Head of Middleware Platform Security @

1 week ago

Kraków, Lesser Poland, Czech Republic HSBC Technology Poland Full time

To succeed in this role you need to have:

  • Minimum 5 years' in-depth experience with multiple middleware technologies from the list of IBM WebSphere Application Server, IBM WebSphere Message Queue, IBM WebSphere Portal, IBM HTTP Server, Apache HTTP Server, Apache Tomcat, Oracle WebLogic Server, nginx Web Server, node.js JavaScript Web Server.
  • Demonstrated experience with middleware platform security.
  • Minimum 2 years' experience leading a technical team.
  • Demonstrated understanding of and experience with Center for Internet Security (CIS) benchmarks.
  • Strong stakeholder management skills, with demonstrated experience of understanding and meeting the needs of multiple stakeholders.
  • Excellent communication skills, including the ability to translate complex technical concepts into business-friendly language.
  • Customer-centric consultancy approach.
  • Ability to manage budgets and allocate resources effectively.
  • Reliant and adaptive to changing situations, with strong desire to delegate and empower the team.

Some careers shine brighter than others.

If you're looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunity

Global Defense Engineering is responsible for fielding solutions that help defend HSBC against a wide range of threats to the business, customers, clients, partners, and staff.  The team works in concert with partner teams across HSBC to implement novel defensive capabilities that are effective and adaptable against a constantly evolving threat landscape.  The function operates under the vision: "Enabling HSBC to be safely successful everywhere the firm chooses to do business."

,[Define secure configuration baselines for middleware software, including but not limited to IBM WebSphere Application Server, IBM WebSphere Message Queue, IBM WebSphere Portal, IBM HTTP Server, Apache HTTP Server, Apache Tomcat, Oracle WebLogic Server, nginx Web Server, node.js JavaScript Web Server., Work with middleware technical subject matter experts to agree secure configuration baselines., Work with middleware technical subject matter experts to define/develop/implement checks for compliance scans., Work with middleware technical subject matter experts to provide remediation guidance for IT Service Owners., Work with the Configuration Baseline Management team to ensure they receive configuration compliance data., Interact with stakeholders across the organisation to understand their security needs and expectations. , Define and maintain capability strategy, supported by Enterprise Architecture, Security Architecture and Control Owners, in response to business strategies, regulator expectations, technology and practice advancement, best practice, and threat actor evolution [will overlap with Architecture]. , Ensure success with delivery partners (in alignment with support functions). Runs / drives respective Delivery forum, QBRs, SteerCos and Capability PODs. , Maintain and prioritise a capability backlog based on objectives and value released to identify what teams work on next. Supports the prioritisation of backlogs from supporting technology and operations/service teams. ] Requirements: IBM, WebSphere Application Server, IBM WebSphere, Message queue, HTTP, Tomcat, Oracle WebLogic Server, Nginx, Web server, Node.js, JavaScript, Security, Center for Internet Security Additionally: Training budget, Private healthcare, Flat structure, International projects, Multisport card, Monthly remote work subsidy, Psychological support, Conferences, PPK option, Annual performance based bonus, Integration budget, International environment, Small teams, Employee referral bonus, Mentoring, Workstation reimbursement, Company share purchase plan, Childcare support programme, Bike parking, Playroom, Shower, Canteen, Free coffee, Free beverages, Free parking, In-house trainings, In-house hack days, No dress code, Modern office, Knowledge sharing, Garden, Massage chairs, Kitchen.

  • Middleware Security Specialist

    1 week ago

    Kraków, Lesser Poland, Czech Republic beBeeMiddleware Full time €60,000 - €90,000

    Job SummaryTo excel in this position, you must have a proven track record of delivering secure middleware solutions.A minimum of 5 years' experience working with multiple middleware technologies, including IBM WebSphere Application Server, Apache HTTP Server, and Oracle WebLogic Server.Demonstrated expertise in designing and implementing robust security...

