Informacje o stanowisku

about-project :

• The Cybersecurity Research and Offensive Security (CROS) function is building up its capabilities to form a global team of highly skilled security researchers.
• The Security Research team, within the Global CROS function, provides a specialist approach to assessing the security of systems and technology, identifying previously unknown vulnerabilities and new attack techniques. Additionally, the Security Research team supports the wider CROS function by developing tools and automation of processes to enhance security assessment.
• The role holder will be responsible for leading, managing and delivering CROS security research projects, on a wide range of technologies to ensure that HSBC is well positioned against a variety of Cybersecurity related advanced attack scenarios.

• Deliver security research projects focused on HSBC critical services and projects to ensure that design, quality and implementation of controls do not expose the bank to a significant level of risk.
• Achieve excellence by driving performance, compliance and security.
• Identifying previously unknown vulnerabilities and new attack techniques.
• Develop tools and automation of processes to enhance security assessment.
• Work with key stakeholders to proactively drive the reduction in Cybersecurity risks and to improve the security risk posture of HSBC within the business risk appetite.
• Provide subject matter expertise and guidance to a broad range of stakeholders across global business and functions.
• Engage with a diverse set of stakeholders in order to achieve CROS objectives, including Business and Functions, Cybersecurity leads, Head of Cybersecurity functions and Control Owners.
• Engage with specialist technology functions such as, Cybersecurity Technology, Cybersecurity Operations and Security Architecture.

• Experience in vulnerability identification and exploitation.
• Demonstrated experience in network security, embedded systems & hardware hacking.
• Understanding of analysis of mobile technologies.
• Demonstrated experience in third party vulnerability disclosure, source code review and penetration testing.
• Demonstrated experience in black box software security review techniques, including ‘fuzzing’ and reverse engineering.

• Competitive salary
• Annual performance-based bonus
• Additional bonuses for recognition awards
• Multisport card
• Private medical care
• Life insurance
• One-time reimbursement of home office set-up (up to 800 PLN)
• Corporate parties & events
• CSR initiatives
• Nursery discounts
• Financial support with trainings and education
• Social fund
• Flexible working hours
• Free parking

• sharing the costs of sports activities
• private medical care
• sharing the costs of professional training & courses
• life insurance
• remote work opportunities
• flexible working time
• integration events
• corporate sports team
• retirement pension plan
• corporate library
• no dress code
• coffee / tea
• parking space for employees
• leisure zone
• extra social benefits
• employee referral program
• opportunity to obtain permits and licenses
• charity initiatives
• family picnics
• extra leave
• In-office gym

Kraków - Oferty pracy w okolicznych lokalizacjach