Job Summary

Cyber Security Incident Management Operations:
•    Monitor, detect & respond to any potential security threats and risks to the organisation, using the available technology toolset
•    Correlate and consolidate the alerts, reports, anomalies and other intelligence sources, put the threat/risk in context, and determine event/incident urgency and priority, and initiate an appropriate response
•    Continuously improve the accuracy and relevance of the Bank’s detection tools and capabilities to keep pace with changing environments and regulatory/compliance requirements
•    Adhere to the defined security monitoring processes and procedures, and initiate improvements to them, driving maturity and relevance
•    Track and report the remediation of cybersecurity threats and risks, and provide domain expertise during remediation to the appropriate support groups
•    Track and document cybersecurity incidents from initial detection through final resolution
•    Operate within established standard operating procedures to handle security incidents
•    Research trends and countermeasures in computer/network vulnerabilities, exploits, and malicious activity
•    Support senior incident handlers during cybersecurity incident response activities
•    Perform root cause analyses and present findings to relevant stakeholders for remediation
•    Work closely with the other support groups to assess risk and provide recommendations for improving the Bank’s security posture
Regulatory & Business Conduct: 
•    Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
•    Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
•    Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key Stakeholders: As designated in this global coverage role

Other Responsibilities: 

•    Work within a 24x7 shift model
•    Provide after-hours rotational coverage when required

Key Responsibilities

Strategy
Monitor, detect & respond to any potential security threats across the Bank to ensure all events are acted on in a timely manner. 

Business
•    Support senior incident handlers during cybersecurity incident response activities.
•    Work closely with the other support groups to assess risk and provide recommendations for improving the Bank’s security posture.
•    Identify opportunities to improve detection and response capabilities of the team 
•    Work with content engineering team to monitor and tune alerts.
•    Conduct research on attack patterns, techniques, and develop creative solutions to detect/prevent adversarial tools, techniques and procedures.
•    Collaborate with key stakeholders to continuously enhance playbooks as new products, logs, and capabilities are introduced to the organization.
•    Collaborate with key stakeholders in improving the Bank’s detection posture.

Processes
Ensure adherence to all internal and external policies, procedures and regulations. 

Risk Management
Be aware of, identify and escalate all risk issues and concentrations in accordance to the firm’s Group Information and Cyber Security Policy. Where appropriate, direct remedial action and/or ensure adequate reporting to Risk Committees. 

Governance 
Promote an environment where compliance with internal control functions and the external regulatory framework is a central priority of the service. 
 

Skills and Experience

• Well-versed in Cybersecurity Incident Analysis and Response and Cybersecurity Defensive Operations (Blue Team)    
• Strong understanding of core Enterprise Information Technology and Computer Networking concepts (Desktop/Laptop, Mobile Device, Server, Network Device, LAN and WAN)    
• Basic knowledge of selected IT Service Management (ITSM) processes (Event Management, Incident Management, Change Management, Service Assets and Configuration Management, Service Level Management)    
• Exposure to Security Information and Event Management solutions, preferably Splunk ES. User Behaviour Analytics (UBA) exposure is desirable    
• Exposure to Endpoint Security and/or Endpoint Detection and Response tools, preferably Symantec    
• Demonstrated ability to work with a diverse, geographically-dispersed team    

Qualifications

•    Diploma or higher educational qualification in Engineering, Computer Science/Information Technology or an equivalent qualification in a relevant discipline
•    The following certifications are desirable but not mandatory: EC Council Certified Ethical Hacker (CEH), EC Council Certified Security Analyst (ECSA), SANS GIAC Certified Incident Handler (GCIH), CERT Certified Computer Security Incident Handler (CSIH), Axelos Information Technology Infrastructure Library (ITIL) v3 Foundation

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.