CAIA's Career Center is an easy-to-use, comprehensive resource connecting job seekers with employers in the growing AI field. Use your knowledge and credibility to advance your career or build a talented team for your organization. Opportunities targeted to CAIA Charterholders are prioritized.
In order to search for jobs specifically for CAIA Charterholders or those pursuing the CAIA Charter please enter “CAIA” in the search panel.
This will enable you to search for CAIA specific roles globally.
About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.
To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.
We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.
The Role Responsibilities
The Director will play an essential role in the Group's Data Protection Office (DPO)/CFCC Privacy Team, developing and implementing the Group's approach to managing banking secrecy risks.
Provide advice on the interpretation, application and implementation of laws and regulations pertaining to privacy and banking secrecy;
Support both the GDPO and deputy GDPO with the implementation of the Group's Data Protection strategy, particularly as it pertains to banking secrecy;
Provide expert guidance on banking secrecy risk identification and management.
Provide subject matter expertise (SME) guidance to Businesses and Functions, and colleagues in CFCC on banking secrecy risks and other applicable legislation across the Group's footprint;
Monitor relevant legislative and regulatory changes and advise on associated impact to the Group's business and operational functions;
Actively engage in and contribute to the relevant workstreams of the Privacy / Data Transformation Programme.
Develop and implement a robust plan for managing banking secrecy related risks;
Review, assess and advise on Privacy Impact Assessments (PIAs);
Review and assess Records of Processing Activities (RoPAs);
Lead global initiatives as requested by the GDPO;
Develop and deliver training where required;
Draft mandatory documentation including multiple Standards and guidelines and centrally maintain a library of mandatory documentation.
Draft and maintain additional, non-mandatory documentation such as FAQs, Privacy related communications including bridge page content.
People and Talent
P rovide effective 2nd line SME support to the organisation, particularly across ASA and GCNA;
Champion good privacy practice and standards across the Group;
Develop and provide training to colleagues at all levels to ensure data protection principles and practices are adopted;
Collaborate with Businesses and Functions to foster an environment that drives appropriate privacy risk control behaviour, including early anticipation, identification and mitigation of privacy risk, escalating issues in line with the Group's Operational Risk Framework.
Oversee, monitor and challenge implementation of controls to mitigate risks;
Ensure data protection controls are regularly tested in accordance with the controls testing plan;
Lead risk assessments to identify gaps and deficiencies, and help determine remedial action to correct or mitigate risk;
Provide expert guidance and support on banking secrecy risk identification and management;
Ensure proactive and timely identification, assessment, advice and dissemination of evolving legal and regulatory changes / practices and associated risks on client privacy issues across the Group;
Assist in agreeing the scope of audits and Compliance Monitoring Reviews;
Support with firm-wide internal audits as well as audits of third parties;
Integrate privacy and banking secrecy requirements into the third-party vendor framework to ensure data protection and banking secrecy risks are appropriately integrated.
Draft committee papers pertaining to privacy and banking secrecy;
Establish and maintain strong relationships with key stakeholders at all levels, while independently performing own duties;
Work with Businesses and Functions, and colleagues in CFCC, to identify and develop innovative solutions to personal data processing related matters.
Regulatory & Business Conduct
Display exemplary conduct and live by the Group's Values and Code of Conduct.
Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across the Group. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
Support the CFCC Privacy Team to achieve the outcomes set out in the Bank's Conduct Principles: Fair Outcomes for Clients; Effective Financial Markets; Financial Crime Compliance; The Right Environment.
Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
GDPO and the CFCC Privacy Team
SGCC Leadership team
CFCC Advisory Leadership team
Regional CFCC Leadership team
Head, Data Management & Privacy, Operations and team
Data Management & Privacy, Operations and team
Group Internal Audit
Connected Policy owners, including CISRO and CDO
Legal (COO's team)
Embed Here for good and Group's brand and demonstrate the Valued Behaviours in SGCC.
Perform other responsibilities as assigned.
Our Ideal Candidate
CIPP certification or other equivalent industry recognised qualification
A minimum of 5 years' experience as a Privacy Practitioner advising on a wide range of privacy compliance related matters; managing risks and developing pragmatic solutions to problems, including employee privacy related issues
Technical knowledge of privacy laws and regulations in the UK, Singapore and Hong Kong as a minimum
Ability to translate UK ICO recommendations, case-law and any other policy developments into workable internal guidelines and documentation
Practical understanding of financial services
Ability to understand and map a process and to determine how privacy obligations impact a process
Ability to draft guidance and translate complex, regulatory concepts into practical, easy to understand recommendations that can easily be implemented by a variety of stakeholders
Experience of implementing Privacy Impact Assessments
Experience of implementing Privacy by Design
Practical knowledge of key information security principles
Proven ability to identify and articulate privacy requirements, risks and issues, and to make pragmatic decisions / recommendations
Ability to understand business drivers and risk appetite and to align privacy compliance accordingly
Ability to pro-actively drive change, while being able to anticipate privacy challenges.
Proven ability to incorporate privacy considerations into innovative solutions so that the business can continue to function and evolve whilst ensuring the rights and freedoms of individuals are being met
Apply now to join the Bank for those with big career ambitions.
To view information on our benefits including our flexible working please visit our career pages . We welcome conversations on flexible working.