.
Prinicpal Security Researcher
  • Kraków
Prinicpal Security Researcher
Kraków, Kraków, Lesser Poland Voivodeship, Polska
HSBC Service Delivery (Polska) Sp. z o.o.
5. 9. 2025
Informacje o stanowisku

technologies-expected :


  • Android
  • iOS

about-project :


  • Offensive Security provides an independent challenge to HSBC’s cybersecurity posture by bringing the attacker’s mindset to find and exploit vulnerabilities and to simulate real-world attacks. Through this, OffSec discover weaknesses across people, process, and technology, enabling the Firm to better understand its exposure to cybersecurity attacks and to drive a proactive approach to protect itself and to manage risk more effectively.
  • The Security Research team, within the Global Cybersecurity Research and Offensive Security CROS function, provides a specialist approach to assessing the security of systems and technology, identifying previously unknown vulnerabilities and new attack techniques. Additionally, the Security Research team supports the wider CROS function by developing tools and automation of processes to enhance security assessment.

responsibilities :


  • Deliver security research projects focused on HSBC critical services, ensuring that design, quality and implementation of controls do not expose the bank to a significant level of risk.
  • Identify previously unknown vulnerabilities and new attack techniques.
  • Work with key stakeholders to proactively drive the reduction in Cybersecurity risks and improve the security risk posture of HSBC within the business risk appetite.
  • Provide subject matter expertise and guidance to a broad range of stakeholders across global business and functions.
  • Engage with relevant programmes that are critical to the bank.
  • Understand the financial services industry security and threat landscape.
  • Engage with a diverse set of stakeholders to achieve CROS objectives, including Business and Functions, Cybersecurity leads, Head of Cybersecurity functions and Control Owners.
  • Achieve excellence by driving performance, compliance and security.

requirements-expected :


  • Demonstrated experience running highly sensitive projects.
  • Participation in the Cyber Security industry.
  • Understanding of analysis of common operating system, such as Linux, Windows, Google Android and iOS.
  • Demonstrated experience in third party vulnerability disclosure.
  • Demonstrated experience in software development.
  • Demonstrable experience in tooling, automation and prototyping.
  • Demonstrated experience in source code review.
  • Demonstrated experience in penetration testing.

offered :


  • Competitive salary
  • Annual performance-based bonus
  • Additional bonuses for recognition awards
  • Multisport card
  • Private medical care
  • Life insurance
  • One-time reimbursement of home office set-up (up to 800 PLN).
  • Corporate parties & events
  • CSR initiatives
  • Nursery discounts
  • Financial support with trainings and education
  • Social fund
  • Flexible working hours
  • Free parking

benefits :


  • sharing the costs of sports activities
  • private medical care
  • sharing the costs of professional training & courses
  • life insurance
  • remote work opportunities
  • flexible working time
  • integration events
  • corporate sports team
  • retirement pension plan
  • corporate library
  • no dress code
  • coffee / tea
  • parking space for employees
  • leisure zone
  • extra social benefits
  • employee referral program
  • opportunity to obtain permits and licenses
  • charity initiatives
  • family picnics
  • extra leave
  • In-office gym

  • Praca Kraków
  • Chief security officer Kraków
  • Kraków - Oferty pracy w okolicznych lokalizacjach


    111 991
    18 313