Consultant Specialist - 0000EO2I
汇丰软件开发(广东)有限公司
- 公司规模:1000-5000人
- 公司性质:外资(非欧美)
- 公司行业:计算机软件
职位信息
- 发布日期:2020-10-12
- 工作地点:广州
- 招聘人数:若干人
- 工作经验:无需经验
- 学历要求:招若干人
- 语言要求:不限
- 职位类别:高级软件工程师
职位描述
Role Title:Consultant SpecialistBusiness: Cybersecurity
Role Purpose / Description:
The SiEM Content and Automation engineer primarily using Splunk technology and part of a Global Cybersecurity Technology team. The team is responsible for identifying, developing and deploying global cybersecurity controls across the estate leveraging the firm’s assets, network and data to identify threats. This role will partner heavily with Security Operations Centre to deliver Splunk SiEM and Phantom content and automation for delivery to the Global SoC environment. The SiEM Content and automation functions within Cyber Technology is responsible for the production of contact for Splunk Enterprise Security, Phantom and other automation platforms to deliver the required alerting and automation requirements needed by the Global SoC.
This role will participate in efforts to test the effectiveness of defined controls and ensure that critical processes in the firm are evaluated from a security perspective. The role requires a strong self-starter with a track record who can understand program objectives, create or modify controls using a logical and standardized approach, and independently and proactively engage internal partners to align on an agreed upon solution. The ideal candidate will have experience in various SIEM technologies and enterprise search tools (e.g. Splunk ES, Phantom, MSSQL, AWS, etc.) The SiEM Content and Automation team is primarily accountable for:
? Engineering support of existing and future content and automation across the SIEM platforms
? Supporting the Identification, development and implementation of new detections (Use cases)
? Directly contributing to the continued technical enhancement of the security platforms
? Leading the continued evolution of automation and orchestration across the platform
? Training and developing other members of the Logging and Operations team as well as other members of the Global Cybersecurity Engineering function.
? Supporting a “self-critical” culture whereby identification of weaknesses in the bank’s control plane (people, process and technology) are brought to light in an effective manner and addressed.
? Supporting a culture of individual self-improvement, whereby staff are expected to maintain subject matter expertise within their area of focus and within the realm of cybersecurity more broadly, for example remaining up to date on the latest forensic techniques and tooling for strategically important platforms and technologies in use (and proposed for use) at HSBC.
? Supporting engagement of Global Businesses and Functions everywhere HSBC does business that drives a global up-lift in cybersecurity awareness helping to “tell the story” of HSBC Cybersecurity efforts.
? Collaborate with various layers of management across Cybersecurity and other IT teams to develop solutions that protect the organization.
? Design and drive the implementation of service offerings, capability uplifts, and process improvements to protect the bank for a continuously changing threat landscape
Impact on the Business
? Supports the development of the Global Cybersecurity Logging and Operations function, engaging with colleagues across the Cybersecurity and other IT functions to drive and deliver sustainable operational plans in line with department strategy.
? Leads and facilitates change through clear strategy, operational planning and effective communication and stakeholder management.
? Drives business performance, clear thinking and utilises experience whilst under pressure.
? Delivers sustainable business outcomes.
? Responsible for building effective technology and process control capability that is continuously re-factoring to meet evolving security and compliance needs
? Works closely with peers and business leads to build and implement controls in adlignment with risk-posture, architectural constraints, company strategic direction and industry trends and best practices.
? Drives delivery of the highest standards and outcomes, inspiring others to do the same. Focuses on medium and long term goals even when under pressure or facing uncertainty. Manages expectations, results and impact of agreed outcomes, thinking ahead to identify and overcome potential issues.
? Strategically drives innovation to gain competitive advantage, taking calculated, entrepreneurial risks to achieve business outcomes. Generates an environment in which innovation is seamlessly embedded into working practices.
Customers / Stakeholders
? Leads a customer-focused and collaborative culture by championing customer and stake-holder engagement throughout the team.
? Demonstrates an understanding of customer and stakeholder requirements by providing specialist input and knowledge and having a detailed understanding of the different short and long term shifts in business/function patterns of activity and demand.
? Understands and interprets developments and changes in future business requirement and ensures the appropriate reaction and response through discourse and the implementation of relevant, security focused, technical and procedural solutions.
? Strengthens stakeholder relationships and enhances key relationships using rapport-building expertise and appropriate influencing skills to add and increase stakeholder advocacy. Key relationships to include Functional heads across the other HOST functions and external account managers for third party suppliers and vendors, along with other regional counterparts across the globe, Cultivate strong relationships with organisationally important global and/or high value stakeholders with a tailored approach
Leadership & Teamwork
? Supports the development of the Cybersecurity Technology teams, making sustainable decisions that protects and enhances HSBC’s values, reputation and stakeholder value.
