You’ll be making banking more secure by designing, implementing, and operating controls to manage cybersecurity risk. You’ll help define HSBC Group cyber security posture and deliver global cryptographic best practices and services. HSBC is undergoing a transformation of its Cryptography controls, tooling, practices and capabilities for on premise and cloud environments. The role is to work alongside Control Owner and lead a team of Cryptography SME’s to design and implement hardware security modules management together with secure cryptography room management.
Head of Hardware Security Modules and Secure Cryptography Rooms is a capability owner role and reports to the Core cryptography capability owner Capability owners define and maintain Capability Strategy, supported by Enterprise Architecture, Security Architecture and Control Owners, in response to business strategies, regulator expectations, technology and practise advancement.
responsibilities :
Define, and deliver vision, strategy, and roadmap for hardware security modules management together with secure cryptography room management.
Lead assigned internal and external partners to deliver the agreed uplift in technology and practises.
Work with business and technology owners to agree scope and priorities.
Define, and deliver vision, strategy, and roadmap for hardware security modules management together with secure cryptography room management.
Lead assigned internal and external partners to deliver the agreed uplift in technology and practises.
Work with business and technology owners to agree scope and priorities.
Ensure that best practises for hardware security modules management and secure cryptography room management are being followed across HSBC estate.
requirements-expected :
Hands on experience of managing hardware security modules management and/or secure cryptography room management.
Understanding and knowledge of common industry cyber security frameworks, standards, and methodologies, including but not limited to: NIST standards, FIPS, PCI DSS.
Proven track record of working with technical, Cybersecurity and/or operations teams.
Strong stakeholder management skills, with experience of understanding and meeting the needs of multiple stakeholders.
Excellent understanding of cybersecurity principles, global financial services business models, as well as regional compliance standards, relevant local regulations, and applicable laws.
A background in information systems, technology, architecture, design, and service delivery of defence-in-depth capabilities.
Demonstrated leadership experience with large, complex programs, and deeply technical global expert.
An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily understood, authoritative and actionable manner.
offered :
Competitive salary
Annual performance-based bonus
Additional bonuses for recognition awards
Multisport card
Private medical care
Life insurance
One-time reimbursement of home office set-up (up to 800 PLN)
Corporate parties & events
CSR initiatives
Nursery discounts
Financial support with trainings and education
Social fund
Flexible working hours
Free parking (Cracow office)
benefits :
sharing the costs of sports activities
private medical care
sharing the costs of professional training & courses