Requirements: English
Company: HSBC Service Delivery (Polska) Sp. z o.o.
Region: Krakw , Lesser Poland Voivodeship
about-project :
- Offensive Security serves a crucial role in helping HSBC protect itself and proactively manage Cybersecurity risk by providing the mindset of the attacker. Offensive Security drives a thorough understanding of Cybersecurity attacks by acting as an independent challenge, simulating real-world attacks, performing regular penetration testing, and innovating approaches to find vulnerabilities.
- The Outsourced Testing Manager is responsible for the delivery of Offensive Security activities through third-party vendors. This includes maintaining the relationships with vendors who deliver penetration testing, red team exercises, managed bug bounty, and that provide tooling to support our internal teams.
responsibilities :
- Leading vendor selection processes, in collaboration with procurement, to regularly refresh the vendor panel and to identify new vendors to meet new, and niche, requirements.
- Maintenance of positive relationships with the selected vendor panel, to ensure continued capacity to meet HSBC needs.
- Negotiating favourable terms with vendors, including creating larger frameworks of deliverables to secure volume discounts.
- Working with the Head of Engagement, and other service-line leads, to act as a bridge between vendors and business stakeholders; to scope individual tests and ensure the requirements of testing are delivered to the vendors in a timely manner.
- Collect results of testing and communicate to the respective Issue Owners and Cybersecurity Vulnerability Remediation team.
- Continuous monitoring of third-party supplier performance, and proactive management of issues.
- Maintaining compliance against third-party management controls.
requirements-expected :
- A working understanding of one-or-more Offensive Security approaches (e.g., penetration testing).
- Extensive leadership experience, especially in cross-functional and cross-country collaboration.
- Experience in working with business stakeholders and ability to communicate clearly and effectively.
- Strong ability to manage multiple, complex engagements simultaneously.
benefits :
- sharing the costs of sports activities
- private medical care
- sharing the costs of professional training & courses
- life insurance
- remote work opportunities
- flexible working time
- integration events
- corporate sports team
- doctors duty hours in the office
- retirement pension plan
- corporate library
- no dress code
- coffee / tea
- parking space for employees
- leisure zone
- extra social benefits
- employee referral program
- opportunity to obtain permits and licenses
- charity initiatives
- family picnics
- extra leave
- In-office gym