ANALYST - CYBERSECURITY/Cybersecurity

The health and safety of our employees and candidates is very important to us. Due to the current situation related to the Novel Coronavirus (2019-nCoV), we’re leveraging our digital capabilities to ensure we can continue to recruit top talent at the HSBC Group. As your application progresses, you may be asked to use one of our digital tools to help you through your recruitment journey. If so, one of our Resourcing colleagues will explain how our video-interviewing technology will be used throughout the recruitment process and will be on hand to answer any questions you might have.

Some careers have more impact than others.

If you’re looking for a career where you can make a real impression, join HSBC and discover how valued you’ll be.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role of Analyst

Principal responsibilities

Role Purpose(overall high level summary of the role)

• Accountability to provide direct assistance and contribute to the Information Security Risk (ISR) organization through the management and execution of DLP responsibilities.
• The primary responsibility of this position is to execute the day to day operations of the Data Loss Prevention (DLP) process and work with the Global DLP Team to manage the execution of the program. The qualified candidate will be in regular contact with the Global DLP Team and regional teams and the Information Protection Response Team to effectively manage DLP events across the deployed regions and countries.
• Additional responsibilities include: monitoring and protecting HSBC Internal, Restricted, and Highly Restricted data as it relates to electronic monitoring. Ability to coordinate with local and regional DLP staff to assist with risk assessment and remediation processes. Support the daily coordination and remediation of DLP events with regional DLP leads. This person will play a key role in the continuous review of DLP events and contribute to the refinement of the policies leading to a reduction of false positive events. Additionally, it is expected that he/she will be helping to compile and validate statistical data for management reporting.
• Maintain DLP metrics including the identification and development of relevant key data and appropriate reporting mechanisms to ensure accuracy for report management. Identify risks and vulnerabilities and make cost-effective, reasonable recommendations. Remain current on developments affecting DLP. Adhere strictly to compliance and operational risk controls in accordance with HSBC and regulatory standards, policies and practices; report control weaknesses, compliance breaches and operational loss events. Support HSBC’s Diversity programs and complete other related duties as assigned.
• Effectively communicate with customers, addressing problems and offering solutions that meet or exceed their expectations.
• Strictly adhere to the group audit policies on security as team deals with physical and network investigations
• Acquire a thorough understanding of the process procedures, keep abreast with changes made and provide quality services to the users.
• Be a team player and actively participate in Daily/Weekly/Monthly meets etc.
• Be resourceful, innovative and show initiative while supporting any team projects taken up;
• Be responsible for ensuring the Service Level Agreements are met.
  

Principal Accountabilities

Core Business & Service Delivery

Key activities and decision making areas

• Resolution of tickets in Symantec DLP Tool in a strict SLA’s.
• 24/7 availability of Support for any critical investigations and support the global DLP team on Symantec DLP Tool.
• To handle acceptable volume of tickets and ensure task is analyzed thoroughly and correct resolution is provided to the ticket and recorded in the tool within suggested PLA.
• Proactively look into issues that might & identify any problem area.
• Ensure the follow up process is thoroughly carried out and a resolution is achieved. Follow all the guidelines set by Business as mentioned in the procedures and policies; confidently guide.
• Establish positive relationships and maintain effective liaison with all departments; operate in accordance with agreed procedures, standards and policies
• Perform as per the set quality standards and procure satisfactory rating in the quality audits performed by Technical/Quality leads, work on feedback and ensure errors are not repeated.
• Identify and resolve complex issues on a day-to-day basis escalating if required to the relevant support areas and senior management; co-ordinate with business area for any escalations raised by the user.

Assist peers/new joiners and keep information of the latest developments and take up additional tasks/delegations from the line manager.

Team work

• Interact well with peers, superiors & people from other support areas.
• Actively participate in the Daily/Weekly/Monthly meetings and other team get-togethers.
• Contribute ideas towards enhancing team bonding, support team projects, shadow teammates/line manager when in need by sharing responsibilities.

Serve as a resource person to the team/line manager, ensure that new joiners are provided with adequate help and contribute towards their learning curve.

Learning & Development

• Complete all the mandatory courses on My Learning as assigned by the line manager / organization.

Take up additional courses in line with the process/role requirement.

Audit Adherence

• Should adhere to the compliance/ audit requirements set and communicated by the management.
• Keep the confidentiality of sensitive information of users.

Ensure breach of confidentiality is immediately bought to the attention of the line manager.

Major Challenges(The challenges inherent in the role that require a continual test of the role holder’s abilities)

• Individual would need to regularly brush up his/her Interpersonal skills, knowledge on Technology, Information Classification , Compliance & Financial regulations & decision making capabilities.
• Prioritizing all the escalated triggers in the Symantec DLP tool and work towards resolutions.
• Engaging regional teams and other secondary monitoring teams on any Issue which has high impact.
• Nil or minimal impacts to business and operations with changes in the system
• Fast TAT in resolving the Incidents
  

Role Context(The environment and operating conditions of the role including the extent of guidance and authority)

The role involves great level of interaction with onshore consultants & Senior Managers across the group globally, working in a 24/7/365 day support window. Prioritize impact of tickets, analyze the problem, review criticality of issue, determine if this issue can be resolved at the 1 st level monitoring teams, notify management and business about the Issue, correct issue, document issue, root cause analysis, corrective action, and if possible, preventative measures.

Qualifications

Requirements

Role Dimensions(e.g. balance sheet size, lending or expenditure limits, size/volume of transactions, budget, etc. inUSD’000)

Team is responsible in handling all the below attached tasks :

• Knowledge of computer and network technologies
• Data Loss Prevention technology experience strongly preferred.
• Knowledge of MS Office products.
• Good problem-solving skills
• Proficiency in multiple technical disciplines, analytic and quality assurance techniques

• INTERNAL

  
  
  Ability to establish positive relationships with customers
• Ability to work effectively in a team with cross-cultural environments
• Flexible work availability to support the DLP team’s responsibilities
• Ability to learn the proper use and protection of data (required)
• Ability to work through the DLP event queue and resolve tickets quickly
• Keeps manager advised of key developments or trends
• Demonstrate strong organizational and time management skills to meet department standards of productivity and quality in a production environment
• Excellent verbal and written communication skills.
• Quick learner with an ability to share and transfer knowledge.
• Ability to understand, work with and interpret numeric data
• Ability to build and maintain cordial relationship with users, peers and people at all levels using diplomacy, judgment and interpersonal skills.
• Minimum of two year’s Information Technology/ IT Security experience / Data Loss Prevention experience or equivalent.
• Bachelor’s degree in Computer Science, Management Information Systems, Engineering, related technical field and certifications.
  

You’ll achieve more when you join HSBC.

HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.”

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

***Issued By HSBC Software Development Centre***