Job Title: Technical Director - DevSecOps
Big Bank Funding. FinTech Thinking.
Our technology teams in the UK work closely with HSBC’s global businesses to help design and build digital services that allow our millions of customers around the world, to bank quickly, simply and securely. We also run and manage our IT infrastructure, data centres and core banking systems that power the world’s leading international bank.
Our multi-disciplined teams include: DevOps engineers, IT architects, front and back end developers, infrastructure specialists, cyber experts, as well as project and programme managers.
Role Description:
The Technical Director – DevSecOps plays a key role in supporting the transformation of Cyber services and technologies to align with the technology wide DevSecOps strategy. The role will be leading the analysis of Cyber services and technologies from a developer usability and automation perspective, and driving the definition of experiments and outcomes to improve the efficiency and speed of consuming the services and complying with the associated Cyber controls. The role reports to the Head of Secure Development Control Integration and supports the CSAT leadership team including the Group Head of Cybersecurity Assessment and Testing
Responsibilities:
· Driving the definition and delivery of the Cyber DevSecOps Technical Strategy. Researching Cyber technologies that are used in the SDLC and engaging technical SME’s and owners as necessary to agree improvements to those services.
· Creating and tracking initiatives that demonstrably reduce the total cost (as measured by engineering resource time) of using Cyber technical services and complying with Cyber technical controls.
· Identify and manage implementation of metrics (Key Performance Indicators, Key Control Indicators) to measure the business value of DevSecOps initiatives.
· Conduct deep technical analysis of the intersection between Cyber technologies and the use of those technologies in the SDLC, especially by developers. Produce reports and recommendations to optimise these.
· Assist in the creation of solutions and drive delivery of optimisations where necessary
· Suggest and provide SME governance support to approve security patterns / re-usable building blocks
· Represent Cyber DevSecOps requirements on multiple forums, especially the wider group DevSecOps strategy forums
· Providing key representation for and source of DevSecOps expertise across Cyber and Technology
· Provide thought leadership to the function and broader Cybersecurity and Technology organisation, driving transformational change and capability uplift across the bank.