Global Head of Cyber Strategy and Execution

Job Purpose:

Principal Accountabilities:

• Be a trusted advisor, a lead partner spanning the cyber security leadership team, leading end to end delivery plans across all capabilities, managing a complex set of interdependencies
• Manages large-scale programmes for example, the Cybersecurity aspects of "Technology Risk and Control Book of Work" delivery ensuring effective oversight and execution of technology risk initiatives.
• Designing, uplifting and automating the cyber services consumed by business stakeholders in addition to delivering value to the control environment.
• Take responsibility for the Cyber Security Education Function. This will require increasing the pace at which we deliver and embed changes, operating in a more agile manner both internally and working with our key delivery partners.
• Own and ensure Cybersecurity strategy continuous to align with overall technology and business strategy, reflects the evolving threat landscape and increasing demand from regulators.
• Support Cyber leadership in originating and defining change roadmaps aligned to Cybersecurity strategy.
• Develop and deliver a programme of continuous improvement across the cybersecurity function, improving processes and automation sustainably and with a future focus aligning with Technology and Architecture multi year roadmaps. Focus areas will include location mix, change resource sourcing, vendors, automation opportunities and initiatives to create capacity across the Cybersecurity function.
• Responsible for ensuring Operational Readiness in relation to the rollout / transition of all change initiatives, working closely with customer teams (i.e. GB/GF/Reg teams) to plan and coordinate the delivery process as well as the transition to BAU.
• Develop and ensure there is a cohesive approach to Cybersecurity aspects of Operational resilience for HSBC aligned with Global and regulatory expectations, Industry frameworks and business continuity requirement.
• Oversight and Governance of Cyber related Operational resilience impacts across HSBC including stress testing, tabletop simulation and crisis management exercises.
• Ensure Cybersecurity aspects of third party and supply chain Resilience risk is assessed and interlocked into remediation plans
• Partner with GCIO technology, GCOO and business to embed cyber Resilience by design.

• Develop and drive the Cybersecurity Service Management 'Customer - Led' Strategy for HSBC globally. With purpose to transform Cybersecurity into a robust service led organisation.
• Develop and drive the implementation the Cybersecurity Training & Awareness Strategy for HSBC globally. Its purpose is to raise cyber competency levels across all employees and is a key protective control within the technology and cyber control landscape.

Essential Experience:

• Technical Experience: Proven skills and applied knowledge from at least one of the security capability areas that form part of this role. Skills and understanding of architecture, developer and engineering practises, tooling, and challenge. Experience in continuous improvement and process optimisation.
• Stakeholder Management: Ability to engage with and influence executive leadership and experience in engaging with business, technology, regional and regulator stakeholders.
• Leadership: Strong leadership skill driving the right result for the organisation and bringing out the best in a team. Includes both direct leadership and cross functional capabilities.

Essential Capabilities:

• Strategic Mindset: Seeing ahead to future possibilities and translating them into breakthrough strategies.
• Action Oriented: Taking on new opportunities and tough challenges with a sense of urgency, high energy, and enthusiasm.
• Drives Vision and Purpose: Painting a compelling picture of the vision and strategy that motivates others to action.
• Business Insight & Decision Quality: Applying knowledge of business and the market to making good and timely decisions that keeps the organization moving forward.
• Persuasion & Conviction: Using compelling arguments to gain the support and commitment of others; stepping up to address difficult issues and saying what needs to be said.
• Manages Ambiguity & Ensures Accountability: Operating effectively, even when things are not certain or the way forward is not clear; holds self and others accountable to meet commitments.