Wholesale IT Practice RCO

Big Bank Funding. FinTech Thinking.

Our technology teams in the UK work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world’s leading international bank.

Our multi-disciplined teams include: DevOps engineers, IT architects, front and back end developers, infrastructure specialists, cyber experts, as well as project and programme managers.

We work in small, agile DevOps teams with colleagues around the world.

Following extensive investment across our Technology and Digital domains, we are currently seeking a number of experienced Wholesale IT Practice RCO to join HSBC Technology.

Brief overview of the business areas

Wholesale IT Practice RCO provides end-to-end oversight of technology risk and controls for WSIT Practices; Engineering, Cyber Security & Architecture directly supporting respective Practice CIO in meeting the risk & controls objectives for the function.

This is 1LOD role with responsibility to design and execute effective risk management discipline for Wholesale IT Practices, including ownership of relevant forums in line with Wholesale IT governance.

The role ensures understanding and application of IT FIMs and supporting standards across Service Line WSIT including oversight on treatment paths and consistent risk assessment for all non-compliance instances. This includes;

• partnership with WSIT control owners to achieve and maintain effective control environment,
• liaison with wider IT organisation on domain issues impacting WSIT risk & controls and
• interface to Wholesale Business on control impacts to the documented risk scenarios.

Lastly, this role ensures consistent engagement with internal and external audit on areas impacting the Practices.

The role will interact with Head of Risk and Control for WSIT, Service Line and Regional RCOs to ensure adherence to WSIT and CCO governance process. This will include support in Wholesale Business facing conversations and partnership with CCO team in discussions with 2LOD to achieve consistent application of framework/controls library for Wholesale IT.

What you will be doing;

• Act as trusted advisor for Wholesale Technology Practices on how to properly manage their operational risk and all related items; Risk Assessments, Control Environment and Issues Management.
• Managing on going Control Effectiveness via Control KCI data across Wholesale IT
• Manage the provision of specialist risk and control knowledge and insights
• Being the key contributor to support the Practice CIO to embed Non-Financial Risk Management. Includes educating on Group Policy & Frameworks to embed a culture of control risk management and conduct.
• Driving identification and managing read across activities by sharing issues impacting WSIT resilience risk and being a key contributor to incident review and strategic resolution to maintain operational resilience of WSIT IT services to the business and customers.
• Lead the delivery of risk & control projects and programmes for the Practices
• Assist service owners in responding appropriately and effectively to firm-wide risk, cyber and corporate control initiatives
• Partner with service owners and Practice head to identify and assess controls, determine mitigating actions and remediation activities, and understand the overall risk profile
• Partner with regional RCOs to ensure regional requirements are taken into account