#1 Job Board for tech industry in Europe

  • Job offers
  • Principal Cybersecurity Operations Integration Analyst
    Security

    Principal Cybersecurity Operations Integration Analyst

    Kraków
    Type of work
    Full-time
    Experience
    Senior
    Employment Type
    Permanent
    Operating mode
    Hybrid

    Tech stack

      IDS

      master

      IPS

      master

      firewalls

      master

      Proxies

      master

      TCP

      master

      HTTP

      master

      DNS

      master

      Windows

      master

      Linux

      master

      Leadership

      advanced

    Job description

    Principal Cybersecurity Operations Integration Analyst


    Some careers shine brighter than others.

    If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a

    career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities,

    support and rewards that will take you further.


    Your career opportunity

    Reporting directly into the ‘Head of Cybersecurity Operations Integration, the Principal Cybersecurity Operations

    Integration Analyst is the senior technical subject matter expert (SME) within a small team tasked with the

    onboarding of new technologies, business services logging feeds and cybersecurity tooling into the Global

    Cybersecurity Operations Security Operation Centre (SOC).


    The role holder will the primary technical and engagement lead, tasked with achieving the desired outcomes via

    proactive and collaborative stakeholder engagements across the technology landscape. Working closely with the

    technology owners and the SOC Monitoring & Threat Detection and Incident Response teams, the role holder will

    continuously review and manage onboarding requests to ensure a cyber-threat intelligence led approach to the

    prioritisation of engagements.


    What you’ll do

    • Leading the technical development, implementation and maintenance of a technology and log ingestion framework that aligns to control requirements and supports a cyber-threat intelligence led approach to the detection, response and containment of cyber-threats.
    • Leading and maintaining the technical aspects of a flexible stakeholder engagement model that caters for both proactive and reactive collaboration and can rapidly adjust and reprioritise workloads in response to the changing threat-landscape.
    • Building and maintaining strong processes and collaborative working practices with supporting teams in Sustainable Cybersecurity Operations and the wider Global Cybersecurity Operations & Intelligence teams.
    • Building relationships and engagements with the many technology and platform owner stakeholders.
    • Successfully maintaining these relationships and delivering prioritised outcomes in an environment where relationships can be complex and priorities are often divergent.
    • Maintaining governance across all Cyber Ops Integration activities and ensuring the creation, collection and processing of key data points to feed into relevant service reporting e.g. service delivery metrics, KPIs, KCIs, and performance dashboards.
    • Supporting the development and maintenance of a functional strategy that supports continuous improvement and is aligned to the wider Sustainable Cybersecurity Operations and Global Cybersecurity Operations & Intelligence strategy and goals.


    What you need to have to succeed in this role

    • Experience in a leadership position within a cyber-security operations team to include team and capability development, staff development, career management, and recruitment.
    • Excellent knowledge and demonstrated experience of common cybersecurity technologies such as; IDS / IPS / HIPS, AV, EDR, Firewalls, Proxies etc.
    • Excellent knowledge of common network protocols such as TCP, UDP, DNS, DHCP, IPSEC, HTTP, etc. and network protocol analysis suits.
    • Excellent knowledge of common enterprise technology infrastructure, platforms and tooling, including; Windows, Linux, infrastructure management and networking hardware.
    • Good knowledge and technical experience of 3 rd party cloud computing platforms such as AWS, Azure and Google.
    • Good knowledge and demonstrated experience in incident response tools, techniques and process.
    • Excellent knowledge and demonstrated experience of common log management suites, Security Information and Event Management (SIEM) tools such as Splunk Enterprise Security or Microsoft Sentinel.
    • Knowledge of cloud based “data lake” solutions used for the collection and real-time advanced analysis of security information.
    • Good understanding and knowledge of common industry cybersecurity frameworks, standards and methodologies, including; OWASP, EU data security and privacy acts, FFIEC guidelines, CIS and NIST standards, and the MITRE ATT&CK Framework.


    What we offer

    • Competitive salary
    • Annual performance-based bonus
    • Additional bonuses for recognition awards
    • Multisport card
    • Private medical care
    • Life insurance
    • One-time reimbursement of home office set-up (up to 800 PLN).
    • Corporate parties & events
    • CSR initiatives
    • Nursery discounts
    • Financial support with trainings and education
    • Social fund
    • Flexible working hours
    • Free parking


    If your CV meets our criteria, you should expect the following steps in the recruitment process:

    • Online behavioural test (for external candidates only)
    • Telephone screen (for external candidates only)
    • Interview with the hiring manager.


    We are looking to hire as soon as possible so don’t wait and apply now!

    You'll achieve more when you join HSBC.

    Check similar offers

    OT Security Engineer

    New
    emagine Polska
    7.98K - 13.3K USD
    Warszawa
    , Fully remote
    Fully remote
    Firewall technologies
    OT Endpoint solutions
    OT protection

    OT/IoT Security Specialist IRC241206

    New
    GlobalLogic
    Undisclosed Salary
    Kraków
    IoT

    IT Security Analyst (EDR)

    New
    ArcelorMittal BCOE
    Undisclosed Salary
    Szczecin
    , Fully remote
    Fully remote
    EDR
    Security tools
    SIEM

    Information Security Manager

    New
    CodeTwo - HRejterzy
    3.68K - 6.13K USD
    Jelenia Góra
    , Fully remote
    Fully remote
    Information Security

    Ekspert ds. Cyberbezpieczeństwa

    New
    Arcus
    Undisclosed Salary
    Warszawa
    IT Security
    Cybersecurity
    NIS2