Cryptography Governance Analyst, HSBC

HSBC

Location:
India, Pune

Category:
IT - Administration

Contract Type:
Not provided

Salary:

Not provided

Save Job

Apply Position

Job Description:

The Cybersecurity (Cryptography) Governance, Regulatory & Control Management job is responsible for delivering and support governance, audit, compliance and regulatory requirements, MI/reporting and management of all (Cryptography) Cybersecurity standards.

Job Responsibility:

Conduct application risk assessments around implementation of Cryptography Controls
Identify and report non-compliance to the Cryptography Standards pertaining to encryption, key management, PKI
Build relationships and engage with all relevant business and region/country stakeholders to provide visibility on their risk profile and control effectiveness
Drive risk remediation across the global business and functions
Work in partnership with the Global Business/Functions
Regions and Security Services (including provision of KPI/KCI/SLA reporting) to support the country or business level reporting into regulators and other external stakeholders as required
Support and be involved in the Information Security Governance & Compliance agenda and oversee effectiveness of controls to ensure compliance with HSBC Information Security policies and standards
Support the development and management/maintenance of (Cryptography) Cybersecurity owned standards, working with the Security Services teams, and providing oversight and guidance of compliance across the Group
Support close co-ordination with the Cybersecurity Second Line of Defense Functions so that risk management processes remain fully aligned to the rest of the organization

Requirements:

Knowledge of cryptography would be desirable
Experience in Vulnerability management, IT Security compliance, Data Security
Solid understanding of encryption techniques
An understanding of PKI, CKMS, Key Management in Cloud (Desirable)
Working experience on Vulnerability Management Tool set i.e., Kenna, Nessus, etc.
Industry Standard Certifications such as CISSP
CISA
CISM
CCSP (Desirable)
Proven experience in Audit, Governance and Compliance issues along with remediation plans
Experienced in dealing with Internal and External auditors and reporting
Monitor, report and identify progress on projects raising any issues/risks, escalating as appropriate to Cryptographic Services leadership and wider business management functions
Build trusting relationships with stakeholders by consistently meeting and delivering upon their business needs
demonstrating and being respected for your domain knowledge
Ability to work on own initiative and under pressure
KCI/KPI Risk reporting background
Operational effectiveness - delivers solutions that align to approved design patterns and security, risk and regulatory standards
A track record of constantly looking for ways to do things better and an excellent understanding of the mechanism necessary to successfully implement change
Proactively interact with and provide support to delivery partners to ensure the needs of the business are met

Nice to have:

Knowledge of cryptography
An understanding of PKI, CKMS, Key Management in Cloud
Industry Standard Certifications such as CISSP
CISA
CISM
CCSP

Additional Information:

Job Posted:
September 18, 2025

Expiration:
October 18, 2025

Employment Type:

Fulltime

Work Type:

Hybrid work

View All Jobs In This Company

Job Link Share:

Cryptography Governance Analyst