CAIA's Career Center is an easy-to-use, comprehensive resource connecting job seekers with employers in the growing AI field. Use your knowledge and credibility to advance your career or build a talented team for your organization. Opportunities targeted to CAIA Charterholders are prioritized.
In order to search for jobs specifically for CAIA Charterholders or those pursuing the CAIA Charter please enter “CAIA” in the search panel.
This will enable you to search for CAIA specific roles globally.
About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.
To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.
We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.
The Role Responsibilities
We are establishing a capability to successfully implement and embed the new Information and Cyber Security (ICS) into CCIB-Digital Channels and Digital Analytics (DCDA). DCDA constitutes of 2 key areas Digital Channels and Data Analytics. The role will report to the Head ICS Risk, TB within the ICS team under banks Chief Operating Officers (COO) . The role will focus on Digital Analytics product and partner with product development IT, operations, COO and other risk departments of the bank.
The Information and Cyber Security (ICS) team is responsible to advise, assess and recommend protection to sustain the risk manifesting from ICS. The Business ICS Risk reporting Specialist will support the Head ICS Risk to develop a process to map the DCDA to systems and data flow, drive the assessment, develop risk treatment plans and drive adoption across Digital Channels. This role will require hands on approach to understand, embed and guide the business lines to maximise risk reduction and capability improvement, while meeting compliance and legal obligations, and minimis ing client impact . The role will require to have end-to-e nd view of all ICS activities with regular risk assessment, tracking, follow up and reporting at the relevant forums.
The Business ICS Risk Manager will provide process and strong security risk framework knowledge to mobilise effort and commitment. They will maintain highly constructive and effective relationships with the business stakeholder plus also across other domains linked to this initiative.
This role is aligned to business and will need to work closely with the designated technology delivery teams and business operations to holistically address ICS risk. The Business ICS Risk specialist is responsible for:
Develop and execute a robust and efficient plan for overall risk ICS remediation. The plan will incorporate risk assessment and implementation of controls as guided by the ICS RTF and tailored to the relevant areas.
Supporting the Head ICS Risk in the implementation of the ICS Risk framework including working with stakeholders to identify, assess and rate the information assets, build out the risk profile per the framework, initiate risk assessments and put together treatment plans
Use qualitative and quantitative data sources to validate Key Control Domains (KCD) and associated controls, accelerate risk assessment process, validate business risk profile and develop action plans to remediate to bring ICS risk back into appetite.
Follow up on identified thematic cyber issues, develop processes to address issues from re-occurrence and ensure cyber hygiene across the whole portfolio
Provide regular status updates including progress, top risks and issues to the respective business forums for the relevant domains. Track RAG status, key milestones, risks, dependencies and issues
Interface with the Regional and Country business heads to assist with sharing of risk profiles, advising on cyber risk issues and addressing areas of concern
Interface into Technology forums to ensure security technologies are operating with input from business and be actively involved in the roadmap of these technologies by providing business input
Assist with other cyber activities underway
Interface with Business, IT and Operation risk teams to assess the control gaps of the channels and analytics process.
As SME provide expertise on controls, principles and industry best practices, to protect the channels and analytics systems and process.
Track and assist by co-ordinating with control owners and the IT to adopt the controls.
Ensure effective prioritisation and application of industry best practice and ICS business risk
Identify changes to plan required in terms of additional components, reprioritisation to anticipate and respond to changes
Learn from the recent regional and global cyber events and build into strategy to address current and emerging risks
Establish and maintain working groups across domains to progress the framework roll out.
Escalate appropriately to ensure Head ICS Risk is briefed and necessary decisions are made in a timely manner
Support the Head ICS Risk on running periodic working groups and ensuring proper rollout of the ICS remediation plan.
Assist with preparing risk papers going to various risk committees within the business lines
Manage actions coming out of various risk and compliance forums
Regulatory and Business Conduct
Display exemplary conduct and live by the Group's Values, Valued Behaviours, and Code of Conduct
Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across the Bank.
Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters.
Head ICS Risk, TB
Digital Channel Product Technology heads
ICS RTF Implementation Programme - Accountable Executive and teams
Chief Information Security Risk Office and teams
Security Technology Services and teams
Keep abreast of any new developments in the ICS risk frameworks globally, participate in industry and external discussions
Our Ideal Candidate
Hands on experience in one or more key technology domains - Big Data Protection, Cloud Security, API Security, Internet Banking, Mobile Banking etc.
Extensive experience within information security or risk function, with assessment, treatment plan and governance, ideally gained in the financial industry
Experience in analysis, risk assessment and remediation of Segregation of Duties, Toxic Access Management, Multi-factor Authentication, PKI, Key Management.
Knowledge of Third Party Risk Assessment, SWIFT CSF and payment system risks.
Experience in deployment and successful roll-out of risk frameworks across businesses with global footprint
Experience in Cyber Crisis management, Response and Recovery activities etc.
Excellent organisation and leadership skills with ability to manage multiple deadlines and effectively prioritise
Ability to work independently to effect change across the business lines and manage multiple deliverables simultaneously
Ability to execute on strategy with plan to influence senior stakeholders and decision makers to adopt cyber capabilities across their business lines
Proven ability to deliver complex, global, pan-bank initiatives by driving collaboration and participation across diverse set of stakeholders
Strong knowledge of the Channels and/or Analytics usage and their relevant policies, procedures, and processes
Ability to foster positive relationships with internal and external stakeholders at appropriate level ensuring open cooperative environment
Apply now to join the Bank for those with big career ambitions.
To view information on our benefits including our flexible working please visit our career pages .