  • Engineer – Runtime Platform Security @

    1 week ago

    Kraków, Lesser Poland, Czech Republic ITDS Full time

    You're ideal for this role if you have:Proven experience in penetration testing and vulnerability assessment of distributed systemsProficiency in at least one programming language such as C++, Python, or GoDeep understanding of security principles and best practicesFamiliarity with container technologies such as Docker and KubernetesExperience working with...

  • Head of Virtualization Security @

    2 weeks ago

    Kraków, Lesser Poland, Czech Republic HSBC Technology Poland Full time

    What you need to have to succeed in this roleMinimum 5 years' in-depth experience with VMware ESXi.Demonstrated experience with virtualisation platform security. With an emphasis on VMware ESXi and experience with Center for Internet Security (CIS) benchmarks.Experience with Microsoft Hyper-V and container technology.Customer-centric consultancy...

  • Lead SME – Network Security Consultancy @

    2 weeks ago

    Kraków, Lesser Poland, Czech Republic HSBC Technology Poland Full time

    To succeed in this role you need to have:Detailed understanding of network design, firewall, IDPS, content filtering, load balancing, DDoS, NAC, WAF, network segmentation technologies. Good understanding of network security threats and risks.Strong communication and interpersonal skills, with experience interacting with technical leaders and various layers...

  • Principal SME – Proxy and Remote Access Security @

    2 weeks ago

    Kraków, Lesser Poland, Czech Republic HSBC Technology Poland Full time

    What you need to have to succeed in this roleExtensive experience of data networks and security design and engineering, preferably acquired in a highly regulated environment. Experience of data gathering from variety of sources including inputs from business, offline spreadsheets, IT systems, etc. Experience of the application of critical thinking and of...

  • Software Security Specialist

    1 week ago

    Kraków, Lesser Poland, Czech Republic beBeeSecurity Full time

    Job Title: Software Security EngineerWe are seeking an experienced Software Security Engineer to join our team in Warsaw. This role involves safeguarding the security of distributed systems and core infrastructure.About the Role:Conduct penetration testing and vulnerability assessments across distributed platforms.Identify and analyze security...

  • CNAPP Cloud Security Professional

    14 hours ago

    Kraków, Lesser Poland, Czech Republic beBeeSecurity Full time 900,000 - 1,200,000

    Cloud Security SpecialistKey Responsibilities:Elevate cloud security by designing solutions on CNAPP platforms and leveraging Wiz capabilities.Ensure adherence to cloud security principles, compliance frameworks (e.g., CIS, NIST), and risk management best practices for cloud-native applications.Collaborate with cross-functional teams to develop a robust...

  • Email Security Engineer

    1 week ago

    Kraków, Lesser Poland, Czech Republic Antal Full time

    RequirementsStrong practical knowledge of enterprise email systems and protocols (SMTP, SPF/DKIM/DMARC)Hands-on experience with Proofpoint or similar enterprise email security platformsFamiliarity with phishing prevention, malware detection, DLP, and incident responseExperience with Microsoft Exchange Online and Microsoft 365 environmentsGood understanding...

  • Platform Engineering Specialist

    2 weeks ago

    Kraków, Lesser Poland, Czech Republic beBeeEngineering Full time €91,234 - €123,456

    Job TitleThis is a unique opportunity to work on a highly resilient, scalable, performant and developer-friendly GKE Kubernetes Platform.As a Kubernetes Platform Engineer, you will work within an agile team of Engineers and Operations personnel, building the platform in an automated and efficient manner. You will be required to use your initiative to...

  • Cybersecurity Technology Integration Specialist

    2 weeks ago

    Kraków, Lesser Poland, Czech Republic beBeeCybersecurity Full time 63,000 - 91,000

    Role Summary:The Cybersecurity Operations Integration Analyst will work closely with the Head of Cybersecurity Operations Integration to onboard new technologies, business services logging feeds, and cybersecurity tooling into the Global Cybersecurity Operations Security Operation Centre (SOC).This role requires strong technical and engagement skills to...