Third-Party Security Assessment Consultant

Third-Party Security Assessment Consultant Miejsce pracy: Kraków Technologies we use Expected R Python SQL JavaScript About the project The Cybersecurity Assessment and Testing (CSAT) function, part of Cybersecurity, is accountable for Vulnerability Management, Secure Development (inc. DevSecOps), Threat and Controls Assessment (inc. threat modelling) and Third-Party Security Assessment. The function drives the identification, capture, assessment, testing/verification and ultimately the remediation of security defects, gaps and vulnerabilities across HSBC’s estate in concert with business and technology teams – on-premise, within the Cloud and for those resulting from 3rd party engagements. Your responsibilities Collaborate with both CSAT and Cybersecurity, the role-holder will be expected to contribute to, and to support delivery of the cybersecurity strategy. Support Control Officers, Risk Stewards, Internal and External Audit, and Regulators with any relevant reviews, examinations and information requests. Develop as an SME and help to inform wider embedding and training on the consultancy approach to peer TPSA analysts to build and develop the team. Acting as a pioneer to prove the developing approach you will engage with other Cyber teams, Third Party Management, and other risk teams to deliver Cyber risk support at a global level. Define and shape a developing approach for Cyber risk consultancy integrating into the end-to-end procurement process from supplier selection to completed onboarding and issue remediation on critical control gaps. Our requirements Knowledge and exposure of Risk and Control Management frameworks and control design and execution, in theory and practice. Ability to understand and articulating defects, threats and technical gaps to both technical and business stakeholders. Degree and/or similar experience, preferably in IT security in the Financial Services industry or global corporate service provider Have one or more industry-recognised cybersecurity-related certifications including CISA, CISM, CISSP, CRISC and CCSP etc. A demonstrable technical understanding in Cloud Security (particularly for SaaS) and AI is desired. Experience in third party / supply chain governance. Ability to prepare concise updates, reports and presentations for senior stakeholders. Ability to manage multiple projects and priorities concurrently. What we offer Competitive salary Annual performance-based bonus Additional bonuses for recognition awards Multisport card Private medical care Life insurance One-time reimbursement of home office set-up (up to 800 PLN) Corporate parties & events CSR initiatives Nursery discounts Financial support with trainings and education Social fund Flexible working hours Free parking Benefits sharing the costs of sports activities private medical care sharing the costs of professional training & courses life insurance remote work opportunities flexible working time integration events corporate sports team doctor’s duty hours in the office retirement pension plan corporate library no dress code coffee / tea parking space for employees leisure zone extra social benefits employee referral program opportunity to obtain permits and licenses charity initiatives family picnics extra leave In-office gym Recruitment stages Online assessment Phone interview Job interview Welcome to HSBC HSBC Service Delivery (Polska) Sp. z o.o. HSBC is one of the world’s largest banking and financial services organisations. Our global businesses serve more than 40 million customers worldwide through a network that covers 63 countries and territories. HSBC Service Delivery (Polska) Sp. z o.o. is HSBC's global finance, operations, risk and technology centre. We use our unique expertise and capabilities to provide specialised services – our people range from technologists transforming the banking experience to operations professionals managing 1.7 trillion payments a year. Our Purpose – Opening up a world of opportunity – explains why we exist. We are bringing together the people, ideas and capital that nurture progress and growth, helping to create a better world – for our customers, our people, our investors, our communities and the planet we all share. Thank you for interest in HSBCBefore you apply, please note that we will take into the consideration only applications that include the following statement:.“I hereby declare that I have familiarised myself with the Privacy Statement for Applicants published at http://www.about.hsbc.pl/careers and I give my consent to use my personal data included in my application for the purposes of recruitment in HSBC Service Delivery (Polska) Sp. z o. o. according to the rules described in the Privacy Statement for Applicants, as per the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (GDPR).”.Due to the high number of applications, we reserve the right to contact selected candidates onlyIn case you would like to resign from participation in the recruitment process or withdraw previously sent application, please email us at: krakow.recruitmenthsbc.com.

Location: Kraków, PL

Posted Date: 4/15/2025