https://bayt.page.link/LNMWmTz8M9b3bDYR8
أنشئ تنبيهًا وظيفيًا للوظائف المشابهة

الوصف الوظيفي

Some careers shine brighter than others.


If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.


HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions.


We are currently seeking an experienced professional to join our team in the role of Senior SOC Analyst  


In this role you will:


Cybersecurity Monitoring and Threat Detection Team are charged with efficiently and effectively monitoring the HSBC global technology and information estate 24x7.  The team’s mission is to detect the presence of any adversary within the estate, quickly analyze the severity and scope of the issue and work with the Cybersecurity Incident Management and Response Team to contain, mitigate and remediate the incursion.  In addition, the team is responsible for constantly improving its detection capability through attack analysis and ensuring that the appropriate security event information is being fed into the team and that the alerting rules are tuned for maximum effectiveness. 


Analysts are responsible for monitoring multiple HSBC networks simultaneously using the latest threat detection technologies to detect, analyze and respond to cyber security incidents. The Analyst will follow detailed processes and procedures to identify and analyze these incidents, escalating to and supporting more senior analysts based on the severity and potential impact of the incident..


Key Responsibilities:


  • The primary responsibilities of the Senior SOC Analyst are:
  • Monitoring the entire global HSBC technology and information estate for new attacks and log them to appropriate systems.
  • Triaging potentially malicious events to determine severity and criticality of the event.
  • Responding to alerts from the various monitoring/detection systems and platforms within defined SLAs.
  • Following detailed processes and procedures to analyse, respond to and/or escalate cyber security incidents.
  • Supporting cyber security incidents through to eradication and feedback lessons learned, in to improved cyber resilience.
  • Analysing network traffic using a variety of analysis tools.
  • Monitoring security appliance health and perform basic troubleshooting of security devices; notify security engineering as necessary for malfunctioning equipment.
  • Analysing malicious artefacts obtained from network monitoring with a focus on generation of threat intelligence and service improvement.
  • Identifying and developing new ideas to enhance our detection capability (Use cases) and mitigations (Playbooks) across the security platforms.
  • Reviewing and validating new Use Cases and Playbooks created by Cybersecurity colleagues.
  • Researching emerging threats and vulnerabilities to aid in the identification of cyber incidents.
  • Applying structured analytical methodologies to maximize threat intelligence growth and service efficacy.
  • Supporting handovers to other teams and countries at the start and end of the working shift.
  • Contributing to the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes.
  • Training, developing and mentoring colleagues in area(s) of specialism.
  • Collaborating with the wider Cybersecurity (and IT) teams to ensure that the core, underlying technological capabilities that underpin an effective and efficient operational response to current and anticipated threats and trends remain fit for purpose.
  • Identifying processes that can be automated and orchestrated to ensure maximum efficiency of Global Cybersecurity Operations resources.
  • Promoting a “self-critical” and continuous assessment and improvement culture whereby identification of weaknesses in the bank’s control plane (people, process, and technology) are brought to light and addressed in an effective and timely manner. 
  • Supporting engagement in support of HSBC Global Businesses and Functions to drive a global up-lift in cyber-security awareness and help to evangelise HSBC Cybersecurity efforts and success.
لقد تجاوزت الحد الأقصى لعدد التنبيهات الوظيفية المسموح بإضافتها والذي يبلغ 15. يرجى حذف إحدى التنبيهات الوظيفية الحالية لإضافة تنبيه جديد
تم إنشاء تنبيه للوظائف المماثلة بنجاح. يمكنك إدارة التنبيهات عبر الذهاب إلى الإعدادات.
تم إلغاء تفعيل تنبيه الوظائف المماثلة بنجاح. يمكنك إدارة التنبيهات عبر الذهاب إلى الإعدادات.