JOB SUMMARY

•    Responsibilities relating to identifying, assessing, monitoring, controlling and mitigating Technology risks to the Country and Group, as well as an awareness and understanding of the main risks facing the Group and the role the individual plays in managing them. Need to ensure Country Technology Teams do comply all required processes as defined in Technology Process Universe. Identify all the gaps in the real practices, assess the risks and provide the risk mitigation. Monitor and control all required compliances in Technology team and also perform the risk assessment according to KCSAs required.

•    Responsibilities relating to the direction, planning, structure, frameworks (e.g. processes and policies) and oversight. Need to understand the ERMF (Enterprise Risk Management Framework), Risk Types, Sub-Risk Types and related processes and policies. Able to share the knowledge and educate the teams about all Group compliances and local regulations.

•    Manage and update the information in the risk tracking systems. To ensure all monitoring and making the status records up-to-date. Need to ensure all the data of all related systems are synchronized and accurate.

[Provide Job Summary to give an overview of the role. It is primarily used when advertising the role internally and externally during hiring]

RESPONSIBILITIES

Processes
•    To recommend and implement actions and solutions to mitigate operational risks and enhance compliance at business unit level.
•    To challenge assessment and treatment of Technology activities where operational risk exposure is managed with control requirements or within risk appetite.
•    Implement control within the business unit to meet all regulatory and internal requirement.

Risk Management
•    Be the source of reference within the Business Unit in facilitating and promoting the understanding of
Operational Risk (OR) and Compliance requirement
•    Support the implementation of OR initiatives for the Business Unit 
•    Proactively communicate with the Business Unit Head on Operation risk issues, Escalate significant events to the Business Unit Head as appropriate.
•    Coordinate and report the operational risk and loss reporting of the unit to the Business Unit Head. Ensure data accuracy and completeness.
•    Ensure effectiveness of controls for compliance monitoring and risk management.
•    Undertake and/or coordinate periodic business monitoring (self-assessment) activities within the Business unit and escalate findings and or breaches to Business Unit Head when they occur.
•    Ensure risks and issues identified are resolved in an appropriate and timely manner.
•    Assist Business Unit Head in the implementation of OR framework or other relevant OR initiatives.
•    Identify gaps and arrange training on compliance and OR for staffs (if any)
•    Conduct Technology Risk Key Control Self-Assessment.
•    Monitor Key Risk indicator and report status of Risk Treatment plan.

Governance
•    Assist Business Unit head in coordination, driving and directing effective compliance and operational risk management at the business unit level through process of risk identification, assessment and measurement, acceptance and monitoring to reduce gross operational risk exposure to acceptable levels within the risk appetite.
•    Periodic monitoring activities and timely resolution of risk issues.
•    Implement effective assessment and acceptance governance processes, tools and techniques including reporting and monitoring of MI to ensure effective governance over risk management activities.
•    Influence the development of an operation risk culture which is forward looking, risk based and customer focus

Regulatory & Business Conduct

•    Take responsibility  to work and correspond with local regulators.
•    Take responsibility to follow and study regulatory announcements on IT and IT-risk including gap analysis performing, cascading and regular reviews.
•    Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
•    Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
•    Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key Stakeholders

Internal
•    Country Head, Operational Technology and Cybersecurity Risk (OTCR), Business Risk Manager (BRMs), Technology and Operations staff and responsible persons undertaking business monitoring in various units.
•    Managers in Group Business Operational Risk
•    Legal 
•    Compliance
•    Internal Auditors
•    System Delivery & Technology personal (Local & Group)

External
•    Regulators (per assigned)
•    External Auditors (per assigned)

Other Responsibilities
Embed Here for good and Group’s brand and values in Thailand Technology & Operations; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; Multiple functions (double hats)

Qualification
•    Education     Bachelor’s degree in Computer Science, or related field.
•    Training     IT Security Professional or IT Risk Management certification
•    Certifications     IT Security Professional or IT Risk Management certification
•    Languages     Thai, English

Role Specific Technical Competencies
•    Technology Risk Management
•    Technology Infrastructure and Network Management
•    Software Development Life Cycle Management
•    Cyber Security

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.