Job Summary

Cyber Security Incident Response Operations:
•    Lead and coordinate the response to complex and critical cyber security incidents, including identification, containment, eradication, recovery, and post-incident analysis.
•    Act as the primary point of contact for major/critical incidents, ensuring timely and effective response and resolution.
•    Coordinate with cross-functional teams to manage the impact of major incidents on business operations.
•    Establish and lead war room activities during major incidents, ensuring clear communication and efficient incident management.
•    Prepare and deliver incident reports, including root cause analysis and recommendations for future prevention.
•    Provide guidance and mentorship to junior incident responders and other team members.
•    Handle escalated security incident investigation and response from Cyber Threat Response Tier-1.
•    Oversight on security incident response activities performed by Cyber Threat Response Tier-1.
•    Be responsible for all stages of the incident response process; detection, collection, analysis, mitigation, and remediation - to appropriately respond to cyber security incidents. 
•    Proactive service improvements of monitoring & response playbooks to include lessons learnt from past incidents and perform deep-dive analysis on identified/known Tools, Techniques and Procedures (TTPs) of the cyber attacks.
•    Keep abreast on latest cyber security threats and vulnerabilities, in line with the changing Threat Landscape, Regulatory and Compliance requirements.
•    Validates and evergreen the cyber security incident response plans, playbooks and other relevant Standard Operating Procedures within Cyber Defence Centre.
•    Work closely with Cyber Defence Alliance (CDA) and Collective Intelligence & Command Centre (CIC) for collective response and situational awareness.
•    Cross collaboration and participate in joint investigations with Fraud, FCC/i3 and Property
•    Participate in the cyber stress testing and Table Top Exercises (TTXs)

Key Responsibilities

Regulatory & Business Conduct:
•    Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
•    Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
•    Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters.

Key Stakeholders:
•    Security Technology Services – Service Managers (Heads), Product Managers, Domain Architects
•    Technology Services – Service Managers (Heads), Product Managers
•    Country and Functional CISO, Group Operational Risk & other Risk and Control Teams

Qualifications

•    Education: Bachelor’s Degree

Skills and Experience

Preferred Skills:
•    Experience with incidents related to advanced persistent threats (APT) and nation-state actors .
•    Familiarity with regulatory requirements and compliance standards relevant to the financial industry.
•    Knowledge of scripting and automation tools to enhance incident response processes.

Role Specific Technical Competencies
•    Cyber security Incident response
•    Cyber security vulnerability management
•    Cyber threat investigations
•    Malware analysis
•    Stakeholder management
•    Investigations related to cloud app/infra compromise 

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.