Information Protection Incident Manager/Senior Analyst

Job Description

Job description

Some careers shine brighter than others.

If you're looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role ofSenior Analyst

In this role, you will:

• Managing the response to Data Breach events and incidents across the globe, taking responsibility for the timely mitigation of data related risks and cyber-threats.
• Coordinating the actions of multiple business units during the response to Data Breach events and incidents.
• Providing timely and relevant updates to appropriate stakeholders and decision makers during data loss incidents.
• Cultivating close working relationships with regional Data Protection Officers, Cybersecurity leads, Business Information Risk Officers (BIROs) and Risk Managers whose support and knowledge are vital in delivering the remediation of security data incidents.
• Maintaining a strong awareness of regulatory trends, legislation, and industry best practice.
• Triaging potential Data Breach events and adhering to any defined SLA's
• Following detailed processes and procedures to analyze, respond to and/or escalate Data Breaches.
• Supporting information security incidents through to eradication and feedback lessons learned, in to improved cyber resilience.
• Identifying and developing new ideas to enhance our detection capability (Use cases) and mitigations (Playbooks)
• Supporting handovers to other teams and countries at the start and end of the working shift.
• Collaborating with the wider Cybersecurity (and IT) teams
• Identifying processes that can be automated and orchestrated to ensure maximum efficiency.

Requirements

To be successful in this role, you should meet the following requirements:

• Good level knowledge of GDPR requirements and regulations
• Understanding of common operating systems and platforms
• Understanding of 3rd party cloud computing platforms such as AWS, Azure, and Google.
• Understanding of common mobile platforms, such as Blackberry, iOS, Android, and Windows.
• Knowledge and understanding of the thought processes, methodologies (Tactics, Techniques & Procedures) used by advanced adversaries, including criminal and nation state adversaries, spanning multiple aspects of the security domain.
• Knowledge of common log management suites, Security Information and Event Management (SIEM) tools, use of Big Data and Cloud-based solution for the collection and real-time analysis of security information.
• Ability to produce key performance indicator (KPI) metrics for accurate and contextual evaluation of operational effectiveness as well as providing recommendations for control improvement and mitigating control adjustments.
• Industry recognised cyber security related certifications including CEH, OSCP, EnCE, SANS GSEC, GCIH, GCIA, and/or CISSP.
• Formal education and advanced degree in Information Security, Cyber-security, Computer Science, or similar and/or commensurate demonstrated work experience in the same

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Issued by - HSBC Software Development India