SVP IT Security - Mumbai, India - HSBC

    HSBC
    HSBC Mumbai, India

    2 weeks ago

    HSBC background
    Permanent - temps plein
    Description

    Role Summary

    The role is responsible for operating as part of a global/regional team within Cybersecurity to define and implement an industry-leading Cybersecurity Service that supersedes our constantly changing information security threats. The role holder is expected to build and establish trust with Country/Regional senior stakeholders whilst assisting with regional initiatives. The role includes, but is not limited to the responsibilities, stated in this role profile.

    Role Description

    This role will carry out some or all the following activities:

  • Lead and support peers in Developing, implementing, and monitoring a strategic, comprehensive enterprise cyber security management program.
  • Collaborate with the Global, Regional and Country teams to implement the organization's cyber security goals within entity policy, expense, and regulatory constraints.
  • Contribute to the Sub-function/Region Cybersecurity strategy to secure the bank's technology from the inside out, whilst maintaining, protecting, and enhancing HSBC's values, reputation, and stakeholder value
  • Assist Group/Region with the overall business technology planning, providing a current knowledge and future vision of technology and systems.
  • Leading Cyber related Governance in country, ensuring consistency with Global/Regional key messaging and exercising formal governance through appropriate governance forums.
  • Raise awareness of risk management concerns and educate country management about country cybersecurity risk level and actions required to mitigate/control existing risks.
  • Carefully considers the security requirements of an organization as well as the business requirements to address cyber risks and satisfy the organization's business goals.
  • Uplift the Technology team's cyber security capability including driving the implementation of automation tools to drive productivity and efficiency.
  • Manage and lead the cyber security team, driving the objectives stated in the job profile.
  • Support business for in-country-specific initiatives via cybersecurity delivery, consultancy and country augmentation teams when required.
  • Keeping abreast of developing security threats and helping the country board understand potential security problems that might arise from acquisitions or other big business moves.
  • Brief country management about ongoing Cybersecurity improvement projects benefits, status and challenges which require their attention and/or involvement to make it success.
  • Provide guidance and ensure country regulatory requirements related to Cybersecurity are addressed in a timely fashion to implement relevant controls and to develop/amend policies/standards to comply with the requirements.

    • Key Responsibilities

  • Local Regulatory Engagement Stakeholder Engagement
  • Establish and maintain stakeholders' relationships and act as local cybersecurity SME for general cybersecurity queries and requests
  • Understand, assess & advise HSBC technology controls and regulatory requirements to ensure compliant status and follow up if any gaps and remediation.
  • Provide input and support to global / regional regulatory governance and control map reporting related to country and countries cyber security control dashboard
  • Regulatory submissions (ad-hoc / periodic) to be done as per the required frequency
  • Awareness and Training
  • Coordinate with global / regional / country team to deliver and promote cyber security awareness programs and education campaign to all employees and/or special group of people (such as high risk users, senior management team, IT developers)
  • Periodic staff communication on cyber awareness to promote cyber education and awareness.
  • Cyber Execution and Strategy in-Country
  • Contribute to the Sub-function/Region Cybersecurity strategy to secure the bank's technology from the inside out, whilst maintaining, protecting and enhancing HSBC's values, reputation and stakeholder value.
  • Assist with regional/global cyber initiatives that qualifies as outsourcing as per the country framework.

    • Governance & Oversight

  • Provide consultancy and oversee the country Critical Assets, Testing/GASRA/Open issue status and pursue further with the ITSO or escalate to CIOs if required.
  • Coordinate with global control owners to understand and assess the impact of global controls / issues to country and accordingly advise country businesses.
  • Participate in the country risk governance forums and provide update on cyber risk and control to stakeholders.
  • Provide cyber support to regulatory and internal group audits.

    • Technology controls risk and control assessment for the country, impact analysis from country perspective

    Requirements
  • Minimum Graduation or as required for the role, whichever is higher

    • Additional Information

  • Mandatory to successfully complete Anti-Money Laundering and Sanctions training and post-course assessment, as required.

    • Useful Link

    Link to Careers Site: Click

    You'll achieve more when you join HSBC.

    HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment.