CrawlJobs Logo
HSBC Logo HSBC · IT - Administration

Head of Vendor Management (Cybersecurity)

Poland Employment contract 22000.00 - 31883.00 PLN / Month · Job Posted June 28, 2026
Apply Position
Job Link Share

Job Description

Some careers shine brighter than others. If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. Your career opportunity: At HSBC, we are investing heavily across our Technology and Digital domains. Our global technology teams work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply, and securely. The Group Chief Information Office (GCIO) COO function operates as the backbone of the GCIO organisation, taking ownership and accountability for all operational aspects to ensure a seamless running of the GCIO business to exceptionally high standards. Aligned to the overall HSBC business structure, focused on continuous improvement and simplification to support GCIO to a consistent high quality, GCIO COO acts as a key enabler to the firm’s ambition to ‘be the most trusted bank globally, putting customers at the heart of everything we do’. This role is part of the COO Cybersecurity Vendor Management pillar which aims to manage all GCIO/technology vendors in a consistent and best practice manner. Vendor Management’s goal is to create a consistent and structured approach to managing technology vendors throughout their lifecycle – from selection to renewal or exit – maximising value, addressing risk and aligning performance with business goals.

Job Responsibility

  • Deal Initiation: Ensure alignment of key parties to agree objectives and support the development of the Tech/Business strategy to deliver
  • Ensure both a vertical and horizontal view is considered through value streams and co-design structures so that services are not duplicated and that there is a cohesive strategy around our service providers and tooling
  • Provide 3rd party requirements to procurement
  • Analyse options and support the development of Business Cases
  • Review, plan and prioritise funding options across RTB, CTB, and other portfolios
  • Negotiation & contracting: P&L development and business case updates
  • Confirm financial, workforce and recharging model
  • Support Procurement with commercial negotiation, assessment, and deal structuring
  • Approvals & Execution: Confirm contract meets requirements, including funding and P&L impact
  • Ensure pre-contract Third Party Engagement Management (TPEM) tasks are complete
  • Manage Third Party Spend (TPS) approval process
  • Support approval briefings, incl. COO, Finance and Tech
  • Update forecasts and manage budget/funding and workforce requirements
  • Submit and/or manage Purchase Orders
  • Post Execution: Validate benefit claims
  • Manage financial, workforce and recharging requirements (including forecasting, invoicing, global contract distribution and balance sheet)
  • Refresh objectives and strategy review at agreed date
  • Oversight of TPEM tasks completion, vendor performance, and all associated risk management
  • Leadership & Teamwork: Active and engaged member of the Cybersecurity Ops Director leadership team
  • Active and engaged member of the GCIO Vendor Management Pillar working group
  • Chair Cybersecurity Vendor Management Meetings
  • Lead and manage the Cybersecurity Vendor Management team

Requirements

  • Proven track record of executive leadership in technology management roles within the financial services industry, preferably within multinational banks
  • Strong understanding of Technology operational management requirements for banks and knowledge of the external environment - regulatory, political, competitor and market
  • Ability to translate technology strategy and align and manage accountabilities accordingly
  • Experience of managing within a complex matrix environment
  • Deep financial and commercial awareness
  • Demonstrable experience in managing significant financial and resource plans, organizational transformation, and project portfolio management, with a track record of driving results in complex, matrixed organisations
  • Ability to manage and mitigate operational risk effectively
  • Maintains expert knowledge of stakeholder requirements, competitor activities and market trends to influence future direction
  • Develops and maintains long term relationships with highly critical stakeholders internally and externally
  • Proven team leadership including building, developing and empowering a high performing team
  • Strong analytical and problem-solving skills, with the ability to synthesize complex information and make data-driven decisions to drive business outcomes
  • Understanding of the HSBC Group and its strategy, structures and processes
  • Knowledge of the external environment - regulatory, political, competitor and market

