Job Description
If you’re looking for a career where you can make a real impression, join Global Service Center (GSC) HSBC and discover how valued you’ll be. HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions.
We are currently seeking an experienced professional to join our team in the role of The Data Loss Prevention Operations Lead.
Global Data Loss Prevention (GDLP) provides a coordinated suite of “Information Defence” services responsible for detecting and responding to information threats to HSBC assets across the globe and is under the management of the Head of Global Information Protection Response. Critical to the success of GDLP is its close partnership with sister Cybersecurity teams, IT Infrastructure Delivery, and Global Business and Function clients. The overall GDLP mission is placed under the purview of the Group Chief Information Security Officer (CISO).
The Data Loss Prevention Operations Lead is accountable for:
- Managing triage and/or escalation of DLP events with local and regional DLP staff, regional teams, and the Information Protection Response (IPR) team to assist with risk assessment and resolution process.
- Collaborating with other local and global DLP Leads/SME and IPR Leads/Incident Managers to ensure co-ordination of workload and continuous 24x7 information security operations service provision.
- Ensuring a comprehensive and smooth hand-over between the global teams as shifts end and begin.
- Developing and reporting metrics and KPIs related to the Data Loss Prevention mission to management in all areas of responsibility.
- Managing a highly skilled, efficient, and effective team of DLP Analysts in achieving their responsibilities, which include:
- Protecting HSBC Internal, Restricted, and Highly Restricted data in relation to the global DLP monitoring & quarantine tool.
- Following detailed processes and procedures in security incident response lifecycle and its phases to respond to alerts from DLP monitoring/detection systems within defined OLAs and, where appropriate, escalate data breach events.
- Triaging potentially malicious events to determine severity of the event.
- Supporting handovers to other teams and countries at the start and end of the working shift.
- Leading the continued evolution of data loss prevention capabilities and processes, including automation and orchestration.
- Performance management and development of the DLP Analyst team.
- Collaborating with other teams and industry groups on information security related issues and concerns.
- Educating Bank staff on personnel risks and controls pertaining to information security-related concepts, compliance, and audit requirements to drive a global up-lift in cyber-security and information protection awareness.
- Provide service improvement to the management. Support the fine-tuning of Monitoring rules.
- Responsible for implementing best security practices by understanding the business requirements.
Requirements
Skills
- Excellent investigative skills, insatiable curiosity, and an innate drive to win.
- Proficiency in multiple technical disciplines, analytic and quality assurance techniques.
- Strong problem-solving and trouble-shooting skills.
- Strong decision-making capabilities.
- Proven experience in crisis management, crisis response frameworks and communications.
- Demonstrated project and task management skills.
- Self-motivated and possessing a high sense of urgency and personal integrity.
- Strong written and oral communication skills.
- Ability to speak, read and write in English, in addition to your local language.
Technical Skills
- Must have worked as DLP practitioner/SME and lead the team.
- Hands-on experience implementing, managing, and monitoring security tools and technologies related to DLP.
- Strong knowledge of various data security tools & techniques.
- Knowledge of industry cyber security regulations and standards.
- Knowledge of various DLP systems including but not limited to policy creation.
Industry Experience and Qualifications
Candidates will be evaluated primarily upon their ability to demonstrate the competencies required to be successful in the role. For reference, the typical work experience and educational background of candidates in this role are as follows:
- 10 years of progressive experience in Data security and incident response.
- 4 years of experience in one or more of the following areas:
- DLP security control maintenance.
- ITIL Foundation knowledge.
- Experience in Information Technology or Information Security/Cybersecurity.
- Experience within an enterprise scale organisation.