Job Summary

ICS Protect is a critical function within Standard Chartered Bank.  The ICS Protect team is instrumental in ensuring the Banks ability to soundly meet its commitments to multiple internal and external stakeholders as well as to maintain an appropriate risk profile for the business we conduct.  Furthermore, the ICS Protect team plays a significant part in the Bank’s ‘Here for Good’ vision and brand promise. 

This role will be part of the Security Vulnerability Lifecycle Management function and is responsible for driving remediation governance of security vulnerabilities identified that could potentially impacting the Bank's infrastructure, applications or products.

Key Responsibilities

Risk Management
•    Consolidate remediation progress on application and infrastructure vulnerabilities into one risk focused view to help guide senior management risk and remediation decisions

Regulatory & Business Conduct
•    Display exemplary conduct and live by the Group’s Values and Code of Conduct.
•    Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
•    Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key stakeholders
•    Senior Management, ICS Cyber Security
•    Global Head, Vulnerability Management Infrastructure Services
•    Head, Security Vulnerability Lifecycle Management
•    Services Domain Heads within Cyber Security / Security Technology Services
•    Other relevant functions with Technology Services (Infrastructure Services, Networks etc.) and Operations Risk
•    CISO
•    OTCR

Skills and Experience

The ideal candidate will have a deep understanding of vulnerability management, threat assessment, remediation processes and reporting capabilities. 

•    Strong knowledge and subject matter expertise in multiple areas within Information Security.
•    Understanding of relevant security standards and regulations such as PCI DSS, NIST Cyber Security Framework
•    Knowledge on threat and vulnerability landscape including malware, emerging threats, and vulnerability exploitation/ attacks
•    Knowledge in cloud security and DevSecOps
•    Strong analytical and problem solving abilities to identify and resolve complex vulnerability issues
•    Ability to work in a fast-paced team environment
•    Excellent oral/written communication skills for articulating thoughts clearly with stakeholders ranging from engineers to senior business management
•    Strong interpersonal skills with a demonstrated ability to gain the confidence and respect of senior level executives
•    Familiarity with industry standard vulnerability management tools and technologies, including vulnerability scanners, threat intelligence platforms and patch management systems
•    Knowledge on SQL scripting

Qualifications

Education     Bachelor’s Degree in Engineering, Computer Science/Information Technology or its equivalent
Training     3-5 years of hands-on working knowledge in security technologies and operational experience in a global environment, preferably in Banking and Financial services sector.    
Certifications     Relevant Industry certifications will be a plus e.g. CISSP, CISM

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.