What we offer

  • Additional bonuses for recognition awards
  • Multisport card
  • Private medical care
  • Life insurance
  • One-time reimbursement of home office set-up (up to 800 PLN)
  • Cafeteria platform
  • Employee assistance program
  • Additional contributions to PPK scheme
  • Corporate parties & events
  • CSR initiatives
  • Nursery discounts
  • Financial support with trainings and education
  • Social fund
  • Flexible working hours
  • Free parking
  • Variable pay is discretionary, but influenced by Group performance, business/function performance and individual performance
  • Comprehensive and competitive package of benefits covering healthcare, family friendly leaves, pension and life assurance
  • 4786 PLN monthly gross additional car allowance
HSBC - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Head of Vendor Management (Cybersecurity)

8 matching positions

Head of Cybersecurity Technology & AI Security Engineering

The Head of Cybersecurity Technology & AI Security Engineering is an executive l...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of relevant experience in an Engineering role in the cybersecurity, digital or AI fields
  • Experience working in Financial Services or Technology or a large complex and/or global environment
  • Comprehensive knowledge of design metrics, analytics tools, benchmarking activities and related reporting to identify best practices
  • Proven track record of building and running resilient service driven technology capabilities
  • Demonstrated use of driving AI delivery and engineering to transform capabilities and services to deliver value to customers and stakeholders
  • Proven ability to engage and influence senior stakeholders across business, risk, technology, and governance functions in a banking context.
  • Demonstrated success in building, leading, and scaling global cybersecurity teams
Job Responsibility
Job Responsibility
  • Build, mentor and inspire a high performing cybersecurity team, growing both the current and the next generation of leadership talent
  • Lay out a clear vision for Cybersecurity Technology in partnership with the leaders of Cyber Security Operations, BFT-CISO, and Cyber Risk and Controls
  • Lead significant initiatives within and help deliver the CISO and BFT cyber strategies, and securely enable business and technology activities and programs
  • Work with the assigned Enterprise Security Architects, vendors and engineers to develop and document an effective architecture that aligns with Citi’s architecture principles and overall Enterprise Architecture
  • Lead a product mgmt. function that engages stakeholders to prioritize features and capabilities in the Cybersecurity Technology roadmap, delivering value and user experience
  • Build an AI capability that maintains an “agent first” mindset to solve security problems
  • Manage the budget, resource planning, and delivery of end results through executing the functional strategy
  • Leverage the team to rapidly respond to emerging threats, security incidents and critical business activities
  • Lead and securely enable significant business change in complex global environments, managing complex multiple risk dimensions
  • Partner with peer leadership to drive cyber strategy and unify global processes and functions
  • Fulltime
Read More
Arrow Right

Head of Cybersecurity Technology & AI Security Engineering

The Head of Cybersecurity Technology & AI Security Engineering is an executive l...
Location
Location
Ireland , Dublin
Salary
Salary:
230000.00 - 420000.00 EUR / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 15+ years of relevant experience in an Engineering role in the cybersecurity, digital or AI fields
  • Experience working in Financial Services or Technology or a large complex and/or global environment
  • Comprehensive knowledge of design metrics, analytics tools, benchmarking activities and related reporting to identify best practices
  • Proven track record of building and running resilient service driven technology capabilities
  • Demonstrated use of driving AI delivery and engineering to transform capabilities and services to deliver value to customers and stakeholders
  • Proven ability to engage and influence senior stakeholders across business, risk, technology, and governance functions in a banking context.
  • Demonstrated success in building, leading, and scaling global cybersecurity teams
Job Responsibility
Job Responsibility
  • Build, mentor and inspire a high performing cybersecurity team, growing both the current and the next generation of leadership talent
  • Lay out a clear vision for Cybersecurity Technology in partnership with the leaders of Cyber Security Operations, BFT-CISO, and Cyber Risk and Controls.
  • Lead significant initiatives within and help deliver the CISO and BFT cyber strategies, and securely enable business and technology activities and programs
  • Work with the assigned Enterprise Security Architects, vendors and engineers to develop and document an effective architecture that aligns with Citi’s architecture principles and overall Enterprise Architecture.
  • Lead a product mgmt. function that engages stakeholders to prioritize features and capabilities in the Cybersecurity Technology roadmap, delivering value and user experience.
  • Build an AI capability that maintains an “agent first” mindset to solve security problems
  • Manage the budget, resource planning, and delivery of end results through executing the functional strategy
  • Leverage the team to rapidly respond to emerging threats, security incidents and critical business activities
  • Lead and securely enable significant business change in complex global environments, managing complex multiple risk dimensions
  • Partner with peer leadership to drive cyber strategy and unify global processes and functions
  • Fulltime
Read More
Arrow Right

