Security Architecture/Senior Consultant Specialist

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role of Senior Consultant Specialist

In this role, you will:

• Provide security consultancy on specialist strategic topics
• Work closely with vendors, platform teams and subject matter experts (SME’s) where necessary in order to drive out architectural decisions, design statements and exceptions.
• Take the lead on solving security challenges and issues where the problem scenario is not covered by a pattern, standard or existing strategy.
• Surface strategic and architectural decisions through the approved governance or oversight channels as defined by the bank’s operating model.
• Where embedded within a project, act as a primary resource ensuring commitment to attend all appropriate calls and meetings in order to provide the level of support required.
• Acts as a buffer between the speed of continuous integration and the need for strategic security and managing overall business and security risks
• Act as the first point of contact for IT Security questions and queries
• Participate in IT Security engagement activities (e.g. risk assessment and threat modelling sessions, security risk review etc.);
• Identify security risks as they arise, communicate it as appropriate and ensure relevant stakeholders are involved for the adequate mitigation or remediation
• Provide guidance to the teams and stakeholders of IT Security by referring to policies and standards
• Promote the adoption of security tooling in line with the development lifecycle and HSBC approved toolset;
• Identify and make recommendations geared at increasing teams’ velocity through self-sufficiency in terms of IT Security
• Educate teams in terms of their security capabilities
• Identify, engage and establish relationships with key stakeholders
• Assess Dev team IT Security profile, controls, and level of engagement
• Provide advice and guidance to relevant stakeholders about the IT Security engagement model improvement