Principal Enterprise Architect (Identity and Access Management)

at  HSBC

Job description

BIG BANK FUNDING. FINTECH THINKING.

Join a digital-first bank that’s powered by people. Our technology team builds innovative digital solutions rapidly and at scale to deliver the next generation of banking services for our customers around the world. Help shape the future of digital-first banking for our customers.
We are currently seeking an experienced professional to join our team in the role of Principal Enterprise Architect for Identity and Access Management.
You’ll partner with management across Technology to define the IAM strategy that will define the future technology state to enable our business strategy. You’ll manage the IAM Architects to deliver the strategy, fostering an inclusive culture of collaboration, innovation, and excellence; whilst improving the customer experience.
You’ll be responsible and accountable for directing the operation of the global architecture practice for IAM, including design choices, ensuring they are aligned with group standards, and business strategy; meeting business objectives; and satisfy all relevant regulatory and operational risk controls.
You’ll manage the Enterprise IAM (EIAM) and Customer IAM (CIAM) foundational areas, including Authentication (MFA, Passwordless), Authorization, Privileged Access Management (PAM), identity and access governance, identity federation, secrets management, role based access etc.

Requirements

• Demonstrate knowledge of financial services, with a particular focus on the implications of IAM for HSBC’s three global businesses and supporting functions. Able to translate business needs into appropriate technology solutions.
• Extensive experience in senior Architecture / Cybersecurity leadership roles within large scale, complex and international organisations.
• Knowledge of the external environment and drivers - regulatory, political, competitor and market.
• Experience of managing within a complex matrix environment, globally across cultures.
• Excellent people, communication and leadership skills and ability to establish effective collaborative relations with senior stakeholders across multiple functions.
• Proven track record driving complex enterprise-wide programmes critical to business performance.
• Experience in planning and managing significant expenditure in a complex organisation, with deep financial and commercial awareness.
• Have an Architecture, Cybersecurity and system engineering background; and the ability to compare and contrast different solutions to meet a business requirement.
• Provide technical thought leadership in evaluation of new technologies to meet business requirements and influence key stakeholders through to adoption.
• Strong analytical and troubleshooting skills – desire to solve complex problems at scale. Provide expert knowledge & expertise in design of the following key capabilities:
• Identity and Credential Management
• Authentication
• AuthZ / Access Control
• Accounting
• User, Behaviour and Biometrics Analytics
• Fraud Detection & Prevention
• Access Governance
• Secrets Management
• Privileged Access Management
• IAM Tooling, including Privilege Access Management Monitoring
• Deep knowledge across application, infrastructure, and data technologies enabling business outcomes.
• Expertise and knowledge of technology trends and how these can be leveraged by HSBC.
• Significant expertise in: APIs; Cloud computing (GCP and AWS); Event Streaming (Kafka); AI / Machine Learning / GenAI; Platform Engineering; and DevSecOps.
• Hands-on expertise of multiple coding languages e.g., Java, Python, Rust; & software development frameworks.
• Strong strategic thinking and problem-solving abilities with a track record of driving innovative technical solutions and continuous improvement.
• Experience of applying modern architecture: APIs, micro services, data foundation, advanced analytics / Machine Learning and directing Cloud provider capabilities.
• Recognised expertise through Industry qualifications such as CISSP, CISM, ISSAP, CCSP, etc., contributions in the scientific community, speaking experience, or contributions to the open source community

Impact on the Business/Function

• Define, maintain, and own the IAM architecture strategy and roadmap, incorporating ZeroTrust as appropriate, ensuring alignment to other HSBC technology strategies and providing Design Authority sponsorship for major IAM initiatives across the Group.
• Provide assurance of the solutions designs produced within Cybersecurity and support the Engineering teams in the production of execution plans in executing the Strategies.
• Delivering strategic thought-leadership to the Cybersecurity Architecture Practice as well as across the Architecture and Cybersecurity functions through the production of architecture strategies for IAM and associated architecture artefacts (e.g. principles, standards, patterns and roadmaps) aligned to organisational needs and priorities.
• Introduce new practices, processes, operating model, techniques, products, services, technologies, and standards where needed against identified use cases, via the appropriate governance bodies and in collaboration with the IAM Security Engineering function.