Head of Operational Resilience Management

The Head of Operational Resilience Management will be responsible for developing...
Location
Location
United States , NEW YORK
Salary
Salary:
200000.00 - 250000.00 USD / Year
credit-agricole.com Logo
Crédit Agricole
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor Degree / BSc Degree or equivalent
  • Minimum 10+ years of experience in information security or related field
  • At least 3 years of experience in a senior leadership role within the banking or financial services industry
  • Incident Management: Ability to analyze, prioritize, and manage security incidents effectively
  • Strategic Thinking: Ability to align cyber risk initiatives with business objectives
  • Communication and Documentation: Strong ensure thorough documentation and clear communications over security operations activities
  • Leadership and Team Management: Proven track record of building and leading high performing teams
  • Regulatory Compliance: Expertise in navigating banking regulations
  • Industry Thought Leadership: Recognized as a subject matter expert in the cybersecurity or risk management space
  • Technical Knowledge: Strong knowledge with information security technologies such as vulnerability scanning tools, and threat intelligence tools, etc.
Job Responsibility
Job Responsibility
  • Develop and implement a comprehensive operational and cyber resiliency strategy aligned with regulatory requirements and industry standards
  • Define resilience objectives, key risk indicators (KRIs), key performance indicators (KPIs), key control indicators (KCIs) and other relevant metrics to measure the effectiveness of resiliency programs
  • Collaborate with senior leadership to embed resilience principles into business and technology processes
  • Stay ahead of emerging risks, regulatory changes, and threat landscapes to refine and enhance resilience strategies
  • Oversee the development and execution of the bank’s incident management framework, ensuring rapid response and recovery from information security and technology incidents
  • Lead and design tabletop exercises and simulations to test cyber incident response and business recovery capabilities
  • Coordinate with internal and external stakeholders (e.g., regulators, law enforcement, third-party service providers) during cyber events
  • Ensure integration of cyber resilience into broader enterprise risk management and IT security functions
  • Develop and maintain enterprise-wide business continuity and disaster recovery plans, ensuring readiness to sustain critical business operations during disruptions
  • Conduct regular BC/DR testing, audits, and training sessions to validate effectiveness and improve preparedness
  • Fulltime
Read More
Arrow Right

