DLP Analyst

If you’re looking for a career where you can make a real impression, join our Global Service Center (GSC)- HSBC and discover how valued you’ll be.

We are currently seeking an experienced professional to join our team in the role of

DLP Analyst

Role purpose

Global Cybersecurity Operations (GCO) provides a coordinated suite of “Information & Network Defence” services responsible for detecting and responding to information and cybersecurity threats to HSBC assets across the globe. This includes dedicated functions for the Monitoring of potential data loss events within the global estate as well as Information Protection Incident Management and Response. These two principal functions are supported by additional internal GCO capabilities in: Cyber Incident Monitoring & Response, Cyber Intelligence and Threat Analysis, Security Sciences and Client Engagement and Support Services.  Critical to the success of GCO is it close partnership with sister Cybersecurity teams, IT Infrastructure Delivery, and Global Business and Function clients. The overall GCO mission is placed under the purview of the Group Chief Information Security Officer (CISO).).

The Information Protection Monitoring and Response (IPM&R) will act as a strategic response function across the Group on a 24x7x365 basis where existing Information Security controls fail.  This function is charged with efficiently and effectively handling Data related incidents resulting from high severity events and confirmed incidents.  The objective is to ensure containment of the issue whilst maintaining close liaison with relevant internal and external parties ensuring an effective risk treatment plan is in place.  This mission is critical to the protection of HSBC customers, the HSBC brand, shareholder value as well as HSBC information and financial assets.

The Data Loss Prevention Analyst is accountable for:

Monitoring and protecting HSBC Internal, Restricted, and Highly Restricted data in relation to the global DLP monitoring & quarantine tool.

Following detailed processes and procedures in security incident response lifecycle and its phases.

Main activities: 

Supports the development of the Global Information Protection Team, engaging with colleagues across Cybersecurity, IT functions and the global businesses to drive and deliver sustainable threat monitoring and detection in line with accepted industry standards, best-practice and company strategies.

Supports business performance through clear thinking and the application of security focussed knowledge and experience whilst working under pressure in a time-critical, fast paced environment.

Delivers sustainable business outcomes:

Continually reviews DLP events and contribute to the refinement of the policies leading to a reduction of false positive events.

Supports information security incidents through to eradication and feedback lessons learned, in order to improve information protection resilience.

Identifies processes that can be automated and orchestrated to ensure maximum efficiency.

Identifies risks and vulnerabilities and making cost-effective, reasonable recommendations.

Drive to deliver the highest standards and outcomes, inspiring others to do the same.  Focus on medium and long term goals even when under pressure or facing uncertainty.  Manage expectations, results and impact of agreed outcomes, thinking ahead to identify and overcome potential issues.

Support of HSBC Global Businesses and Functions in driving a global up-lift in cyber-security and information protection awareness.

Requirements

Experience in monitoring and analysing DLP events on the DLP solution.

Experience in day-to-day operations of the Data Loss Prevention (DLP) process.

Hands-on experience of following detailed processes and procedures in security incident response lifecycle and its phases.

Ability to handle, resolve data security events minimizing the impact to the Bank, employees and customer.

Ability to understand and follow the incident response process through event escalations. 

Ability to learn the proper use and protection of data (required).

Ability to work through the DLP event queue and resolve tickets quickly.

Good level knowledge of GDPR requirements and regulations.

Strong knowledge of various data security tool & techniques DLP, CASB.

Knowledge of common operating systems and platforms.

Flexible work availability to support the DLP team’s responsibilities.

DLP security control maintenance

ITIL Foundation knowledge

Strong background in Security processes and incident management tools

You’ll achieve more when you join HSBC!

At HSBC we offer our colleagues a greater number of days so that they can fully enjoy their wedding, take care of the new member of the family, or grieve the loss of a family member. Our paid leave package is at the forefront in Mexico, now you have one more reason to be HSBC and proudly live a culture of well-being, balance and care

HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment. We encourage applications from all suitably qualified persons irrespective of, but not limited to, their gender or genetic information, sexual orientation, ethnicity, religion, social status, medical care leave requirements, political affiliation, people with disabilities, color, national origin, veteran status, etc., We consider all applications based on merit and suitability to the role.

Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website. 

***Issued by HSBC Electronic Data Processing (México) Private LTD***