Threat and Controls Assessment Senior Analyst - Toluca, México - HSBC

HSBC

Empresa verificada

Toluca, México

hace 3 semanas

Publicado por:

Rodrigo Fernández

Reclutador de talento para beBee

Descripción

Some careers have more impact than others.

If you're looking for a career where you can make a real impression, join HSBC and discover how valued you'll be.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories.

We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

- "At HSBC we offer our colleagues a greater number of days so that they can fully enjoy their wedding, take care of the new member of the family, or grieve the loss of a family member._

Our paid leave package is at the forefront in Mexico, now you have one more reason to be HSBC and proudly live a culture of wellbeing, balance and car care"_

We are currently seeking an experienced professional to join our team in the role of
Threat and Controls Assessment Senior Analyst

This role will report into the Threats and Controls Assessment Regional Lead, closely collaborating with peers across Penetration Testing; Secure Development, Third Party Security Assessment and Cybersecurity business and regional leads, enabling effective end-to-end vulnerability identification.

Principal responsibilities

Perform effective threat and control assessments of services within our internal, external and cloud estate.
Liaise with Developers, Architects and other Technical Leads to understand the end to end service and identify where there are any control gaps.
Understand the Business requirements, evaluate potential products / solutions and provide technical recommendations.
Be "hands on" with technology and contribute to the design, development and the support of projects with security recommendations.
Engage with other Cybersecurity teams, senior management and members of the Business when confronted with potential security issues.
Contribute to process, procedures and tool identification/development.
Stay up to date with industry new trends and best practices.

Requirements

Requeriments

Knowledge and exposure of Risk and Control Management
Ability to understand and assess both threats, controls and vulnerabilities, articulating these to both technical and business stakeholders
Desirable to have one or more industryrecognised cybersecurityrelated certifications including CISSP, CRISC, CISM or Cloud Security Certifications
Proven experience in general security concepts and principles
Hands on experience with threat modelling and strong technical understanding and experience of assessing vulnerabilities and identifying weaknesses in diverse enterprise IT assets
Good working knowledge of one or more of the Cloud Service Providers
AWS, GCP or Azure
Strong understanding of Software Development Life Cycle (SDLC) with a focus on security
Experience in continuous improvement and process optimisation.
Understanding of emerging technologies and corresponding security threats
Experience of working in international and diverse environments
Experience in engaging with business, technology, regional and regulatory stakeholders
Ability to communicate to key stakeholders effectively translating technical gaps into business risk
Selfmotivated individual with strong analytical and problem solving skills
Experience within fastmoving, complex and demanding corporate environments and able to provide appropriate direction to the team whilst dealing with ambiguity and change

You'll achieve more when you join HSBC.

**Issued By HSBC Electronic Data Processing (India) Private LTD