Principal Security Researcher @
2 weeks ago
What you need to have to succeed in this role
- Demonstrated experience running highly sensitive projects.
- Participation in the Cyber Security industry.
- Understanding of analysis of common operating system, such as Linux, Windows, Google Android and iOS.
- Demonstrated experience in third party vulnerability disclosure.
- Demonstrated experience in software development.
- Demonstrable experience in tooling, automation and prototyping.
- Demonstrated experience in source code review
- Demonstrated experience in penetration testing
Some careers shine brighter than others.
If you're looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further.
Your career opportunity
Offensive Security provides an independent challenge to HSBC's cybersecurity posture by bringing the attacker's mindset to find and exploit vulnerabilities and to simulate real-world attacks. Through this, OffSec discover weaknesses across people, process, and technology, enabling the Firm to better understand its exposure to cybersecurity attacks and to drive a proactive approach to protect itself and to manage risk more effectively.
The Security Research team, within the Global Cybersecurity Research and Offensive Security CROS function, provides a specialist approach to assessing the security of systems and technology, identifying previously unknown vulnerabilities and new attack techniques. Additionally, the Security Research team supports the wider CROS function by developing tools and automation of processes to enhance security assessment.
,[Deliver security research projects focused on HSBC critical services, ensuring that design, quality and implementation of controls do not expose the bank to a significant level of risk., Identify previously unknown vulnerabilities and new attack techniques., Work with key stakeholders to proactively drive the reduction in Cybersecurity risks and improve the security risk posture of HSBC within the business risk appetite., Provide subject matter expertise and guidance to a broad range of stakeholders across global business and functions., Engage with relevant programmes that are critical to the bank., Understand the financial services industry security and threat landscape., Engage with a diverse set of stakeholders to achieve CROS objectives, including Business and Functions, Cybersecurity leads, Head of Cybersecurity functions and Control Owners., Achieve excellence by driving performance, compliance and security.] Requirements: Java, API, Backend, Security, Spring Boot, Cache, Cloud, GCP, AWS, Azure, Design Patterns, Data models, Linux, Networking, Storage, JVM, Docker, K8s, AppDynamics, Splunk, DevOps, VPC, IAM, Communication skills, SQL, Tomcat, Cloud Native, Angular, React, User interface, TOGAF Additionally: Training budget, Private healthcare, Flat structure, International projects, Multisport card, Monthly remote work subsidy, Psychological support, Conferences, PPK option, Annual performance based bonus, Integration budget, International environment, Small teams, Employee referral bonus, Mentoring, Workstation reimbursement, Company share purchase plan, Childcare support programme, Bike parking, Playroom, Shower, Canteen, Free coffee, Free beverages, Free parking, In-house trainings, In-house hack days, No dress code, Modern office, Knowledge sharing, Garden, Massage chairs, Kitchen.-
Principal SME Network Security Consultancy @
2 weeks ago
Kraków, Lesser Poland, Czech Republic HSBC Technology Poland Full timeTo succeed in this role you need to have:Detailed understanding of network design, firewall, IDPS, content filtering, load balancing, DDoS, NAC, WAF, network segmentation technologies. Detailed understanding of network security threats and risks.Strong communication and interpersonal skills, with experience interacting with technical leaders and various...
-
Principal Tester
2 weeks ago
Kraków, Lesser Poland, Czech Republic beBeeSoftwareTesting Full time €40,000 - €70,000Lead Quality Assurance AnalystYou're ideal for this role if you have higher education in a relevant field and at least 3 years of professional experience testing IT systems with strong analytical skills and high attention to detail.Higher education in computer science or engineering, or related fields is required.A minimum of 3 years of experience in testing...
-
Principal Software Developer
2 weeks ago
Kraków, Lesser Poland, Czech Republic beBeeSoftware Full time 650,000 - 850,000Job DescriptionKey Responsibilities:Develop high-performance, scalable and secure systems that support metadata search and registry applications.Utilize expertise in Python, Java, Fast API, ReactJS, Typescript and other technologies to deliver robust solutions ensuring platform reliability and compliance with industry standards.Collaborate with...
-
Senior Penetration Tester @
2 weeks ago
Kraków, Lesser Poland, Czech Republic HSBC Technology Poland Full timeWhat you need to have to succeed in this roleBe subject matter expert in at least 1 of penetration testing domains (i.e. infrastructure/apps/mobile).At least 5 years of prior demonstrable hands-on experience in penetration testing.Solid understanding of the platform security models for iOS and Android platforms.Excellent understanding of platform-specific...
-
Senior Backend Developer
2 weeks ago
Kraków, Lesser Poland, Czech Republic beBeeSoftware Full time 700,000 - 1,300,000Job Title: Software Engineer MID/SENIORWe are seeking a skilled and experienced Software Engineer to join our Research and Development team in Poland.Key Responsibilities:Design, develop, and deploy scalable and efficient software solutions using Java and Spring.Collaborate with cross-functional teams to define and deliver high-quality software...
-
Network Access Security Specialist @
2 weeks ago
Kraków, Warszawa, Czech Republic Antal Full timeDeep expertise in network access control technologies, architectures, and best practices.Strong understanding of network security threats, risks, and mitigations.Familiarity with network architecture, including firewalls, segmentation, and load balancing.Excellent interpersonal and communication skills, including experience engaging with technical leads and...
-
Principal Software Engineer @
2 weeks ago
Remote, Kraków, Czech Republic OpenX Full time5+ years of experience with building SaaS applications using JavaScript/TypeScript (including Node.js)Experience with database system design, RDBMs, or NoSQLOpenness to work with other languages like PythonExperience with developing back-end - nice to haveExperience with Amazon Web Services or Google Cloud Platform - nice to haveCommunicative Polish and...
-
Principal Java Developer
2 weeks ago
Remote, Warszawa, Kraków, Wrocław, Gdańsk, Czech Republic AVENGA (Agencja Pracy, nr KRAZ: 8448) Full time10+ years of proven working experience with at least one Java framework (preferably Spring 4+) and ORM frameworkExcellent RDBMS skills (design, implementation, migration) working with large amounts of data in production systems.Experience in implementing REST APIs.Excellent understanding of concurrency in JavaUnderstanding of distributed computing principles...
-
Senior Backend developer with AWS @
2 weeks ago
Remote, Lublin, Kraków, Warszawa, Wrocław, Katowice, Czech Republic Velocity Creators Full timeExperience in designing and creating Restful APIExperience in Node.js and TypescriptWeb security principalsServerless architectureAWS Services: SQS, SNS, DynamoDB, S3, Cloud formation Velocity Creators is an IT company located in Poland. Our primary goal is to deliver modern solutions for digital identity. We have designed and delivered highly scalable...