Head of cyber threat exposure and attack surface management

Lead the enterprise-wide Continuous Threat Exposure Management (CTEM) strategy, ...
Location
Location
United Kingdom , Knutsford
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in cybersecurity with direct exposure to vulnerability management, red teaming, or threat exposure reduction
  • Proven track record leading programs integrating CSPM, SSPM, ASM, BAS, or exposure correlation technologies
  • Strong understanding of attack paths, adversary emulation, and continuous validation concepts
Job Responsibility
Job Responsibility
  • Own and drive the global CTEM strategy, establishing a continuous, threat-driven exposure management lifecycle aligned with NIST, MITRE, and CISA Secure-by-Design principles
  • Lead and develop a high-performing CTEM team, fostering collaboration, technical excellence, and an outcome-driven culture
  • Integrate and oversee key exposure management technologies, including Cloud Security Posture Management (CSPM), SaaS Security Posture Management (SSPM), Attack Surface Management (ASM), Breach & Attack Simulation (BAS), and other exposure correlation platforms
  • Correlate assets, identity, vulnerability, and configuration to identify high-impact, exploitable attack paths and inform prioritized remediation strategies
  • Collaborate with Application Security, Vulnerability Management, Red Team, and Security Operations to synchronize discovery, validation, and remediation of exposures across the enterprise
  • Align CTEM outputs with real-world adversary behaviors, leveraging Red Team and Threat Intelligence input to validate attack paths and focus on exploitable conditions
  • Drive automation and AI-enabled analytics to continuously map, assess, and measure reductions in the organization’s attack surface
  • Translate technical findings into business risk language, enabling senior leadership and risk committees to make data-driven investment decisions
  • Define and lead CTEM governance and operating models, ensuring exposure assessments, validation, and remediation tracking are embedded in operational processes
  • Establish clear KRIs and maturity metrics that demonstrate continuous improvement in visibility, validation, and response effectiveness
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Head of Emerging Technology

An NHS organisation in London is seeking an experienced Head of Emerging Technol...
Location
Location
United Kingdom , London
Salary
Salary:
300.00 GBP / Day
morson.com Logo
Morson Talent
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Senior leadership experience in digital transformation, innovation or emerging technology within healthcare or another complex environment
  • A proven track record of delivering large-scale digital or AI-enabled programmes
  • Experience developing innovation strategies and managing multiple concurrent projects
  • Strong stakeholder management skills with the ability to influence executive leaders and external partners
  • Knowledge of AI, digital health technologies, interoperability and healthcare data
  • Commercial awareness, including business case development, funding acquisition and supplier engagement
  • Experience leading organisational change and embedding innovation into day-to-day operations
Job Responsibility
Job Responsibility
  • Develop and lead the organisations emerging technology and innovation strategy
  • Identify opportunities to implement AI, automation, digital health solutions and other innovative technologies across healthcare services
  • Manage a portfolio of digital innovation projects from concept through to delivery
  • Build strong partnerships with technology vendors, research organisations, universities and healthcare stakeholders
  • Secure and manage external funding opportunities and develop robust business cases for innovation initiatives
  • Lead organisational change and support the successful adoption of new technologies across clinical and non-clinical teams
  • Ensure projects align with information governance, cybersecurity and regulatory requirements
  • Represent the organisation at regional and national innovation forums and collaborate with wider NHS partners
  • Parttime
Read More
Arrow Right

Head of IT

We're seeking a dynamic Head of IT to join our team. As Head of IT, you will lea...
Location
Location
Ukraine , Lviv
Salary
Salary:
Not provided
binariks.com Logo
Binariks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in IT leadership, IT management, or senior system administration roles
  • Strong communication and organizational skills
  • Experience managing or mentoring technical teams
  • Strong self-management and ability to prioritize and delegate tasks effectively
  • Hands-on experience with Windows, macOS, and Linux environments
  • Experience with monitoring and observability systems such as: Zabbix
  • Wazuh
  • Grafana
  • Strong networking knowledge and experience with infrastructure vendors such as: Fortinet
  • Aruba Networks
Job Responsibility
Job Responsibility
  • IT Strategy & Operations: Develop and implement the IT strategy aligned with business and engineering needs
  • Define department goals, priorities, and technology roadmaps
  • Ensure high availability, reliability, and security of IT systems and services
  • Oversee office IT infrastructure, networks, end-user devices, cloud services, and internal systems
  • Maintain and improve IT processes, documentation, and operational standards
  • Plan and manage IT budgets, licenses, and technology investments
  • Team Leadership & Management: Lead, mentor, and develop the IT team
  • Manage system administrators, support engineers, and infrastructure specialists
  • Organize task planning, delegation, prioritization, and performance evaluation
  • Support team growth, motivation, and knowledge sharing
What we offer
What we offer
  • 18 days of paid annual leave
  • 10 sick leaves
  • Additional days off for special occasions
  • Medical Care
  • Health check-up
  • Play Room
  • IT Cluster membership
  • Business Trip
  • Tech Talks
  • Training & Conferences
  • Fulltime
Read More
Arrow Right