? Actively encourages a learning culture, encouraging collaboration and cross-functional working to develop and nurture teams and identify talent.
? Authentically engages a diverse group of stakeholders internally and externally to influence the achievement of best outcomes for all stakeholders.
? Builds rapport and mutual understanding to communicate and create opportunities for cross-business and/or international working, encouraging debate and open discussion. Encourages people to build sustainable relationships beyond transactional levels and use empathy and insight to build better understanding of mutual benefits.
? Advanced coach / mentor contributes to the establishment of good coaching and mentoring practices. Demonstrates alternative techniques for diagnosing and coaching individuals and teams.
Operational Effectiveness & Control
? Governs risk responsibly. Promote ethical management of risk across regions and business areas within their teams.
? Communicates changes in policy and governance effectively, reinforcing risk processes within their team.
? Builds and sustains a risk aware culture. Shows integrity whilst promoting and managing relevant monitoring and reporting requirements within their team.
? Embeds efficient risk and compliance processes and procedures into business as usual practices.
? Builds collaborative relationships, defines and articulates to stakeholders the targeted benefits for a change intervention.
? Demonstrates effective financial skills to develop a detailed business case, including investments, detailed benefits (financial, non-financial and strategic) and link to overall finances of the business.
Management of Risk
? The jobholder will ensure the fair treatment (service excellence) of our customers is at the heart of everything we do, both personally and as an organisation.
? The jobholder will also continually reassess the IT Security and operational risks associated with the role and inherent in the business, taking account of changing economic or market conditions, legal and regulatory requirements, operating procedures and practices, management restructurings, and the impact of new technology.
? This will be achieved by ensuring all actions take account of the likelihood of operational risk occurring. Also by addressing any areas of concern in conjunction with entity management and/or the appropriate department.
Observation of Internal Controls
? Maintains HSBC internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.
? The jobholder will also adhere to and be able to demonstrate adherence to internal controls. This will be achieved by adherence to all relevant procedures, keeping appropriate records and, where appropriate, by driving the timely implementation of internal and external audit points, including issues raised by external regulators, and internally identified IT security risks.
? The jobholder will implement the group compliance policy by containing compliance risk in liaison with Global Head of Compliance, Global Compliance Officer, Area Compliance Officer or Local Compliance Officer. The term ‘compliance’ embraces all relevant financial services laws, rules and codes with which the business has to comply.
? This will be achieved by adhering to all relevant processes/procedures and by liaising with compliance department about new business initiatives at the earliest opportunity. Also and when applicable, by ensuring adequate resources.
职位要求:
Knowledge & Experience / Qualifications
Skills
? Splunk Enterprise Security deployment and use at scale
? Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
? A team-focused mentality with the proven ability to work effectively with diverse stakeholders.
Technical Skills
? Architecture various components within Splunk (indexer, forwarder, search head, deployment server), Heavy and Universal forwarder, Parsing, Indexing, Searching concepts, Hot, Warm, Cold, Frozen bucketing, License model.
? Helping application teams in on-boarding Splunk and creating dashboards, alerts, and reports.
? Develop custom app configurations (deployment-apps) within SPLUNK in order to parse, index multiple types of log format across all application environments
? Design and customize complex search queries and promote advance searching, forensics, and analytics
Role Purpose / Description:
The SiEM Content and Automation engineer primarily using Splunk technology and part of a Global Cybersecurity Technology team. The team is responsible for identifying, developing and deploying global cybersecurity controls across the estate leveraging the firm’s assets, network and data to identify threats. This role will partner heavily with Security Operations Centre to deliver Splunk SiEM and Phantom content and automation for delivery to the Global SoC environment. The SiEM Content and automation functions within Cyber Technology is responsible for the production of contact for Splunk Enterprise Security, Phantom and other automation platforms to deliver the required alerting and automation requirements needed by the Global SoC.
This role will participate in efforts to test the effectiveness of defined controls and ensure that critical processes in the firm are evaluated from a security perspective. The role requires a strong self-starter with a track record who can understand program objectives, create or modify controls using a logical and standardized approach, and independently and proactively engage internal partners to align on an agreed upon solution. The ideal candidate will have experience in various SIEM technologies and enterprise search tools (e.g. Splunk ES, Phantom, MSSQL, AWS, etc.) The SiEM Content and Automation team is primarily accountable for:
? Engineering support of existing and future content and automation across the SIEM platforms
? Supporting the Identification, development and implementation of new detections (Use cases)
? Directly contributing to the continued technical enhancement of the security platforms
? Leading the continued evolution of automation and orchestration across the platform
? Training and developing other members of the Logging and Operations team as well as other members of the Global Cybersecurity Engineering function.
? Supporting a “self-critical” culture whereby identification of weaknesses in the bank’s control plane (people, process and technology) are brought to light in an effective manner and addressed.
