Job Summary

•    Risk Identification & Assessment: Proactively identify, assess, and document risks impacting business objectives, including operational, technology, and cyber risks.
•    Control Design & Implementation: Develop, implement, and monitor controls to mitigate identified risks.
•    Ensure controls are embedded in business processes and technology solutions.
•    Risk Remediation: Drive remediation plans for risk reduction, track progress, and ensure timely closure of issues and audit findings.
•    Compliance & Regulatory Assurance: Ensure adherence to relevant laws, regulations, and internal policies. Facilitate internal and external audits, regulatory inspections, and compliance reviews.
•    Metrics & Reporting: Collect, analyze, and report risk and control metrics. Prepare risk reports for management and stakeholders, highlighting key trends and areas for improvement.
•    Stakeholder Engagement: Collaborate with business units, technology teams, assurance, audit, and second/third line of defense functions to ensure consistent risk management practices.
•    Continuous Improvement: Promote a culture of continuous improvement by identifying process enhancements, adopting best practices, and supporting organizational change initiatives.
•    Training & Awareness: Provide guidance and training to staff on risk management and control topics to foster a risk-aware culture.
•    Responsible for maintaining and improving the control environment that enables the Technology & Architecture - Software Engineering domain (“T&A – SE”), especially Software Delivery Management to reduce operational and cyber security risk to a level within the Group’s risk appetite while satisfying control objectives defined in relevant Group policies and external regulations. 
•    Performing risk impact analysis on process in charge, designing and monitoring risk and control metrics.
•    Having good understanding of regulatory mandates and good industry practices pertaining to Software Delivery.
•    Detail oriented and ability to deep dive known issues to identify root causes and propose remediation actions. 
•    The candidate will also drive continual improvement for technology risk management matters within risk management team for T&A – SE.
•    Additional responsibilities include Issue Management, Audit and Regulatory Inspection Facilitation, metrics collection and reviews and other related tasks.

Key Responsibilities

Strategy
•    This role is involved in executing the strategy for Software Delivery as well as supporting the larger environment agenda of T&A – SE, 
Business
•    Ensuring Software Delivery Management process maintains a controlled technology risk environment and continuous improvement
•    Working with partners across OTCR (2LoD), GIA and T&O Risk & Control teams to ensure technology risk management practice is understood and consistently implemented in Software Delivery management
Processes
•    Provide subject matter expert advice, guidance and support on matters related to Software Delivery. 
People & Talent
•    This role is a team member role and works with team members to support T&A – SE domain, with focus on Software Delivery management. 
Risk Management
•    Identify and assess potential risks impacting the Domain or Bank’s objectives.
•    Drive risk remediation plans for risk reduction.
Governance
•    Keep track of risk and control monitors related to Software Delivery.
•    Attend risk forums and present Software Delivery related data points.

Regulatory & Business Conduct
•    Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
•    Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
•    Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
Key stakeholders
•    Technology & Architecture – Software Engineering teams
•    T&O Risk & Control teams, including assurance and control testing
•    2nd Line of Defence functions - OTCR
•    Group Internal Audit
Other Responsibilities
•    Support ad-hoc tactical and strategic risk initiatives to meet business and operational demands through thoughtful partnership.

Qualifications

•    Bachelor’s degree in a relevant discipline (e.g., Finance, Business, Information Technology, Engineering).
•    Professional certifications such as CISA, CISM, CRISC, CISSP, or equivalent are highly desirable.
•    Experience in risk management, audit, compliance, or control functions within a regulated industry.
•    Strong analytical, problem-solving, and communication skills.
•    Familiarity with risk management frameworks, regulatory requirements, and industry best practices.

Skills and Experience

•    Technology Risk Management
•    Risk & Control Self-Assessment (RCSA)
•    IT Standards, Procedures & Policies
•    Security Standards
•    Data Management
•    Software Delivery Lifecycle
•    Process Governance

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.