Big Data Security Engineer/Consultant Specialist

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role of Consultant Specialist.

In this role, you will:

• Design, implement, and maintain security controls for big data platforms (Hadoop, Spark, Kafka, HBase) to ensure data protection, compliance, and governance.
• Develop and enforce access control policies using Apache Knox, Apache Ranger, and KMS for authentication, authorization, and encryption of big data environments.
• Integrate security best practices into DevOps pipelines using Ansible, Jenkins, Git, CI/CD, ensuring automated compliance checks and secure infrastructure as code (IaC).
• Monitor and manage security events and identifying anomalies, false positives, and potential threats.
• Ensure timely approvals and recertifications of security policies, following up on any deviations.
• Collaborate with stakeholders to maintain and enforce security and compliance standards.
• Conduct regular internal audits to evaluate security controls and compliance requirements.
• Provide technical assistance to peers and educate teams on security best practices.
• Perform vulnerability assessments on cloud and on-prem big data environments.
• Automate security processes using Python, Bash, or PowerShell to streamline security rule validation, compliance reporting, and risk analysis.
• Implement logging, monitoring, and threat detection for real-time security analysis.
• Ensure adherence to IAM policies (AWS IAM, Azure AD, GCP IAM) for least-privilege access and role-based access control (RBAC).
• Conduct security audits and reviews for big data applications and DevOps environments, identifying and mitigating risks proactively.
• Collaborate with development, operations, and security teams to enforce DevSecOps principles and shift security left in the software development lifecycle (SDLC).