? Supporting a culture of individual self-improvement, whereby staff are expected to maintain subject matter expertise within their area of focus and within the realm of cybersecurity more broadly, for example remaining up to date on the latest forensic techniques and tooling for strategically important platforms and technologies in use (and proposed for use) at HSBC.
? Supporting engagement of Global Businesses and Functions everywhere HSBC does business that drives a global up-lift in cybersecurity awareness helping to “tell the story” of HSBC Cybersecurity efforts.
? Collaborate with various layers of management across Cybersecurity and other IT teams to develop solutions that protect the organization.
? Design and drive the implementation of service offerings, capability uplifts, and process improvements to protect the bank for a continuously changing threat landscape
Impact on the Business
? Supports the development of the Global Cybersecurity Logging and Operations function, engaging with colleagues across the Cybersecurity and other IT functions to drive and deliver sustainable operational plans in line with department strategy.
? Leads and facilitates change through clear strategy, operational planning and effective communication and stakeholder management.
? Drives business performance, clear thinking and utilises experience whilst under pressure.
? Delivers sustainable business outcomes.
? Responsible for building effective technology and process control capability that is continuously re-factoring to meet evolving security and compliance needs
? Works closely with peers and business leads to build and implement controls in adlignment with risk-posture, architectural constraints, company strategic direction and industry trends and best practices.
? Drives delivery of the highest standards and outcomes, inspiring others to do the same. Focuses on medium and long term goals even when under pressure or facing uncertainty. Manages expectations, results and impact of agreed outcomes, thinking ahead to identify and overcome potential issues.
? Strategically drives innovation to gain competitive advantage, taking calculated, entrepreneurial risks to achieve business outcomes. Generates an environment in which innovation is seamlessly embedded into working practices.
Customers / Stakeholders
? Leads a customer-focused and collaborative culture by championing customer and stake-holder engagement throughout the team.
? Demonstrates an understanding of customer and stakeholder requirements by providing specialist input and knowledge and having a detailed understanding of the different short and long term shifts in business/function patterns of activity and demand.
? Understands and interprets developments and changes in future business requirement and ensures the appropriate reaction and response through discourse and the implementation of relevant, security focused, technical and procedural solutions.
? Strengthens stakeholder relationships and enhances key relationships using rapport-building expertise and appropriate influencing skills to add and increase stakeholder advocacy. Key relationships to include Functional heads across the other HOST functions and external account managers for third party suppliers and vendors, along with other regional counterparts across the globe, Cultivate strong relationships with organisationally important global and/or high value stakeholders with a tailored approach
Leadership & Teamwork
? Supports the development of the Cybersecurity Technology teams, making sustainable decisions that protects and enhances HSBC’s values, reputation and stakeholder value.
? Actively encourages a learning culture, encouraging collaboration and cross-functional working to develop and nurture teams and identify talent.
? Authentically engages a diverse group of stakeholders internally and externally to influence the achievement of best outcomes for all stakeholders.
? Builds rapport and mutual understanding to communicate and create opportunities for cross-business and/or international working, encouraging debate and open discussion. Encourages people to build sustainable relationships beyond transactional levels and use empathy and insight to build better understanding of mutual benefits.
? Advanced coach / mentor contributes to the establishment of good coaching and mentoring practices. Demonstrates alternative techniques for diagnosing and coaching individuals and teams.
Operational Effectiveness & Control
? Governs risk responsibly. Promote ethical management of risk across regions and business areas within their teams.
? Communicates changes in policy and governance effectively, reinforcing risk processes within their team.
? Builds and sustains a risk aware culture. Shows integrity whilst promoting and managing relevant monitoring and reporting requirements within their team.
? Embeds efficient risk and compliance processes and procedures into business as usual practices.
? Builds collaborative relationships, defines and articulates to stakeholders the targeted benefits for a change intervention.
? Demonstrates effective financial skills to develop a detailed business case, including investments, detailed benefits (financial, non-financial and strategic) and link to overall finances of the business.
Management of Risk
? The jobholder will ensure the fair treatment (service excellence) of our customers is at the heart of everything we do, both personally and as an organisation.
? The jobholder will also continually reassess the IT Security and operational risks associated with the role and inherent in the business, taking account of changing economic or market conditions, legal and regulatory requirements, operating procedures and practices, management restructurings, and the impact of new technology.
? This will be achieved by ensuring all actions take account of the likelihood of operational risk occurring. Also by addressing any areas of concern in conjunction with entity management and/or the appropriate department.
Observation of Internal Controls
? Maintains HSBC internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators.
? The jobholder will also adhere to and be able to demonstrate adherence to internal controls. This will be achieved by adherence to all relevant procedures, keeping appropriate records and, where appropriate, by driving the timely implementation of internal and external audit points, including issues raised by external regulators, and internally identified IT security risks.
