About Standard Chartered
We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.
To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.
We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation.
This in turn helps us to provide better support to our broad client base.
The Role Responsibilities
As a Senior Manager you will join the Regulatory Attestations and Testing team, within which you will be :
Providing Expert Technical Cyber Advisory, Assessment and Assurance against industry standards - SWIFT and PCI DSS.
Execute assessments or assurance against controls that underpin an organisation’s Cyber / Information Security Management System including, but not limited to, the following domains : Data protection;
Information loss prevention;oInformation classification and handling; Endpoint and network security;Cryptography, PKI and centralized key management;
Application security;Security Information and Event Management (SIEM);Vulnerability management; andIdentity and access management;
Lead and execute assurance testing of organisation’s cyber security capability to ensure continuous effectiveness of design and operation.
Support sound security architecture and design.
Support and influence organisational alignment to security principles and best practise (i.e. ISO27001 and ISF Standards of Good Practice for Information Security).
Build effective relationships with leaders to facilitate :
The provision of timely, expert advice and assurance;
Partnerships with other functions to provide professional advice and assurance;
Grow trust with clients and regulators by delivering best practice cybersecurity solutions and protecting data and privacy;
Bachelor’s Degree in Information Technology, Computer Science, Cyber Security or other technology related qualifications or 6-10 years experience in cyber / IT security, technology audit or assurance, which must include some element of experience in a first line’ security or assurance team.
Fluency in English.
Preferred (but not essential)
Background in the information and cyber security domain within international financial services organisations.
Demonstrated ability to support a first line’ function in responding to external / regulatory audits.
Up to date with key regulation / developments in Information and Cyber Security Management Framework (including Technology Risk Management).
Experience in industry standard attestations (SWIFT Customer Security Controls Framework, PCI DSS compliance)
Qualifications (i.e. CISA, CISM, CRISC, CISSP, CCNA).
Risk & control, assurance or audit experience.
Ability to commit up to 10% business travel.
Excellent organisation and strong interpersonal skills with ability to manage multiple deadlines and to foster positive relationships with internal and external stakeholders.
Highly effective oral and written communication skills, with an ability to influence and to gain the respect of senior stakeholders and peers.
Ability to exercise good judgment and objectivity and to challenge the status quo.
Confident and courageous to raise / escalate issues in a pro-active, professional and timely manner.
Demonstrate understanding of and commitment to the Group’s core values.