| Job Description: |
Make the Right Move and join a winning team! Build your career with us. HSBC - North America is a part of HSBC Group, one of the largest banking and financial service organizations in the world. Our domestic strength and extensive global network provides our employees with the best of both worlds - the friendliness of a local organization and the resources of a worldwide network - for diverse experiences and challenging career opportunities. Business analyst performs a wide range of activities to further enhance the Global Identity Management Systems Programme Workflow solution, and assists with deployment of Workflow in Information Security Risk global regions. These activities include analyzing global Information Security Risk workflow requirements, developing functional specifications reflective of the global access management processes, partnering with the development team on enhancements, interfacing with testing team, and guiding the regional Information Security Risk teams in adoption of workflow. Ensures adherence to Group and local policies, procedures and standards. Provide direct assistance and contribution to the Information Security organization through management and execution of significant security responsibilities across HSBC Group. Responsible for programs, services and investments that protect the confidentiality, integrity and availability of information assets and will work closely with all lines of business. Support compliance monitoring and internal controls in accordance with HSBC and regulatory standards. Review, design and engineer security operational processes with current and new technologies to improve security controls and business performance. Identify security exposures through monitoring of systems and recommend corrective action by conducting gap analyses. Propose identity and access management enhancements to maintain or surpass industry standards. Define metrics and methodologies to measure security performance of applied new technologies. Communicate status on deliverables. Remain current on technical developments affecting information security and advise department management. Maintain a high level of technical expertise in the internal architecture of computer systems. Share knowledge and lend support to management and team members. Direct projects to completion, focusing on quality and timeliness of deliverables. Complete other responsibilities, as assigned. Adhere strictly to compliance and operational risk controls in accordance with HSBC and regulatory standards, policies and practices; report control weaknesses, compliance breaches and operational loss events. Monitor the status of information security through performance of security reviews and risk assessments. Develop and provide metrics information per predetermined schedule. Fast paced environment requiring execution of multiple simultaneous deliverables.Indirect reporting structure with conflicting deliverables and timelines. Influence stakeholder compliance of regulatory standards while managing to deadlines. Chicago or Buffalo based position with interaction to all lines of business. Minimal travel required (<10%), Domestic & International. Support users across HSBC Group. Ensure compliance, operational risk controls in accordance with HSBC or regulatory standards and policies; and optimize relations with regulators by addressing any issues. Promote an environment that supports diversity and reflects the HSBC brand. Maintain HSBC internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators. A Bachelor’s degree or equivalent experience in business, computer science or related field with five to seven years progressive experience in information security including a minimum three years experience working with diverse security products . Experience defining and implementing operational processes and strong knowledge of access management controls. Experience with web browser-based application and basic internet technologies (HTML, etc.) strongly desired. Three to five years of demonstrated problem solving skills . Basic access management knowledge of various mainframe and distributed processing platforms (i.e., Active Directory, AS400, OS/390, PCs, HP, SUN, Novell, AIX, RS/6000, remote access security products, etc.) Strong written and verbal communication skills . Ability to work in a diverse global environment . Professional certifications in Information Security desirable (CISSP / CISM) Project Management certification a plus. Basic Qualifications: - A Bachelor’s degree or equivalent experience in business, computer science or related field
- Six to eight years progressive experience in information security including a minimum three years experience working with diverse security products
- Experience creating and managing operational processes
- Technical experience in at least one of the following: software architecture/development, database administration, distributed systems, mainframe, networks, and infrastructure
- Strong written and verbal communication skills
- Three to five years of demonstrated project management knowledge and problem solving skills
- Ability to work in a diverse global environment
- Professional certifications in Information Security desirable (CISSP / CISM), Project Management certification a plus
|
