Endpoint Cybersecurity Engineer – Antimalware
Internship Sheffield (South Yorkshire) Energy / Materials / Mechanics
Job description
Senior Endpoint Security Engineer – Antimalware (Sheffield or London)
Big Bank Funding. FinTech Thinking.
Our technology teams in the UK work closely with HSBC's global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world's leading international bank.
Our multi-disciplined teams include: DevOps engineers, IT architects, front and back end developers, infrastructure specialists, cyber experts, as well as project and programme managers.
We work in small, agile DevOps teams with colleagues around the world from our offices at the Bluefin Building in Southwark, our global headquarters in Canary Wharf, and multiple other locations around the UK including Sheffield, Leeds, Barnsley and Birmingham.
Following extensive investment across our Technology and Digital domains and with plans for continued expansion throughout 2020 and beyond, we are currently seeking a number of experienced Security Engineers to join HSBC Technology.
Brief overview
The Senior Security Engineer (Antimalware) will be a member of the Global Cybersecurity Technology team. This team is responsible for identifying, developing and deploying global cybersecurity controls across the estate leveraging the firm's assets, network and data to identify threats. This role will partner heavily with IT Infrastructure Delivery (ITID) and support the end-to-end secure deployment of security technologies across the firm as well as leading and attracting talent to build a world class team.
What you will be doing;
The role, focusing on Antimalware Engineering, will be accountable for the following:
· Reviewing, analyzing and documenting the current baseline and developing the target technology posture.
· Performing gap analysis of the current baseline against the target architecture.
· Evaluating, developing and applying appropriate tools to capture, analyze and model various viewpoints of the domain architecture.
· Defining metrics and methodologies to measure domain performance of applying new technologies.
· Reviewing, designing and re-engineering domain processes with new technologies and solutions to improve domain performance.
· Providing centralized, global cybersecurity services to the organization and reducing associated costs
· Operating a first line of defense to ensure compliance with IT requirements
· Providing thought leadership, consultation and subject matter expertise to the organization on Cybersecurity/Antimalware issues
· Implementing and maintaining an effective engagement model across all regions, global businesses, and global functions.
· Researching, engaging, and managing third party vendors where relevant to support functional objectives.
· Working with security start-ups, as well as more established companies, to support design partnerships and shape product/service offerings to meet the requirements of the bank.
· Providing thought leadership to the function and broader Cybersecurity organization, driving transformational change and capability uplift across the bank.
· Collaborating with various layers of management across Cybersecurity and other IT teams to develop solutions that protect the organization.
· Design and drive the implementation of service offerings, capability uplifts, and process improvements to protect the bank for a continuously changing threat landscape.
Desired profile
Qualifications :
What you will bring to the role;
· Extensive experience in information security, preferably focused on endpoint security and antimalware controls and solutions
· Demonstrable experience as both an individual contributor and lead implementing and managing endpoint/antimalware security solutions
· Experience working cross-functionally to achieve desired outcomes and goals, including working with subject matter experts and leads for other domains/controls to implement security solutions that effectively reduce risk
· Experience working with business partners to understand and evaluate cybersecurity requirements and ensuring security solutions best meet those requirements while reducing risk for the organisation
· Detailed understanding of current security risks, vulnerabilities, and mitigations for common desktop and server operating systems, as well as knowledge of security best practices and common controls/security products
· Broad understanding of common network, application, and cloud security controls
· Detailed knowledge of networking, operating system, and application development fundamentals, particularly with regard to security of and threats to associated technologies, solutions, and products
· Extensive experience with securing endpoints, and supporting, and integrating security products in large networks/environments
· Demonstrated ability to perform complex troubleshooting and problem analysis as well as mitigation in large environments and at scale
· Extensive experience in evaluating and selecting security products given business/technology needs and goals, including requirements gathering, testing, and working with multiple vendors
· Excellent communication and interpersonal skills, with demonstrated experience in interacting with technical leaders and various layers of management
· Demonstrated experience in mentoring and offering guidance to team members
· Demonstrated ability automating common information security tasks in scripting environments/languagues such as Python, Perl, or similar.
· Ability to build connections and work collaboratively within and across teams and boundaries
· Willingness to continuously learn and share knowledge with other
This role will be Sheffield or London based but some travel may be required.
Come Power a Business that Defines How to Power the World
As a business operating in markets all around the world, we believe diversity brings benefits for our customers, our business and our people. This is why HSBC UK is committed to being an inclusive employer and encourages applications from all suitably qualified applicants irrespective of background, circumstances, age, disability, gender identity, ethnicity, religion or belief and sexual orientation.
We want everyone to be able to fulfil their potential which is why we provide a range of flexible working arrangements and family friendly policies.
As an HSBC employee in the UK, you will have access to tailored professional development opportunities and a competitive pay and benefits package. This includes private healthcare for all UK-based employees, enhanced maternity and adoption pay and support when you return to work, and a contributory pension scheme with a generous employer contribution.
Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.