This role is part of the Proxy and Remote Access Security function within the Cyber Technology and Engineering (CTE) organisation, providing a Cybersecurity security technology expertise and engineer service to the wider HSBC organisation.
This role supports and is supported by the Head of Proxy and Remote Access and the Head of Network Security, with the expectation that the Principal SME – Proxy and Remote Access provides technical expertise and SME knowledge to the engagements and projects assigned to them, taking ownership, and driving to a successful conclusion, and supports other Cybersecurity or Connectivity Engineering team members providing coaching, guidance and leadership as needed, whilst ensuring the Head of Proxy and Remote access Security and the Head of Network Security are kept updated on any issues requiring support.
responsibilities :
Use their networking, network security, proxy and remote access experience and knowledge to review Business and IT projects and provide advice and guidance, ensuring network security control requirements are satisfied.
Identify and drives opportunities to improve network security posture based on an understanding of current control and technology environment.
Understand internet content filtering and/or remote access security threats and risks, able to identify areas of network security risk and propose solutions.
Interact with technical leaders and various layers of management considered a plus.
Be able to analyse network and cybersecurity data (e.g. system logs) to support decision making and evidence control effectiveness.
Be able to build connections and work collaboratively across boundaries.
Learn and share learnings with others.
Be able to to coach and guide both cybersecurity and non-cybersecurity team members as needed.
requirements-expected :
Extensive experience of data networks and security design and engineering, preferably acquired in a highly regulated environment. Experience of data gathering from variety of sources including inputs from business, offline spreadsheets, IT systems, etc. Experience of the application of critical thinking and of articulating findings from analysing complex data.
Preparation of reports and presentations for consumption by senior audiences.
Experience in managing expectations of stakeholders, experience of providing leadership/guidance to more junior colleagues.
Understanding of data networking principles and industry frameworks. Understanding of risk management fundamentals. Knowledge and experience of delivery using Agile and/or DevOps methodologies Knowledge and experience of IT service management principles e.g. change control, incident and problem management, resilience and business recovery planning etc.
Bachelor’s degree in Computer Science/Engineering or Cybersecurity.
Industry qualifications (CISSP, CISA, CISM, CCNA, CCIE etc).
Scripting ability in python, perl, or alternative language.
Familiarity with cloud computing concepts and security, familiarity with security operations activities and tooling (incident response, SIEM tools etc.).
offered :
Competitive salary
Annual performance-based bonus
Additional bonuses for recognition awards
Multisport card
Private medical care
Life insurance
One-time reimbursement of home office set-up (up to 800 PLN)
Corporate parties & events
CSR initiatives
Nursery discounts
Financial support with trainings and education
Social fund
Flexible working hours
Free parking
benefits :
sharing the costs of sports activities
private medical care
sharing the costs of professional training & courses