? The jobholder will implement the group compliance policy by containing compliance risk in liaison with Global Head of Compliance, Global Compliance Officer, Area Compliance Officer or Local Compliance Officer. The term ‘compliance’ embraces all relevant financial services laws, rules and codes with which the business has to comply.
? This will be achieved by adhering to all relevant processes/procedures and by liaising with compliance department about new business initiatives at the earliest opportunity. Also and when applicable, by ensuring adequate resources.
职位要求:
Knowledge & Experience / Qualifications
Skills
? Splunk Enterprise Security deployment and use at scale
? Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
? A team-focused mentality with the proven ability to work effectively with diverse stakeholders.
Technical Skills
? Architecture various components within Splunk (indexer, forwarder, search head, deployment server), Heavy and Universal forwarder, Parsing, Indexing, Searching concepts, Hot, Warm, Cold, Frozen bucketing, License model.
? Helping application teams in on-boarding Splunk and creating dashboards, alerts, and reports.
? Develop custom app configurations (deployment-apps) within SPLUNK in order to parse, index multiple types of log format across all application environments
? Design and customize complex search queries and promote advance searching, forensics, and analytics
职能类别:高级软件工程师
公司介绍
About HSBC
HSBC is one of the leading banking and financial services organisations in the world. In 70 countries and territories serving around 37 million customers, we connect customers to opportunities, enabling businesses to thrive and economies to prosper. We help people to fulfil their hopes and dreams and realise their ambitions by providing award-winning advisory, products and services.
HSBC Operations, Services and Technology provides essential operational services, IT and technical support to help HSBC function effectively and improve our customer service.
About HSBC Technology China
We develop, implement and support software and IT services and processes that allow HSBC to remain at the forefront of high-quality banking systems. We develop and maintain systems for HSBC’s global businesses, as well as support functions such as Finance, HR and Risk. We work across a range of technology platforms and development disciplines, from mainframe to mobile technologies.
Our team includes software engineers and developers, architects, testers, IT and business analysts, consultants and programme and project managers, as well as team leadership and management roles. We employ people in almost all the countries and territories in which HSBC operates. Two locations of HSBC Technology China, including Guangzhou and Xi’an, are world-class technology hubs with industrial delivery capability.
Who we look for
We have exciting opportunities for highly motivated graduates and experienced professionals to join our talented IT team and ensure HSBC realises its ambition to be the world’s leading and most respected international bank. We are looking for people who are dependable, open to different ideas and cultures and enjoy being part of a team.
In return, we will help develop your skills through structured programmes, training and on-the-job experiences to meet your career ambitions. We offer comprehensive, market-competitive pay and benefits as well as programmes and plans to assist employees in building and protecting their financial security.
If you are interested in working with the teams that develop, implement and support the technology that keeps HSBC functioning effectively, we hope to hear from you.
Find out more about us in Website: *****************************/careers/technology
Or Follow us on WeChat Career Account by searching “汇丰软件人才招聘”
HSBC is one of the leading banking and financial services organisations in the world. In 70 countries and territories serving around 37 million customers, we connect customers to opportunities, enabling businesses to thrive and economies to prosper. We help people to fulfil their hopes and dreams and realise their ambitions by providing award-winning advisory, products and services.
HSBC Operations, Services and Technology provides essential operational services, IT and technical support to help HSBC function effectively and improve our customer service.
About HSBC Technology China
We develop, implement and support software and IT services and processes that allow HSBC to remain at the forefront of high-quality banking systems. We develop and maintain systems for HSBC’s global businesses, as well as support functions such as Finance, HR and Risk. We work across a range of technology platforms and development disciplines, from mainframe to mobile technologies.
Our team includes software engineers and developers, architects, testers, IT and business analysts, consultants and programme and project managers, as well as team leadership and management roles. We employ people in almost all the countries and territories in which HSBC operates. Two locations of HSBC Technology China, including Guangzhou and Xi’an, are world-class technology hubs with industrial delivery capability.
Who we look for
We have exciting opportunities for highly motivated graduates and experienced professionals to join our talented IT team and ensure HSBC realises its ambition to be the world’s leading and most respected international bank. We are looking for people who are dependable, open to different ideas and cultures and enjoy being part of a team.
In return, we will help develop your skills through structured programmes, training and on-the-job experiences to meet your career ambitions. We offer comprehensive, market-competitive pay and benefits as well as programmes and plans to assist employees in building and protecting their financial security.
If you are interested in working with the teams that develop, implement and support the technology that keeps HSBC functioning effectively, we hope to hear from you.
Find out more about us in Website: *****************************/careers/technology
Or Follow us on WeChat Career Account by searching “汇丰软件人才招聘”
联系方式
- 公司地址:广州市