Cybersecurity Lead Analyst

Operating system, Linux

About the project, Global Cybersecurity Operations (GCO) provides a coordinated suite of “Network Defense" services responsible for detecting and responding to information and cybersecurity threats to company assets across the globe and is under the management of the Head of Global Cybersecurity Operations. This includes dedicated functions for the monitoring and detection of threats within the global estate as well as Cybersecurity Incident Management and Response activities.

Your responsibilities, Review and approve new Use Cases and Playbooks created by Cybersecurity colleagues., Continuously review the effectiveness of analysis playbooks, processes, and tooling., Apply structured analytical methodologies to maximise threat intelligence growth and service efficacy., Support the triage of potentially malicious events to determine severity and criticality of the event., Provide expert-level advice and technical leadership to the team, driving the continued evolution of hunting, monitoring, detection, analysis and response capabilities and processes., Train, develop, mentor and inspire cybersecurity colleagues in area(s) of specialism., Collaborate with the wider Cybersecurity (and IT) teams to ensure that the core, underlying technological capabilities that underpin an effective and efficient operational response to current and anticipated threats and trends remain fit for purpose., Identify processes that can be automated and orchestrated to ensure maximum efficiency of Global Cybersecurity Operations resources.

An understanding of organisational mission, values and goals and consistent application of this knowledge as well as highest ethical standards and values., Experience defining and refining operational procedures, workflows and processes to support the team in consistent, quality execution of monitoring and detection., Good understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including: OWASP, ISO2700x series, CIST and NIST standards and network protocols such as TCP, UDP, DNS, DHCP, IPSEC, Technical expertise in analysing threat event data, evaluating malicious activity, documenting unusual files and data and identifying tactics used by attackers., Demonstrated experience in analysis and dissection of advanced attacker tactics and of common log management suites, Security Information and Event Management (SIEM) tools,, use of “Big Data" and Cloud-based solution for the collection and real-time analysis of security information., Knowledge of common cybersecurity technologies such as; IDS / IPS / HIPS, Advanced Anti-malware prevention and analysis, Firewalls, Proxies, MSS, etc. and experience with operating systems and platforms e.g. Windows, Linux, UNIX, Oracle, Citrix, GSX Server, iOS, OSX, etc., Functional knowledge and technical experience of 3rd party cloud computing platforms such as AWS, Azure and Google., Basic knowledge of common cybersecurity incident response and forensic investigation tools such as: EnCase, FTK, Sleuthkit, Kali Linux, IDA Pro, etc.

What we offer, Additional bonuses for recognition awards, Multisport card, Private medical care, Life insurance, One-time reimbursement of home office set-up (up to 800 PLN), Cafeteria platform, Employee assistance program, Additional contributions to PPK scheme, Corporate parties & events, CSR initiatives, Nursery discounts, Financial support with trainings and education, Social fund, Flexible working hours, Free parking

Benefits, sharing the costs of sports activities, private medical care, sharing the costs of professional training & courses, life insurance, remote work opportunities, flexible working time, integration events, corporate sports team, retirement pension plan, corporate library, no dress code, coffee / tea, parking space for employees, leisure zone, extra social benefits, employee referral program, opportunity to obtain permits and licenses, charity initiatives, family picnics, extra leave, In-office gym

Recruitment stages, Online assessment, Phone interview, Job interview, Welcome to HSBC!

HSBC Service Delivery (Polska) Sp. z o.o., HSBC is one of the world’s largest banking and financial services organisations. Our global businesses serve more than 40 million customers worldwide through a network that covers 63 countries and territories., , HSBC Service Delivery (Polska) Sp. z o.o. is HSBC's global finance, operations, risk and technology centre. We use our unique expertise and capabilities to provide specialised services – our people range from technologists transforming the banking experience to operations professionals managing 1.7 trillion payments a year., , Our Purpose – Opening up a world of opportunity – explains why we exist. We are bringing together the people, ideas and capital that nurture progress and growth, helping to create a better world – for our customers, our people, our investors, our communities and the planet we all share.

This is how we work,