{"version":"0.1","company":{"name":"YubHub","url":"https://yubhub.co","jobsUrl":"https://yubhub.co/jobs/skill/technical-risk-management-guidelines"},"x-facet":{"type":"skill","slug":"technical-risk-management-guidelines","display":"Technical Risk Management Guidelines","count":1},"x-feed-size-limit":100,"x-feed-sort":"enriched_at desc","x-feed-notice":"This feed contains at most 100 jobs (the most recently enriched). For the full corpus, use the paginated /stats/by-facet endpoint or /search.","x-generator":"yubhub-xml-generator","x-rights":"Free to redistribute with attribution: \"Data by YubHub (https://yubhub.co)\"","x-schema":"Each entry in `jobs` follows https://schema.org/JobPosting. YubHub-native raw fields carry `x-` prefix.","jobs":[{"@context":"https://schema.org","@type":"JobPosting","identifier":{"@type":"PropertyValue","name":"YubHub","value":"job_417bc97b-b9a"},"title":"Lead Business Analyst","description":"<p>Some careers have more impact than others. If you&#39;re looking for a career where you can make a real impression, join HSBC and discover how valued you&#39;ll be.</p>\n<p>We are currently seeking an experienced professional to join our team in the role of Lead Business Analyst.</p>\n<p>Key Responsibilities:</p>\n<ul>\n<li>Develop, maintain, and implement IT risk management policies, standards, and control frameworks (e.g., ISO27001, NIST, COBIT).</li>\n<li>Conduct regular risk assessments and Control Self-Assessments (CSA) for technology initiatives, infrastructure, and information assets.</li>\n<li>Establish, monitor, and update Key Risk Indicators (KRIs) and Key Controls to ensure operating effectiveness.</li>\n<li>Ensure IT practices comply with local regulations (e.g., HKMA, GDPR, PCI-DSS) and act as a focal point for internal and external audit examinations.</li>\n<li>Lead IT incident investigation, perform root cause analysis (RCA), and ensure prompt rectification of control weaknesses.</li>\n<li>Oversee information security risk management for vendor onboarding and off-boarding.</li>\n</ul>\n<p>Requirements:</p>\n<ul>\n<li>Bachelor&#39;s degree in Information Technology, Computer Science, Information Security, or a related field.</li>\n<li>5+ years of relevant experience in technology risk management, IT audit, or IT security within the banking/financial services industry.</li>\n<li>Professional certifications such as CISA, CISSP, CISM, CRISC, or similar are strongly preferred.</li>\n<li>Understanding of IT general controls (ITGC), cybersecurity best practices, data protection, and cloud security principles.</li>\n<li>Familiarity with local financial authority regulations and technical risk management guidelines.</li>\n</ul>\n<p>Core Skills:</p>\n<ul>\n<li>Analytical Thinking: Ability to identify and quantify complex technology risks.</li>\n<li>Communication: Excellent interpersonal skills to influence and collaborate with first-line business units and stakeholders.</li>\n<li>Problem-Solving: Proven ability to define and drive the implementation of remediation plans.</li>\n<li>Leadership: Ability to lead IT risk awareness initiatives and work under pressure.</li>\n</ul>\n<p>You&#39;ll achieve more when you join HSBC. HSBC is an equal opportunity employer committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and, opportunities to grow within an inclusive and diverse environment.</p>\n<p style=\"margin-top:24px;font-size:13px;color:#666;\">XML job scraping automation by <a href=\"https://yubhub.co\">YubHub</a></p>","url":"https://yubhub.co/jobs/job_417bc97b-b9a","directApply":true,"hiringOrganization":{"@type":"Organization","name":"HSBC","sameAs":"https://portal.careers.hsbc.com","logo":"https://logos.yubhub.co/portal.careers.hsbc.com.png"},"x-apply-url":"https://portal.careers.hsbc.com/careers/job/563774610677563","x-work-arrangement":"onsite","x-experience-level":"senior","x-job-type":"full-time","x-salary-range":null,"x-skills-required":["Analytical Thinking","Communication","Problem-Solving","Leadership","IT General Controls","Cybersecurity Best Practices","Data Protection","Cloud Security Principles","Local Financial Authority Regulations","Technical Risk Management Guidelines"],"x-skills-preferred":[],"datePosted":"2026-04-18T22:10:24.076Z","jobLocation":{"@type":"Place","address":{"@type":"PostalAddress","addressLocality":"Guangzhou"}},"employmentType":"FULL_TIME","occupationalCategory":"IT","industry":"Finance","skills":"Analytical Thinking, Communication, Problem-Solving, Leadership, IT General Controls, Cybersecurity Best Practices, Data Protection, Cloud Security Principles, Local Financial Authority Regulations, Technical Risk Management Guidelines"}]}