This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
The GCIO Chief Control Office (CCO) team plays an important role in enabling the bank to operate within its risk appetite by ensuring efficient and effective risk and control management. We do this by providing operational risk and control expertise, specialist technical knowledge and a deep understanding of the businesses and functions we serve. Key activities include implementation and oversight of the Group’s Risk Management Framework, ongoing and targeted controls assessments, implementing and maintaining robust risk governance, and championing a proactive risk culture. GCIO CCO works closely with partners across all lines of defence and is responsible for maintaining positive relationships with our regulators and external partners.
Job Responsibility:
Partner with the GCIO CCO function to oversee the risk and control portfolio related to the services CCO CTO provides to the Group
Be a leader within the GCIO Chief Control Office (GCIO CCO) Function that directly supports the Technology Infrastructure area of the Chief Technology Office within HSBC
Specifically IT risks and controls of Configuration Baselines, Evergreening/Obsolscence, IT Asset Management, Capacity Management, IT service Acceptance
Act as trusted advisor for senior management by partnering to manage their operational risk i.e., risk assessments, control environment, issues management, audits
Promote accountable risk and control decision-making based on quality data and analysis, actively challenging poor, inefficient or excessive controls, related tasks and behaviours
Provide specialist risk and control knowledge and insights, leading efforts to continuously improve the control environment and monitoring of risk, including behaviours
Advise and designing process and controls in a commercially viable, practical and effective manner
Identify trends to anticipate future developments in the risk and control environment
Influence and shaping the development and implementation of future-fit risk management and regulatory frameworks
Provide Senior Management with updates on any relevant changes to policy or projects related to operational risk that have an impact on their area of responsibility.
Requirements:
At least 5 years of hands-on experience within IT infrastructure and technology control capabilities either directly or as a 1/2/3LOD control management function
At least 5 years of hands-on experience and subject matter expertise in management of operational risk, non-financial risk and/or technology & cyber risk
Experience across Data, IT, Operations, Risk Management, and / or Audit roles requiring management of diverse risk types is desirable
Financial Services or other highly regulated industry experience/exposure is preferred
Strong communication skills to influence and challenge stakeholders
Ability to work independently with limited supervision
Ability to present complex issues concisely to senior partners using non-technical language
Experience dealing with regulatory bodies engagement
Active industry recognized certificates will be an asset, e.g. CISA, CISSP, CRISC, CCSP etc.
Nice to have:
Experience across Data, IT, Operations, Risk Management, and / or Audit roles requiring management of diverse risk types
Financial Services or other highly regulated industry experience/exposure
Active industry recognized certificates, e.g. CISA, CISSP, CRISC, CCSP etc.
What we offer:
Additional car allowance in the amount of 4620 PLN (monthly, gross)
Variable pay
Comprehensive and competitive package of benefits covering healthcare, family friendly leaves, pension and life assurance
Additional bonuses for recognition awards
Multisport card
Private medical care
Life insurance
One-time reimbursement of home office set-up (up to 800 PLN)