Global Head of Cyber Risk and Compliance

The Technology & Cyber Compliance and Operational Risk Office (TCCORO) at Citi i...
Location
Location
United States , Irving, Texas, United States, New York, New York, United States
Salary
Salary:
250000.00 - 500000.00 USD / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 20+ years' experience in technology risk and/or cyber risk management in the banking/financial services industry, or related field, with at least 5+ years in 2nd or 3rd line senior leadership positions
  • Subject matter expert in technology risk and/or cyber risk management principles and practices across various information system architecture and engineering domains
  • Proven experience in managing complex risk portfolios and developing strategic risk management frameworks for large organizations
  • Robust understanding of operational risk management frameworks, industry standards, regulatory requirements, and risk mitigation practices
  • Experience managing and overseeing large remediation and transformation programs to achieve intended results
  • Extensive experience in effective written and verbal communication with executive audiences including Boards
  • Experienced risk challenger who balances risks vs. rewards aligned with corporate risk culture
  • Understanding of Citi products and services and downstream impacts of technology risk and/or cyber risk strategy
  • Professional certifications in either technology risk and/or cyber risk preferred, including: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), ERM, CET, ISO27001, COBIT, TOGAF, or CRI
  • In-depth, working knowledge of banking technologies, fraud, cybercrime detection and countermeasures, encryption, data retention, as well as information security support for segregation of duties, application development, network and systems operation, testing and vendor management
Job Responsibility
Job Responsibility
  • Oversight and challenge of the cybersecurity incident response programs
  • Oversight of the security operations center (SOC) and cybersecurity fusion center (CSFC)
  • Oversight of cybersecurity penetration testing and red-team operations
  • Oversight of the Chief Information Security Office (CISO), including the review of the effectiveness of the controls, standards and programs across the enterprise
  • Implementation of guidance for overseeing Emerging Technology and Operational Risks, in compliance with OCC Heightened Standards
  • Able to present and lead discussions with key Regulators, internal and external auditors, as well the Board of Directors and the Risk and Audit sub-committees
  • Governance and Oversight of security risks impacting the business and technology
  • Support in the development of Cyber Policy and Standards
  • Oversight of Key Operational Risks and related indicators and thresholds
  • Challenge of Cyber Risk Self Assessments
What we offer
What we offer
  • Discretionary and formulaic incentive and retention awards
  • medical, dental & vision coverage
  • 401(k)
  • life, accident, and disability insurance
  • wellness programs
  • paid time off packages, including planned time off (vacation), unplanned time off (sick leave), and paid holidays
  • Fulltime
Read More
Arrow Right

Head of IT

As Head of IT, you will lead the strategy, delivery and governance of internal I...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
jobs.360resourcing.co.uk Logo
360 Resourcing Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven senior IT leadership experience in a global organisation
  • Track record leading international teams and large-scale IT programmes (incl. M&A)
  • Strong commercial acumen and budget ownership
  • Excellent stakeholder management and communication skills
  • Deep knowledge of infrastructure, cloud, cybersecurity and enterprise systems
  • Experience managing third-party vendors and partners
  • Strategic and hands-on
  • Calm, decisive and able to prioritise effectively
  • Strong leadership and delegation skills
  • Highly organised with attention to detail
Job Responsibility
Job Responsibility
  • Global IT Leadership
  • Technology Strategy & Innovation
  • Project & Change Management
  • Infrastructure & Operations
  • Board & Stakeholder Engagement
  • Fulltime
Read More
Arrow Right