are reduced and the correct priorities are always identified.
  • Develop and maintain a functional strategy that support continuous improvement and is aligned to the wider Sustainable Operations and Global Cybersecurity Operations & Intelligence strategy and goals.

requirements-expected :


  • Formal education and advanced degree in Information Security, Cyber-security, Computer Science, or similar and/or relevant work experience in the same area.
  • Experience in a cybersecurity or technical related leadership position, preferably in the finance or similarly regulated sector
  • Excellent knowledge and demonstrated experience of common cybersecurity technologies such as; IDS / IPS / HIPS, AV, EDR, Firewalls, Proxies etc.
  • Excellent knowledge of common network protocols such as TCP, UDP, DNS, DHCP, IPSEC, HTTP, etc. and network protocol analysis suits.
  • Excellent knowledge of common enterprise technology infrastructure, platforms and tooling, including; Windows, Linux, infrastructure management and networking hardware.
  • Good knowledge and technical experience of 3rd party cloud computing platforms such as AWS, Azure and Google their associated security tooling/platforms.
  • Good knowledge and demonstrated experience in incident response tools, techniques and process for effective threat containment, mitigation and remediation.
  • Excellent knowledge and demonstrated experience of common log management suites, Security Information and Event Management (SIEM) tools such as Splunk Enterprise Security or Microsoft Sentinel. Knowledge of cloud based “data lake” solutions used for the collection and real-time advanced analysis of security information.

offered :


  • Competitive salary
  • Annual performance-based bonus
  • Additional bonuses for recognition awards
  • Multisport card
  • Private medical care
  • Life insurance
  • One-time reimbursement of home office set-up (up to 800 PLN)
  • Corporate parties & events
  • CSR initiatives
  • Nursery discounts
  • Financial support with trainings and education
  • Social fund
  • Flexible working hours
  • Free parking

benefits :


  • sharing the costs of sports activities
  • private medical care
  • sharing the costs of professional training & courses
  • life insurance
  • remote work opportunities
  • flexible working time
  • integration events
  • corporate sports team
  • doctor’s duty hours in the office
  • retirement pension plan
  • corporate library
  • no dress code
  • coffee / tea
  • parking space for employees
  • leisure zone
  • extra social benefits
  • employee referral program
  • opportunity to obtain permits and licenses
  • charity initiatives
  • family picnics
  • extra leave
  • In-office gym

  • Praca Kraków
  • Kraków - Oferty pracy w okolicznych lokalizacjach


    103 327
    17 305