Vulnerability Management Reporting Analyst @

What you need to have to succeed in this role

• Developing and implementing enterprise scale reports and dashboards in Power BI.
• Using Structured Query Language (SQL).
• Logical and physical data modelling concepts (relational & Dimensional).
• Azure cloud (Databricks & SQL Analytics).
• Cybersecurity concepts such as threats, vulnerabilities
• Intermediate VBA Scripting or programming language skills (Python, C+, or PowerShell, VBA scripting)
• Excel macros, advanced formulas and pivot table functions; manipulation of large data sets to provide comprehensive data analysis and reporting solutions.
• Scanning technologies (e.g. Nessus, SAST, MAST and DAST scanning).

Some careers shine brighter than others.

If you're looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunit

Some careers shine brighter than others.

If you're looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.

Your career opportunity

Global Cybersecurity is responsible for enabling businesses and functions to manage their information, technology and cybersecurity risks by ensuring these are well-understood, and that controls used the manage such events are defined, assessed and implemented appropriately. Cybersecurity predominantly deliver this via objective, independent, professional and specialized subject matter experts. The role forms part of the first line of defence in relation to the risk management framework.

The Cybersecurity Assessment and Testing (CSAT) function, part of Global Cybersecurity, is accountable for Vulnerability Management, Secure Development (inc. DevSecOps), Threat and Controls Assessment (inc. threat modelling) and Third Party Security Assessment. The function drives the identification, capture, assessment, testing/ verification and ultimately the remediation of security defects, gaps and vulnerabilities across HSBC's estate in concert with business and technology teams - on-premise, within the Cloud and for those resulting from 3rd party engagements.

Our technology teams in the UK work closely with HSBC's global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply, and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world's leading international bank.

Our multi-disciplined teams include DevOps engineers, IT architects, front and back-end developers, infrastructure specialists, cyber experts, as well as project and programme managers.

Following extensive investment across our Technology and Digital domains and with plans for continued expansion throughout 2023 and beyond, we are currently seeking an SME - Cryptography to join HSBC.

The Machine Identity and Cryptographic Services team provide a wide range of Cryptographic consultations and solutions to internal customers globally.  This role will focus on processes around TLS/SSL certificates and SSH keys, which the team executes through Venafi Trust Protection Platform.

,[Designing, building, delivering and maintaining detailed and accurate reporting of Vulnerability data to help drive and prioritise risk based remediation., Driving continual improvement in the depth and breadth of reporting capabilities e.g., as a result of thematic analysis., Producing routine operational reports by exporting large datasets from existing sources (including Power BI dashboards and Cyberport)., Ensuring clear, concise, consistent and insightful commentary to complement the data/ metrics, highlight key themes with a risk/ business focus., Responding to adhoc management information data requests including the delivery of thematic trend analysis.] Requirements: Power BI, SQL, Data modelling, Azure Cloud, Cybersecurity, VBA, Python, PowerShell, Excel, Data analysis, Nessus, SAST, DAST Additionally: Training budget, Private healthcare, Flat structure, International projects, Multisport card, Monthly remote work subsidy, Psychological support, Conferences, PPK option, Annual performance based bonus, Integration budget, International environment, Small teams, Employee referral bonus, Mentoring, Workstation reimbursement, Company share purchase plan, Childcare support programme, Bike parking, Playroom, Shower, Canteen, Free coffee, Free beverages, Free parking, In-house trainings, In-house hack days, No dress code, Modern office, Knowledge sharing, Garden, Massage chairs, Kitchen.

---