Resilience Risk Specialist, Emerging Technology Risk Lead

Some careers have more impact than others.

If you’re looking for a career where you can make a real impression, join HSBC and discover how valued you’ll be.

HSBC is one of the largest banking and financial services organisations in the world, with operations in 62 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions.

We are currently seeking an experienced professional to join our team in the role of Resilience Risk Specialist, Emerging Technology Risk Lead.

Enterprise Risk Management (ERM)  is a sub function of Group Risk. Its purpose is to make sure HSBC understands and is in control of its non-financial risk position. This is a high profile role in our function, with responsibility to provide advice and support globally to ensure stakeholders understand and are aware of the Technology and Cyber security risks (TCS), and associated TCS Risk within emerging technologies, this role requires specialist insight and guidance on changes required to the control environment to ensure HSBC operates within its appetite. The role requires a broad understanding of industry standards, e.g NIST, ITIL, COBIT, COSO etc.

The role requires both entity and functional management (the functional team provide specialist knowledge across TCS control domains, globally), as a member of the senior team you will have specific responsibility for ERM operations within the Bangalore office. 

This role requires an established and experienced senior manager, who can authoritatively, and credibly, interact with executive stakeholders at C suite level across all lines of defense in the bank. 

Principal responsibilities:•    Provide Emerging Technology Risk oversight globally, ensuring compliance to the Bank Risk frameworks. Input into group policy for controls associated with TCS risk and Emerging technologies •    Form opinion on the First-line’s adoption of procedures and operating instructions required to implement the policy objectives across the changing technology environment.•    Provide second-line reporting on the status of TCS risk across the group•    Engage senior stakeholder with insight to drive  decision making via delivery of regular and consistent management reports, expert analysis, and opinion / challenge papers through various fora•    Supporting ERM Leadership with domain related queries•    Input into setting of  risk appetite thresholds, and oversee and challenge risk appetite monitoring and remediation within the first line.•    Provide review, guidance and where required challenge to ensure first-line understand and are managing their TCS risks.•    Horizon scanning to ensure implications on emerging technologies are understood, this includes the development of strategies to adopt and or protect•    Promote and develop TCS  risk awareness and risk management culture to ensure material risks are both evident and effectively managed; leading the deployment of deep subject matter expertise  globally•    Set, maintain and oversee the TCS risk and control library (RTCL), including minimum control standards, with input from Risk Owners, Business Service and Control Owners•    Recommending Risk and Control Assessment (RCA) scoping for related controls and challenge where this is not appropriately applied in the RCA.•    Driving appropriate governance for DETR across key engaging senior stakeholders as appropriate •    Leading regulator and audit engagement pertaining to TCS Risk ; ensuring  compliance for timely completion of audit actions and findings•    Support training and capability uplift across TCS Risk specialists and ERM  to ensure robust understanding of TCS Risks , enabling business to adapt swiftly and appropriately to a rapidly evolving commercial, regulatory and threat environment.•    Completing analytical assessments and opining on the Risk Owners control environment •    Constructive challenge to the global businesses and functions on their control environment and assessment of risk•    Oversight of emerging risks, strategic initiatives and local change activity and new/materially changed products•    Completing thematic reviews and aggregated reporting of the Non-Financial Risk profile of the bank•    Responsibility for the implementation of a Risk Management Framework (RMF) that sets out governance, policies and practices to proactively identify, assess, measure and report on, mitigate and control non-financial l risk exposures associated with HSBC’s businesses and operations.•    Ensuring material issues, events and incidents both in key controls and material change programmes are fully understood and effectively managed, escalating to appropriate governance forums where appropriate.•    Educating stakeholders to understand the impact of emerging risks that require changes to controls to ensure they remain within appetite.•    Providing specialist risk input into significant change initiatives

Leadership & Teamwork:•    Challenge and influence to ensure specialist advice and guidance is understood and followed•    Partner with relevant stakeholders to ensure a strong risk management culture and behaviours are effective and embedded•    Work in conjunction with ERM Business & Functions team and the wider specialist teams •    Support diversity and reflect the HSBC brand and organisational values•    Develop an effective team through communication, performance management, development plans and reward/recognition practices•    Lead and role model aligning with the Bank’s strategy, behaviours and values.