Service management and Risk & Controls /Senior Consultant Specialist

Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role of  Senior Consultant Specialist

In this role, you will:

• The Technology Business Service Lead (TBSL) supports the implementation of HSBC's Technology Resilience Maturity Framework (TRMF), used for the assessment of the technical resilience maturity of Important Business Service (IBS), and will partner with the Business Service Owner (BSO) to ensure the Entity’s accountability for risks associated with IBS vulnerabilities is prioritized in Technology. The TBSL is the primary Technology contact for BSOs for the IBS(s) they are responsible for and will be responsible for the execution and oversight of Technology Resilience activities.
• Maintain IBS Scope -Be the Technology representative when an IBS is added or removed and communicate to the impacted ITSO(s) and architecture stakeholder(s). Create and maintain IT Service Chain Maps to both the planned schedule and in response to trigger events.
• Review Resilience (Asset level)-Perform and maintain a Technology Resilience Capability Assessment (TRCA) on individual important assets supporting an IBS to both the planned schedule and in response to trigger events. Perform and maintain a Technology Resilience Vulnerability Assessment (TRVA) on individual important assets supporting an IBS to both the planned schedule and in response to trigger events.
• Consolidate and Review Resilience (IBS level)-Obtain the IBS view of the TRCAs completed across all important assets supporting the IBS Playback the TRCA and TRVA outputs to the BSO so that they understand the resilience posture of their IBS. Resolve queries, apply IBS Severity Rating and ITOL Impact within HOOP (where necessary).Obtain the IBS view of the vulnerabilities identified across all important assets supporting the IBS; Ensure sound understanding of content and Remediation Plans and resolve any queries prior to BSO Playback.
• Remediate Vulnerabilities-Support the BSO in the prioritization and funding of the vulnerabilities identified. Own the remediation and the required update(s) of individual Technology Resilience Vulnerabilities at an asset level. Track the remediation of vulnerabilities within ITSCM of the IBS.
• Support & Reporting-Support the BSO in the IBS self-assessment deliverable, by providing the Technology resilience posture and associated Tech Vulnerabilities. Use Reporting, MI and the Vulnerability Register to keep the BSO informed of the IBS Resilience posture and remediation progress. Provide support for interactions with Regulator to demonstrate compliance to Operational Resilience requirements. Provide the necessary support to implement resilience measures, and act as a Tech representative for IBS related Resilience meetings and investigations.
• Incident Response-Receive incident notifications, maintain awareness of incident severity and ongoing actions during the lifecycle of the incident For ‘Critical’ and ‘High’ Impact incidents, following PIR completion inform BSO of root cause and any high-risk remediation actions arising. Informed on other incidents.
• Change Management- Informed on high impact (Major Change / High Risk) changes that can impact the resilience of the IBS -- including Significant Architectural Changes to ITSCM; Important IT Assets put under LTO special Measures; Major and High-Risk changes presented through Change Advisory Board (CAB).
• Scenario Testing-Provide required technical input to the report, ensuring the BSO understands any technology related observations, and associated recommendations are appropriate.Ensure the proposed tests will deliver the desired outcome, considering existing risks/vulnerabilities, and any upcoming changes. Work with GBGFs to ensure that required resource are available for the testing.