Mid-Level Cybersecurity Controls Analyst – Security Controls Design and Oversight

Our client is a leading financial institution focused on safeguarding digital assets and strengthening cybersecurity frameworks in a global environment.

• At least 3 years of experience in risk and controls management within cybersecurity environments
• Technical knowledge of cybersecurity fundamentals
• Understanding of the Network Security domain (preferred)
• Experience with metrics such as KCIs, KRIs, and KPIs for risk and control management
• Strong technical writing skills and proficient English communication
• Excellent stakeholder engagement and collaboration skills
• Experience working in international, fast-paced corporate environments
• Problem-solving capabilities to address governance challenges

Nice to have:

• Recognized cybersecurity certifications
• Prior experience in large-scale cybersecurity control environments
• Knowledge of banking industry cybersecurity standards

• Define and maintain operational control instances, policies, standards, and procedures for Group Cybersecurity
• Collaborate with Control Owners, 2LoD, and CCO Technology to ensure controls align with HSBC requirements and NIST 800-53 best practices
• Support Control Owners in defining measures according to HSBC's KCI Design Framework and CIS standards
• Work with CTE and CMT teams to verify controls' compliance with legal and regulatory frameworks
• Assist NSEC Control Owner in designing, managing, and maintaining cybersecurity control Policies, Standards, and Procedures
• Ensure control measurements produce data sufficient for stakeholder reporting

Only candidates with an existing legal right to work in the European Union will be considered for this role.