Global Head of Remediation ITID

s
Company: HSBC
Location: New York, NY 10175 (Garment District area)

Apply

The role is responsible for managing a global team of IT Infrastructure specialist within the IT Infrastructure Security function of ITID organisation, reporting to the Global Head of IT Infrastructure Security.
The role will carry out some or all of the following activities:
  • Driving remediation of all non-compliance with security standards and controls across ITID.
  • Managing and coordinating remediation of all share services infrastructure across GBGF.
  • Participating in incident and issue triage, interfacing with Cyber Security to determine severity and whether incident or remediation processes will be applied.
  • Driving emergency fix management process within ITID.
  • Supporting platform remediation functions including vulnerability assessment, planning, analysis, priority setting.
  • Working with Cyber on all self-scanning services (Kenna, Nessus Tenable, etc.) to ensure efficient and effective responses by ITID
  • Meeting coordination with SMEs with global/local teams
  • Validating evidence prior to submission to 2LOD/audit
  • On-going tracking of progress via dashboards/status update
  • Establish local steerco or governance forums
  • Escalate as required (e.g non responses, insufficient responses, maturity regression)
  • Coordinate presentation/updates to regulators/senior Management

Qualifications

  • Educated to bachelor degree level, with Information Technology related major
  • Over 15 years’ experience in IT Infrastructure, security and risk management area
  • PMP/ Governance/ Risk/Cyber(Information security)
  • Effective matrix management skills in multi-cultural environments
  • Strong knowledge of banking regulations / guidelines relating to cyber security and technology risk management
  • Strong technical knowledge of data networks, servers (Windows & Linux) and database
  • Strong knowledge with vulnerability scanning and penetration tools (eg. Tenable Nessus)
  • Strong knowledge of system management tools including SCCM, Tanium, HPSA, SPLUNK etc.
  • Good knowledge of Cloud Service Providers including AWS, GCP, Azure etc.
  • Experienced in performing security risk assessment and audits based on industry standards
  • Strong people leadership, team work, gathering information and analyzing, judgment and decision making skills.
  • Strong self-motivation, with good leadership, communication, interpersonal and analytical skills
EEO/AA/Minorities/Women/Disability/Veterans