Job Summary
The Operational, Technology, and Cyber Risk (OTCR) organization is essential in safeguarding and ensuring the resilience of Standard Chartered Bank’s operations, data, and IT systems. By managing operational, technology, and cyber risk across the enterprise, OTCR plays a pivotal role. Reporting to the Group Chief Risk Officer (CRO), the Group OTCR team acts as the second line of defense, ensuring that controls are effectively implemented in line with the OTCR Framework and fostering a risk-aware culture within the Bank.
The Managed Services team, established to support Group Risk and CFCR, centralizes the production and risk management activities in a service hub. This allows teams to make risk-reward decisions based on judgment and expertise, influence business and regulatory outcomes and oversee strategic risk and compliance programs, such as Fit for Growth (FFG) and the Controls Simplification Programme
This is a global support role, covering SCB's presence across Asia, Africa, the Middle East, Europe, and the Americas, and spans multiple business lines such as Retail Banking, Private Banking, Wealth Management, Transaction Banking, and Financial Markets.
Role Overview: The Associate Director, RMI OTCR Non-Reporting is a permanent position that demands expertise to support in data management and governance, internal risk reporting, and a comprehensive understanding of the Group’s Operational Risk policy and standards. The role also requires a deep knowledge of regulatory expectations concerning operational loss reporting, data analytics, decision science, and risks related to operations, technology, information, and cyber security. “The roles require Thai and English multi-language proficiency”
Key Responsibilities
Strategy:
• Align and support both Country and Group strategic planning process, including the prioritization of strategic initiatives.
• Support the establishment of a good culture and corporate identity by developing mission/value statements.
• Align processes, resource planning, and objectives with the strategy.
• Provide support and insight into significant organizational changes.
• Address audit issues as they arise, including the creation and closure of operational risk issues related to specific audits.
• Support in the preparation of reports, packs, and Management Information (MI) for senior executives, including the Board and Regulators for Country Reporting.
• Drive the strategic intent and agenda of the OTCR organization through excellent reporting, data and MI, processes, and creating visibility of top risks across the Management Team
• Communicate risk intelligence to stakeholders for principal and sub-risk types of OTCR.
• Contribute to the development of performance management processes to encourage an appropriate risk culture and discipline.
• Establish and maintain a mature Risk Non-Reporting Process for OTCR, including effective and efficient change management.
• Support the OTCR Data Governance, Reporting, and Analytics to build data analytics capabilities in the team to monitor compliance with OTCR requirements and provide insights for risk metrics.
Non-Reporting:
• Work with Country OTCR and ERM stakeholders to identify and provide support for MI reporting and committee paper preparations together with any adhoc Country senior management requests for management information and reporting packs.
• Engage with key stakeholders to ensure that key risk drivers and business rationales are reflected in risk reporting commentary and that key insights from risk analysis are highlighted.
• Determine new risk reporting requirements, enhance existing risk information reports, and develop new reports at appropriate levels of granularity.
• Implement automated solutions to monitor data quality and issue resolution.
• Set up processes with embedded best-in-class data management practices.
Risk Document Translation
• Ensure high-quality translation of country risk reports and commentary, enabling accurate global consolidation and decision-making.
• Serve as translation lead for local-to-English documentation, maintaining consistency of terminology and narrative across all risk submissions.
• Translate and contextualize local risk issues for global stakeholders, ensuring clarity in reporting and escalation.
• Ensure high-quality translation of country risk reports and commentary, enabling accurate global consolidation and decision-making.
• Serve as translation lead for local-to-English documentation, maintaining consistency of terminology and narrative across all risk submissions.
• Translate and contextualize local risk issues for global stakeholders, ensuring clarity in reporting and escalation.
Review Control Testing and Self-Assessment Submission:
• Ensure reconciliation of records between the General Ledger and Losses recorded in M7 to ensure consistency and accuracy in financial reporting.
Committee Support:
• Coordinate the collection of inputs from various teams to prepare decks for committees and forums, ensuring all necessary information is accurately compiled and presented.
• Support the preparation of papers for committees, ensuring all documentation is thorough, accurate, and submitted in a timely manner.
• Prepare meeting decks and take meeting minutes, ensuring all discussions and decisions are accurately documented for future reference.
Qualitative Analysis:
• Support qualitative analysis on the Operational, Technology, and Cyber Risk (OTCR) risk profiles and provide updates in relevant papers and decks, ensuring the risk profiles are accurately represented.
Business:
• Maintain and develop OTCR Risk Non-Reporting capabilities, skills, and tools to meet ongoing business needs and plans.
• Ensure timely reporting of Risk Information.
• Identify suitable reporting and analytics tools in the market for reporting.
• Ensure the production and delivery of consistent, timely, and accurate OTCR Risk Non-Reporting, and provide MI to appropriate risk committees and forums.
• Establish methodology for the development and maintenance of risk-focused MI.
• Establish processes and techniques for monitoring data quality, identifying, assessing, and escalating data quality issues, and leading the implementation of appropriate automated controls.
• Optimize the use of data in support of OTCR controls, risk metrics, and the development of effective continuous monitoring strategies.
• Establish relationships with OTCR data owners to understand available resources, the flow of information, and ways in which information can be leveraged in ICS analytics and monitoring strategies.
• Build a robust process to manage documentation and control requirements for the Risk Non-Reporting process.
• Design, develop, test, and document programs to assist in population and scoping analysis, sampling, testing, and issue impact justification.
