BUSINESS INFORMATION SECURITY RISK OFFICER

If you’re looking for a career where you can make a real impression, join Global Service Center (GSC) HSBC and discover how valued you’ll be.

HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions.

Business Information Risk Officers are responsible for discharging their responsibilities across the Businesses and Regions. This involves working directly with back, middle and front office staff, including Control Officers in each business, to ensure all Information Security, Technology and Cyber risks are appropriately identified, assessed, managed and tracked.

The risk utility BIRO will support the broader CIB Chief Control Office (CIB CCO) organisation by providing timely guidance and support to the business on information security related issues and supporting BIRO driven risk reduction activities including Change The Bank (CTB) initiatives. The scope of this role is Global CIB Business including CIB Chief Operating Office (CIB COO) and shall use their subject matter expertise to drive de‑risking of business processes.

• Strong understanding of information security, technology & cyber risks and potential mitigating actions, industry / good practices and related risk/control frameworks
• Good understanding of technology and information security risk/control disciplines

• Information Security certifications e.g. CISA, CISM, CRISC, ISO27001, etc. will be an advantage
• Scholarship in Information Technology, Computing Science, Informatics, Business Management

• Excellent written communication, research and analytical skills
• Ability to work autonomously
• Ability to work across regions, and build relationships with stakeholders globally

• Minimum 4 years’ experience in the information risk / information security space, at least some of which should have been Banking.
• Minimum 5-9 years of risk & control experience – e.g. 2nd Line of Defence (2LOD) / 1st Line of Defense (1LOD) operational risk, information security risk, audit with a focus on information security / information risk.

Performance of risk and controls assessments related to information technology and information security.

Due to the urgent hiring need, candidates with immediate right to work locally and no relocation need will be prioritized.

At HSBC we offer our colleagues a greater number of days, so that they can fully enjoy their wedding, take care of the new member of the family, or grieve the loss of a family member. Our paid leave package is at the forefront in Mexico, now you have one more reason to be HSBC and proudly live a culture of well‑being, balance and care.

HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc. We consider all applications based on merit and suitability to the role.