Jobs

Interviews
Job Alerts
Tools

Upskill and Grow with AI

Mock Interview Practice interviews in realistic simulations

Coding Practice Improve your coding skills with challenges

Certification Earn certifications to validate your skills

AI Learning Get trained with AI expert sessions

Career Path AI insights for smarter career decisions

AI Job Match Score AI-Powered Job Match Against Your Resume and Optimize Your Resume

Career Tools and Resources

Resume Builder Build Professional Resume with Ease

ATS Friendliness Check Check Resume Friendliness for Applicant Tracking Systems

Auto Apply Apply to hundreds of jobs on any platform effortlessly

Co-Pilot (Chrome Extension) Your AI Assistant for Seamless Browsing Efficiency

Interview Questions Streamline interviews with ready-to-use questions

Salaries Discover market-driven salary insights across skillsets and geographies

Companies Explore leading companies actively hiring talent
For Employers

Jobs

Interviews

Home
>
Jobs in Pune
>
Hsbc
>
Threat and Controls Assessment

Threat and Controls Assessment

Hsbc

3 - 6 years

5 - 8 Lacs

Pune

Posted:20 hours ago| Platform:

Apply

Skills Required

Cism remediation Analytical Risk management Continuous improvement Stakeholder management Information technology Financial services SDLC Core banking

Work Mode

Work from Office

Job Type

Full Time

Job Description

Brief overview of the business areas

Global Cybersecurity is responsible for enabling businesses and functions to manage their information, technology and cybersecurity risks by ensuring these are well-understood, and that controls used the manage such events are defined, assessed and implemented appropriately. Cybersecurity deliver this via objective, independent, professional and specialized subject matter experts. The role forms part of the 1LoD in relation to risk management framework.

The Cybersecurity Assessment and Testing (CSAT) function, part of Global Cybersecurity, is accountable for Vulnerability Management, Secure Development, Threat and Controls Assessment (threat modelling) and Third Party Security Assessment. The function drives the identification, capture, assessment, testing and ultimately the remediation of security defects, gaps and vulnerabilities across HSBC s estate in concert with business and technology teams on premise, within the Cloud and resulting from 3 rd party engagements.

What you will be doing;

The Threat and Controls Assessment Senior Consultant role will work as part of a global team to perform Threat Modelling on HSBC services.

This role will report into the Threats and Controls Assessment Regional Lead, closely collaborating with peers across Penetration Testing; Secure Development, Third Party Security Assessment and Cybersecurity business and regional leads, enabling effective end-to-end vulnerability identification.

Key Responsibilities:

Independently identify and assess the potential security threats and vulnerabilities in systems, applications, and networks.

Work on complex architecture, systems, network to identify the potential security gaps and help HSBC bank to achieve expected security posture of the systems.

Perform effective threat and control assessments of services within our internal, external and cloud estate.

Liaise with Developers, Architects and other Technical Leads to understand the end to end service and identify where there are any control gaps.

Understand the Business requirements, evaluate potential products / solutions and provide technical recommendations.

Be "hands on" with technology and contribute to the design, development and the support of projects with security recommendations.

Identify threats across the IT estate; including applications, databases, network and other infrastructure components.
Engage with other Cybersecurity teams, senior management and members of the Business when confronted with potential security issues.
Work as Technical Lead and take ownership to improve the processes, procedures and h elp team to improve technically.

Stay up to date with industry new trends and best practices.

What you will bring to the role;

To be successful in this role you should have proven experience within the Technology sector with knowledge of the following skills:

Mindset

An inquisitive approach, always asking how to achieve goals in a smarter and more effective way

Positive and professional attitude, team player, flexible and adaptable, embraces change

Good Risk and Controls understanding

Knowledge and exposure of Risk and Control Management

Ability to understand and assess both threats, controls and vulnerabilities, articulating these to both technical and business stakeholders

Desirable to have one or more industry-recognised cybersecurity-related certifications including CISSP, CRISC, CISM or Cloud Security Certifications

Requirements

Strong Technical background

In-depth understanding of security concepts and principles

Proven experience with threat modelling and strong technical understanding and experience of assessing vulnerabilities and identifying weaknesses in diverse enterprise IT assets

Strong understanding of applications design and architecture
Knowledge and experience with network, host and application security practices
Good working knowledge of one or more of the Cloud Service Providers AWS, GCP or Azure
Strong understanding of Software Development Life Cycle (SDLC) with a focus on security

Experience in continuous improvement and process optimisation.

Understanding of emerging technologies and corresponding security threats

Strong stakeholder management and communications skills

Experience of working in international and diverse environments

Experience in engaging with business, technology, regional and regulatory stakeholders

Ability to communicate to key stakeholders effectively translating technical gaps into business risk

Ability to complete tasks independently to a high quality standard

Self-motivated individual with strong analytical and problem solving skills

Experience within fast-moving, complex and demanding corporate environments and able to provide appropriate direction to the team whilst dealing with ambiguity and change

Interpersonal Skills

Influential, credible and persuasive, active listener, embraces HSBC Values, shows good judgement and demonstrates high level of communication skills in order to achieve effective stakeholder management

More Jobs at Hsbc

Consultant Specialist

Pune

4 - 9 yrs

INR 22 - 27 Lacs

Consultant Specialist

Pune

7 - 12 yrs

INR 22 - 27 Lacs

Agile, Scrum/Consultant Specialist

Pune

8 - 10 yrs

INR 13 - 14 Lacs

Appian Development/Senior Consultant Specialist

Pune

5 - 10 yrs

INR 8 - 13 Lacs

Senior Audit Manager - DBS Ops (Mumbai and Gurgaon)

Pune

5 - 10 yrs

INR 8 - 12 Lacs

Mock Interview

Practice Video Interview with JobPe AI

Start Job-Specific Interview

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Enhance Your Skills

Practice coding challenges to boost your skills

Start Practicing Now

Hsbc

Financial Services

London

Login to

Please Verify Your Phone or Email

Confirm Action

Search

Profile

Upskill and Grow with AI

Threat and Controls Assessment