Processes:
• Responsible for the operational efficiency and effectiveness of the Risk Non-Reporting team, by defining and maintaining an operational excellence agenda for the team.
• Continuously look for areas to improve the operational efficiency and effectiveness of OTCR risk management processes through optimization and automation.
• Build a mature and sustainable process to deliver timely and accurate OTCR Risk Metrics and monitor and manage the quality of data used in the process.
• Contribute to the design and implementation of effective continuous monitoring and auditing strategies.
• Identify data analytical routines that can be developed to meet similar objectives across Group OTCR activities to maximize return on investment.
• Establish processes to identify and assess data quality issues impacting OTCR risk Non-Reporting and lead the escalation and mitigation of those issues.
Risk Management:
• Define and design appropriate MI and communicate via reporting to relevant committees.
• Embed appropriate data quality controls and provide analysis to support effective Risk Management.
• Ensure that all activities are in line with and support the OTCR principal risk type under the Bank’s ERMF.
• Ensure all activities are in line with and support the relevant data management and risk reporting internal policies and standards and external regulatory requirements and obligations.
• Identify and assess the impact of data quality issues, analyze the root cause, and escalate when necessary.
• Provide commentary and insights to critical and context OTCR risk.
Overall Working Experience:
• Extensive experience in Banking, Financial Institutions, Regulators, Fintech, or equivalent industries.
Business & Contextual Experience in at least one of the following areas:
• Retail Banking
• Wealth Management
• Private Banking
• Transaction Banking – Trade
• Transaction Banking – Cash Management
• Markets (e.g., Sales & Trading, Global Credit Markets, Private Side)
Domain and Functional Experience in one of the following areas:
• OTCR – Operational, Technology, and Cyber Risk
• Conduct & Compliance Risks
• Data Risk
o Conflict of Interest
o Non-Financial Regulatory Reporting
o Regulatory Conduct
o Market Conduct
o Client Conduct
• Financial Crime Risks
o Anti-Money Laundering
o Anti-Bribery & Corruption
o Sanctions
o Fraud (Internal and External)
• Business, Product, or Operations Risk Management with exposure to Conduct, Compliance, Financial Crime, or Control Oversight in a front or first-line role
• Non-Financial Risk
• Data Analytics
Other Experience:
• Proficient with tools and techniques for analyzing potential risk exposures
• Effective communication skills
• Knowledge of best practice risk assessment techniques and risk management frameworks
• Understanding of key features of relevant laws and regulations applicable to the Group
• Sound judgment on business practices, regulatory relationship management, and reputational risk
• Ability to balance both detail-oriented and big-picture perspectives
• Collaborative skills to work effectively across functions
• AI skillsets will be an advantage
• Experience in working as a Managed Service Provider to deliver risk services, including the provision of comprehensive risk management solutions and support to clients within the risk domain
Key stakeholders:
• Global Compliance Officers overseeing Business, Products, Client Segments, or Clusters, along with their teams.
• Chief Country Compliance Officers managing Countries, along with their teams.
• Global Product Owners responsible for CFCC & Risk products.
• Global and Country Business Heads.
• Global and Country Business Risk Management teams.
• Global and Country Process Leads.
• Chief Data Officer and teams working on Data analytical products.
• Global Head of Technology and teams developing technology and regulatory technology solutions.
Skills and Experience
• Personal authority based on established trusted relationships and ability to provide advice and functional direction
• Strong knowledge of the businesses, markets and operations of Standard Chartered Bank and the policies, procedures, and processes through which Operations, Technology and Cyber Risks are addressed throughout the Group
• Proven ability to lead highly complex, global activities through influence and credibility rather than command and control
• Ability to assess strategic priorities and focus on detailed aspects of a function in order to drive effective delivery
• Sound judgement and anticipation and strong integrity, independence and resilience
• Communication Skills:
o Excellent English oral and written skills
o Ability to communicate and explain complicated risk issues to internal stakeholders in a simple and business-friendly way
o Able to challenge constructively in a non-confrontational manner
• A self-starter, able to take initiation, to navigate within the approved parameters to work out a sensible and practical recommendation or decision
• Ability to participate within a multi-disciplinary team and be a strong team player
• Ability to identify opportunities for continuous improvements
• Strong emotional and cultural intelligence, being able to embrace and drive diversity of thought through inclusion and the valuing of cultural diversity
• Experience in technology, information and cyber security, risk, audit or business process analysis
• Blend of analytical skills, process or control expertise, project management and relationship building skills
• Sharp attention to detail and internal quality control
• Ability to think strategically and apply both quantitative methods and business insights to drive results
• Working knowledge of data analysis software; good understanding of data systems and data query and coding language methods
• Knowledge of statistics and its application to data
• Outstanding project management and analytical skills with an ability to multi-task and manage competing priorities
• Able to effectively present the findings with a clear, concise manner.
Role Specific Technical Competencies
• Data Science
• Analytical Thinking
• Business Analytics
• Operational and Technology Risk Management
• Business Process Improvement
• Effective Communications
• Effectiveness Measurement
• Process Automation
• Communicating Complex Concepts
• Risk Management
• Manage Vendors
About Standard Chartered
We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.
Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.
Together we:
- Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
- Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
- Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term
What we offer
In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.
- Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
- Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
- Flexible working options based around home and office locations, with flexible working patterns.
- Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
- A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
- Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.
