Cybersecurity Control Design Manager
about-project :
- Whilst the job holder will be based in Krakow, Poland, this is a Global role covering Global Cybersecurity Controls applicable to all countries and legal entities.
- Cybersecurity Controls Design Manager will play a key role in the design and maintenance of the Cybersecurity control environment. The role holder will be tasked with defining and maintaining operational controls instances, their measurements as well as Policies, Procedures and Standards for Group Cybersecurity.
responsibilities :
- Work with the Control Owners, 2LoD and CCO Technology to ensure that the Cybersecurity owned controls in the Risk and Controls Library are designed according to the Bank’s requirements and industry standards and best practices (e. g. , NIST 800-53).
- Work with the Control Owners and other stakeholders to ensure that Cybersecurity control measurements are defined in accordance with HSBC’s KCI Design Framework and industry best practices (CIS).
- Work with CRCS teams to ensure that the defined controls are compliant with Legal/Regulatory/Mandatory requirements and that measurements provide sufficient data for stakeholder reports.
- Design, manage and maintain Policies, Procedures and Standards for Cybersecurity controls, covering all areas across Engineering, Operations and Security Assessment and Testing.
requirements-expected :
- Strong Risk and Controls Background. Significant, subject matter expertise in Control Management. This includes but is not limited to controls design and implementation and control assessment. Ability to translate difficult IT concepts into business-friendly language. Experience with Technology risks and controls.
- Technical background. Knowledge of Cybersecurity – at least a generalist with specialist area expertise welcome. Good understanding of Network Security will be a major plus. Possession of recognized certificates will be an advantage. Understanding of metrics and measures in managing risks and controls (KCIs, KRIs, KPIs) is a must. Technical writing skills and highly proficient use of written English is required to ensure quality output for Control, Policies, Procedure and Standards design and maintenance.
- Strong stakeholder management and communications skills. Experience of working at an operational level in international environments which drive a truly international perspective.
- Team-oriented mentality combined with ability to complete tasks independently to a high-quality standard. Experience within fast-moving, complex, and demanding corporate environments where Cybersecurity controls issues must be handled on a large scale and with a need to multi-task whilst dealing with ambiguity and change.
- Interpersonal Skills. Ability to be influential, credible, and persuasive, active listener, showing good judgement and demonstrating high level of communication skills to achieve effective stakeholder management.
offered :
- Competitive salary
- Annual performance-based bonus
- Additional bonuses for recognition awards
- Multisport card
- Private medical care
- Life insurance
- One-time reimbursement of home office set-up (up to 800 PLN)
- Corporate parties & events
- CSR initiatives
- Nursery discounts
- Financial support with trainings and education
- Social fund
- Flexible working hours
- Free parking (Cracow office)
benefits :
- sharing the costs of sports activities
- private medical care
- sharing the costs of professional training & courses
- life insurance
- remote work opportunities
- flexible working time
- integration events
- corporate sports team
- doctor’s duty hours in the office
- retirement pension plan
- corporate library
- no dress code
- coffee / tea
- parking space for employees
- leisure zone
- extra social benefits
- employee referral program
- opportunity to obtain permits and licenses
- charity initiatives
- family picnics
- extra leave
- In-office gym
Bądź pierwszy, który ubiega się o to miejsce pracy!
-
Dlaczego szukać pracy na HitPraca.pl?
Subskrybuj oferty pracy
Codziennie nowe oferty pracy Możesz wybierać z bardzo szerokiej gamy ofert pracy - naszym celem jest posiadanie jak najszerszej oferty pracy Otrzymuj nowe oferty e-mailem Bądź pierwszym, który odpowie na nowe oferty pracy Wszystkie oferty pracy w jednym miejscu (od pracodawców, agencji pośrednictwa pracy i innych portali) Wszystkie usługi dla kandydatów do pracy są bezpłatne Pomożemy Ci znaleźć nową pracę