Customers / Stakeholders

• Customer focused (primarily internal but with indirect external impacts): creates a customer-centric culture; sponsors and drives the development of a competitive, commercially attractive, and sustainable customer proposition. Builds sustainable customer strategies based on customer insight and regional markets.
• Builds and maintains strategic stakeholder relationships at all levels: across Global Businesses and Technology; and key strategic partnerships with third parties.

Leadership & Teamwork

• Enable the Cybersecurity Architecture organization to achieve business outcomes by empowering developers with world-class technology and practices. Adopt open source / inner sourcing for reuse, rendering standards and controls as code. Own the design authority for technology outcomes.
• Co-manage the Cybersecurity Architecture hiring strategy to ensure we are attracting, mentoring, and growing diverse high-performing architects and architectural talent.
• Create an architecture culture that fosters experimentation and learning; but also focuses on financial discipline, delivering on commitments, reducing of technical debt and appropriate risk management.

Operational Effectiveness & Control

• Ensure adherence to, and manage effectively against HSBC’s Operational Risk Management Framework, HSBC’s Controls, Functional Instruction Manual (FIM) and external regulatory requirements.
• Ensures Architecture adheres to ethical behaviour / HSBC’s values.
• Build key relationships with Risk stewards, 2nd and 3rd line of defense (inc. Audit, Compliance and Regulatory Affairs) to ensure close and continuous management of strategic transformation.
• Manage architecture reviews through the appropriate governance mechanisms ensuring peer review of all activities.

Requirements

• Demonstrate knowledge of financial services, with a particular focus on the implications of IAM for HSBC’s three global businesses and supporting functions. Able to translate business needs into appropriate technology solutions.
• Extensive experience in senior Architecture / Cybersecurity leadership roles within large scale, complex and international organisations.
• Knowledge of the external environment and drivers - regulatory, political, competitor and market.
• Experience of managing within a complex matrix environment, globally across cultures.
• Excellent people, communication and leadership skills and ability to establish effective collaborative relations with senior stakeholders across multiple functions.
• Proven track record driving complex enterprise-wide programmes critical to business performance.
• Experience in planning and managing significant expenditure in a complex organisation, with deep financial and commercial awareness.
• Have an Architecture, Cybersecurity and system engineering background; and the ability to compare and contrast different solutions to meet a business requirement.
• Provide technical thought leadership in evaluation of new technologies to meet business requirements and influence key stakeholders through to adoption.
• Strong analytical and troubleshooting skills – desire to solve complex problems at scale. Provide expert knowledge & expertise in design of the following key capabilities:
• Identity and Credential Management
• Authentication
• AuthZ / Access Control
• Accounting
• User, Behaviour and Biometrics Analytics
• Fraud Detection & Prevention
• Access Governance
• Secrets Management
• Privileged Access Management
• IAM Tooling, including Privilege Access Management Monitoring
• Deep knowledge across application, infrastructure, and data technologies enabling business outcomes.
• Expertise and knowledge of technology trends and how these can be leveraged by HSBC.
• Significant expertise in: APIs; Cloud computing (GCP and AWS); Event Streaming (Kafka); AI / Machine Learning / GenAI; Platform Engineering; and DevSecOps.
• Hands-on expertise of multiple coding languages e.g., Java, Python, Rust; & software development frameworks.
• Strong strategic thinking and problem-solving abilities with a track record of driving innovative technical solutions and continuous improvement.
• Experience of applying modern architecture: APIs, micro services, data foundation, advanced analytics / Machine Learning and directing Cloud provider capabilities.
• Recognised expertise through Industry qualifications such as CISSP, CISM, ISSAP, CCSP, etc., contributions in the scientific community, speaking experience, or contributions to the open source community.

This role is based in London / Hybrid.