Some careers shine brighter than others.

If you’re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role ofSenior Consultant Specialist/ Third Party Security Reviewer.

In this role, you will:

Ensure adherence to the three lines of defense organizational model with clear lines of responsibility, accountability and segregation of duties.Ensure compliance with internal audit and external regulators that any organizational changes are fit for purpose and meet their expectationsAnalyse and execute activities to ensure compliance with HSBC Cybersecurity policies and standards.Contribute to process, procedures and tool identification/development that will strength the bank’s response to threats and incidentsAssess new technology products and projects utilising security technologies pertinent to the departmentAct as a role model to more junior members of the teamEngagement with other Cybersecurity teams, senior management and members of the Business when confronted with potential security issuesExpand their skills, knowledge and experience to enhance the overall capability of the functionManaging Engagements, Business Impact Assessments, Guidance requests, Quality AssuranceConducting Local and Global TPSRs (reviews, reports, identify deficiencies, quality assurance)Engaging with the Global TPSR team to support TPSR work.Articulate and explain information security assessment results to business.Closure of identified deficiencies (verifying evidence to confirm closure or advise what is needed to close them)Support the enhanced level of due diligence i.e., Controls Effectiveness Testing (CET) process for very high-risk third parties.Support the execution of alternate Third Party Control Assessment processes outside of standard procurement workflows, such as the Network Management and Market Intelligence (N2MI) processes in MSS for non-procured financial servicesSupport consultancy ‘white glove’ service for GB/GFs’ most material, strategically important, and highly complex engagements, with consultants bringing their well-rounded cyber expertise and stakeholder management skills to lead engagements throughout their entire lifecycle, from pre-selection to off-boarding.