Join a digital first bank that’s powered by people.

Cyber Security Assurance and Testing (CSAT) is a department within Cyber Security at HSBC. It owns the controls and services that provide pre-production and production application and infrastructure security scanning, remediation management and reporting.

In addition to vendor scanning products, CSAT has built a security integration toolkit on Kubernetes which provides a point for on-boarding and scan execution in front of all the scanning tools, and data processing to the Vulnerability Consolidation Platform and downstream to the Azure data lake and Power BI for reporting.  CSAT have also built a vulnerability remediation management platform to manage pre-production vulnerability findings.

CSAT are undergoing a major programme to further simplify, streamline, and enhance the vulnerability management systems. This will require data engineering, further integration with vendor scanning tooling, and additional services on Kubernetes.

We are seeking an experienced and results-driven Engineering Manager to lead our CSAT Engineering team. This role will oversee a global team of 80 engineers and subject matter experts (SMEs) responsible for designing, building, and operating pre-production and production security scanning, remediation management solutions across the Bank.

As part of a major programme to enhance vulnerability management systems, you will drive technical leadership, team growth, and oversee the migration of core services to cloud infrastructure while integrating vendor scanning tooling and enhancing Kubernetes-based services.

What you will be doing

The role will report to the Global Head of Cybersecurity Assessment and Testing will be responsible for leading the Engineering function for CSAT.

You will be managing a global team of 80 engineers, designers and SME that are responsible for designing, building and operating the Scanning and Vulnerability Management solutions used across the Bank. This current programme of work includes a significant programme of rearchitecting and migration of our core services to cloud infrastructure whilst continuing to support the identification and management of security findings in code delivered by teams across the Bank.

You will be responsible for

• Team Leadership & Development:
  • Lead, mentor, and inspire a global team of 80+ engineers, designers and SMEs, ensuring their growth and development through coaching, feedback, and career advancement opportunities.
  • Foster a culture of excellence and innovation by recruiting and retaining top talent, ensuring high team morale, and driving continuous professional development.
  • Guide and support team members in technical decision-making, ensuring alignment with business objectives, and promoting collaboration across regions.
• Programme Management:
  • Drive the strategic direction of CSAT’s vulnerability management platform, leading efforts to streamline and simplify existing systems.
  • Collaborate with key stakeholders to ensure effective coordination of scanning tools, vulnerability remediation, and integration with the Azure data lake and Power BI for reporting.
  • Ensure that software developed to support vulnerability management and remediation processes are fully integrated into the Bank’s SDLC, DevOps, and DevSecOps practices.
• Interlock with Business services
  • The scanning functions CSAT offer are increasingly being incorporated into CICD pipelines across the Bank. Interlock with business stakeholders and the broader engineering teams and alignment of service level and performance criteria is critical to the success of this role.
  • Build Robust transparent Service management and incident management processes apply the customer lens when setting service and performance targets
• Technical Leadership & Solution Design:
  • Oversee the architecture, design, and implementation of scalable, cloud-based vulnerability management and scanning solutions, ensuring high performance, security, and resilience.
  • Lead the re-architecture and migration of core services to cloud infrastructure, enhancing the overall stability and efficiency of the systems.
  • Champion the integration of vendor scanning tools, as well as the development of new services on Kubernetes, to improve the overall vulnerability scanning and remediation management process.
• Collaboration with Cyber & Enterprise Architecture:
  • Build strong relationships with the broader Cybersecurity and Enterprise Architecture teams, ensuring alignment on technical vision, strategy, and design decisions.
  • Actively contribute to the Design Authority, representing CSAT’s needs and ensuring the solutions meet the organization’s security and operational requirements.
• Innovation & Continuous Improvement:
  • Drive continuous improvement in vulnerability management processes, focusing on automation, best practices, and process efficiency.
  • Identify and implement opportunities for automation to reduce manual effort and increase scalability and speed.

What you will bring to the role

• Experience & Expertise:
  • Experience in technology leadership roles, particularly in financial services, cybersecurity, or large-scale technology transformations.
  • Proven success in managing complex technical programmes and projects, particularly related to security scanning, vulnerability management, and cloud infrastructure.
  • Experience leading engineering teams in a highly regulated and security-conscious environment.
• Leadership & Communication:
  • Strong leadership and communication skills, with a proven ability to inspire, motivate, and lead teams to success.
  • Ability to influence stakeholders at all levels of the organization, drive consensus, and communicate complex technical concepts to non-technical audiences.
  • The drive and ambition to further develop and shape the existing engineering team and related services for the future

• Technical & Strategic Acumen:
  • A combination of technical expertise in cybersecurity, vulnerability management, cloud infrastructure, and software delivery (including SDLC, DevOps, and DevSecOps).
  • Strong understanding of Kubernetes, cloud platforms (AWS, Azure, Google Cloud), and security tools, with the ability to lead the development and integration of new technologies.
  • Ability to think strategically and align technical decisions with business goals.
• Process Improvement & Automation:
  • Proven track record of driving process improvements, best practices, and automation in a technology environment.
  • Expertise in managing complex vulnerability management programmes and implementing effective solutions to reduce risks and enhance overall security posture.

This role is based in Sheffield and some travel to other sites will be required

Being open to different points of view is important for our business and the communities we serve. At HSBC, we’re dedicated to creating diverse and inclusive workplaces - no matter their gender, ethnicity, disability, religion, sexual orientation, or age. We are committed to removing barriers and ensuring careers at HSBC are inclusive and accessible for everyone to be at their best. 

If you have a need that requires accommodations or changes during the recruitment process, please get in touch with our Recruitment Helpdesk:

Email:

Telephone: