Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead risk management and control assessments in cybersecurity for a global bank.
- Company: HSBC is a leading global bank focused on risk management and operational excellence.
- Benefits: Enjoy hybrid work options, inclusive culture, and opportunities for professional growth.
- Why this job: Join a dynamic team shaping the future of cybersecurity with impactful projects.
- Qualifications: Experience in cybersecurity risk management and relevant certifications like CISA or CISSP preferred.
- Other info: Diversity and inclusion are core values; all backgrounds are encouraged to apply.
The predicted salary is between 43200 - 72000 £ per year.
The GCIO Chief Control Office (CCO) team plays an important role in enabling the bank to operate within its risk appetite by ensuring efficient and effective risk and control management. We do this by providing operational risk and control expertise, specialist technical knowledge and a deep understanding of the businesses and functions we serve.
Key activities include:
- Implementation and oversight of the Group’s Risk Management Framework
- Ongoing and targeted controls assessments
- Implementing and maintaining robust risk governance
- Championing a proactive risk culture
GCIO CCO works closely with partners across all lines of defence and is responsible for maintaining positive relationships with our regulators and external partners.
In this role, duties will include:
- Acting as a trusted advisor for senior management by partnering to manage their operational risk i.e., risk assessments, control environment, issues management.
- Promoting accountable risk and control decision-making based on quality data and analysis, actively challenging poor, inefficient or excessive controls, related tasks and behaviours.
- Providing specialist risk and control knowledge and insights, leading efforts to continuously improve the control environment and monitoring of risk, including behaviours.
- Advising and designing process and controls in a commercially viable, practical and effective manner.
- Identifying trends to anticipate future developments in the risk and control environment.
- Influencing and shaping the development and implementation of future-fit risk management and regulatory frameworks.
- Providing Senior Management with updates on any relevant changes to policy or projects related to operational risk that have an impact on their area of responsibility.
To be successful in this role you should have the following skills:
- Technical: One or more of the control capabilities in the domain (Vulnerability Management, Penetration Testing and Red Teaming, Application Security, Threat Modelling)
- Management of operational risk, non-financial risk and/or technology and information security risk
- Management of diverse risk types
- Identifying, defining and solving problems that have impact on your work or the wider business
- Process improvement and delivery
- Stakeholder Management
- Active industry recognized certificates will be an asset, e.g. CISA, CISSP, CRISC, CCSP
Behavioural Skills:
- Business partnering
- Customer Orientated
- Outcome Orientated
Cognitive Skills:
- Divided attention
- Auditory processing
- Critical thinking
This role is based in Sheffield on a hybrid basis.
Being open to different points of view is important for our business and the communities we serve. At HSBC, we’re dedicated to creating diverse and inclusive workplaces - no matter their gender, ethnicity, disability, religion, sexual orientation, or age. We are committed to removing barriers and ensuring careers at HSBC are inclusive and accessible for everyone to be at their best.
We take pride in being a Disability Confident Leader and will offer an interview to people with disabilities, long term conditions or neurodivergent candidates who meet the minimum criteria for the role.
If you have a need that requires accommodations or changes during the recruitment process, please get in touch with our Recruitment Helpdesk.
Senior Manager, Cyber Security Assessment & Testing CCO (Basé à Sheffield) employer: Golden Bees
Contact Detail:
Golden Bees Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Senior Manager, Cyber Security Assessment & Testing CCO (Basé à Sheffield)
✨Tip Number 1
Familiarise yourself with the latest trends in Cyber Security, especially in Vulnerability Management and Penetration Testing. This will not only help you understand the role better but also allow you to engage in meaningful conversations during interviews.
✨Tip Number 2
Network with professionals in the Cyber Security field, particularly those who work in risk management. Attend industry events or webinars to build connections that could provide insights or even referrals for the position.
✨Tip Number 3
Prepare to discuss your experience in managing operational risks and how you've successfully implemented risk frameworks in previous roles. Be ready to share specific examples that demonstrate your problem-solving skills and ability to influence stakeholders.
✨Tip Number 4
Research HSBC's current initiatives in Cyber Security and their approach to risk management. Tailoring your discussions around their specific goals and challenges can show your genuine interest and alignment with their mission.
We think you need these skills to ace Senior Manager, Cyber Security Assessment & Testing CCO (Basé à Sheffield)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in cyber security, risk management, and control assessment. Use keywords from the job description to demonstrate that you meet the specific requirements of the Senior Manager role.
Craft a Compelling Cover Letter: In your cover letter, explain why you're passionate about cyber security and how your skills align with the responsibilities outlined in the job description. Mention any relevant certifications like CISA or CISSP to strengthen your application.
Showcase Leadership Experience: Since this is a senior position, emphasise your leadership experience in managing teams or projects related to operational risk and control. Provide examples of how you've influenced decision-making and improved processes in previous roles.
Highlight Collaboration Skills: The role requires working closely with various stakeholders. Illustrate your ability to collaborate across teams and regions by sharing specific instances where you've successfully partnered with others to achieve common goals.
How to prepare for a job interview at Golden Bees
✨Understand the Role and Responsibilities
Make sure you have a clear understanding of the Senior Manager, Cyber Security Assessment & Testing role. Familiarise yourself with the key activities mentioned in the job description, such as risk assessments and control management, so you can discuss how your experience aligns with these responsibilities.
✨Showcase Your Technical Expertise
Be prepared to discuss your knowledge in areas like Vulnerability Management, Penetration Testing, and Threat Modelling. Highlight any relevant certifications you hold, such as CISA or CISSP, and provide examples of how you've applied this expertise in previous roles.
✨Demonstrate Stakeholder Management Skills
Since this role involves working closely with senior management and various stakeholders, be ready to share examples of how you've successfully managed relationships in the past. Discuss your approach to business partnering and how you ensure effective communication and collaboration.
✨Prepare for Behavioural Questions
Expect questions that assess your cognitive and behavioural skills, such as critical thinking and customer orientation. Use the STAR method (Situation, Task, Action, Result) to structure your responses, showcasing how you've tackled challenges and contributed to positive outcomes in your previous roles.
