Offensive Security provides an independent challenge to HSBC’s cybersecurity posture by bringing the attacker’s mindset to find and exploit vulnerabilities and to simulate real-world attacks. Through this, OffSec discover weaknesses across people, process, and technology, enabling the Firm to better understand its exposure to cybersecurity attacks and to drive a proactive approach to protect itself and to manage risk more effectively.
The Security Research team, within the Global Cybersecurity Research and Offensive Security CROS function, provides a specialist approach to assessing the security of systems and technology, identifying previously unknown vulnerabilities and new attack techniques. Additionally, the Security Research team supports the wider CROS function by developing tools and automation of processes to enhance security assessment.
responsibilities :
Deliver security research projects focused on HSBC critical services, ensuring that design, quality and implementation of controls do not expose the bank to a significant level of risk.
Identify previously unknown vulnerabilities and new attack techniques.
Work with key stakeholders to proactively drive the reduction in Cybersecurity risks and improve the security risk posture of HSBC within the business risk appetite.
Provide subject matter expertise and guidance to a broad range of stakeholders across global business and functions.
Engage with relevant programmes that are critical to the bank.
Understand the financial services industry security and threat landscape.
Engage with a diverse set of stakeholders to achieve CROS objectives, including Business and Functions, Cybersecurity leads, Head of Cybersecurity functions and Control Owners.
Achieve excellence by driving performance, compliance and security.
