Job Summary

•     This role could be based in India and Malaysia. When you start the application process you will be presented with a drop down menu showing all countries, Please ensure that you select a country where the role is based.
•    We are seeking for a skilled Info security Analyst with hands-on experience of 3-5 years in the Cryptographic area like Encryption, Key management, and Tokenization technologies to join our security team. The ideal candidate will play a critical role in protecting sensitive data and ensuring compliance with security and regulatory standards.

Key Responsibilities

•    Design, implement, and manage data encryption solutions (at rest, in transit, and in use).
•    Manage and maintain Cryptographic key management systems (KMS/HSM) including key generation, rotation, storage, and revocation.
•    Hands-on experience with Thales CipherTrust Manager, Fortanix SDKMS, Protegrity including DSM configuration, tokenization vault setup and Transparent Encryption Agent management.
•    Experience with Protegrity for tokenization, data masking, and centralized data protection policy enforcement.
•    Good understanding and experience in handling Oracle TDE, BYOK, HYOK. KMIP key management services.
•    Implementing and support Tokenization solutions for sensitive data (PII, PCI, PHI) using Protegrity data security application.
•    Comfortable with Linux/Unix/Windows operation system administration and shell scripting.
•    Monitor, troubleshoot, and respond to encryption and key-related security incidents for encryption/decryption failures, and integration with applications (e.g. Oracle DB, IMB DB2, MSSQL DB, PGSQL DB, Elastic DB, vSAN/Netapp/PowerTech/Hitachi storages).
•    Handle security-related incidents, service requests, and changes using ITSM tools (ServiceNow), ensuring adherence to SLA’s and change management processes.
•    Work with application, project teams, BAU teams, infrastructure teams to integrate encryption and tokenization into systems and workflows.
•    Conduct security assessments, risk analysis, and gap analysis related to data protection and working with Governance for Audit remediations.
•    Support audits and provide evidence related to cryptographic controls.
•    Strong analytical, problem-solving, and communication skills.
•    Ability to work well autonomously and within a team environment & ability to work in weekends.
•    Ability to enhance the current process with Automation solutions to simplify manual activities within the team.
•    Excellent communication skills – oral, written and presentation; technical reporting writing across various types of target audiences.
•    Hands-on experience with Hardware Security Modules (HMS’s) is a plus.
•    CISSP Certification / Product Certifications & Python Scripting knowledge is a plus.

Strategy
•    Awareness and understanding of the Group’s business strategy and model appropriate to the role.
Business
•    Collaborate with Business/Functions/Technology to design and implement data security solutions across the Bank.
Processes
•    Ensure adherence to all internal and external policies, procedures and regulations. 
•    Responsible to follow and implement Cryptographic solutions across the bank with Security guidelines.
People & Talent
•    Collaborative skills and should be able to work with staff across locations and grades.
•    Team player
•    Upskill and unlearn
Risk Management
•    Ensure adherence with the highest standards of ethics and compliance with internal/external policies/regulations.
•    Adhere to both operational and technological risk framework guidelines, including reporting, and implementing risk reduction strategies.
Governance
•    Responsible for aligning to service guidelines.
•    Awareness and understanding of the regulatory framework, in which the Group operates, and the regulatory requirements and expectations relevant to the role.

Regulatory & Business Conduct
•    Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
•    Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
•    Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
Key stakeholders
•    Data protection head, Product Owners
•    Internal Project/BAU teams
•    Risk and Governance
•    Other relevant functions with Technology Services including Infrastructure Services (Application, Database & Platform teams)
Other Responsibilities
•    Embed Here for good and Group’s brand and values in Cyber Security (ICS). Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures.

Skills and Experience

•    Encryption / Key Management
•    Tokenization
•    ITSM
•    HSM

Qualifications

Education
•    A Bachelor’s Degree In Computer Science Engineering or A Related Field.
•    Minimum 3-5 Years Of Experience In The Encryption, Key Management, Tokenization.
Certifications
•    CISSP/Other Security or Industry Certifications (Preferred)
Languages
•    English

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.