JOB SUMMARY

• Responsible for maintaining and improving the control environment for people, process and technology that enables the Bank’s Technology & Architecture (T&A) - Network & Security Architecture team (“NSA” or “Domain”) to reduce operational, cyber security and compliance risk to a level within the Group’s risk appetite while satisfying control objectives defined in relevant Group policies and external regulations. 
• This role will work closely with team members within T&O T&A Risk Management Team, the T&A CIO function, the Technology and Operations (“T&O”) Group, senior managers of T&A NSA and their teams, 1LoD functions including CISO, 2LoD functions such as OTCR, and 3LoD Group Internal Audit and will be required to drive all aspects of initiatives emanating from same for this Domain. Additional responsibilities include supporting the Risk Framework/Processes owned by the Domain, Proactive Controls Assessment, Issue Management, Audit and Regulatory Inspection Facilitation, metrics collection and reviews and other related tasks. 
• The candidate will also drive continual improvement for technology risk management matters within T&O Risk Management. 

RESPONSIBILITIES

• This role is involved in executing the domain strategy as well as supporting the larger environment agenda of T&O. 

Strategy
This role reports to the Head, Risk Management for T&A Software Engineering & NSA. Primary role is focused on:

• Ensuring NSA maintains a well-controlled technology risk environment,
• Working with partners across OTCR, CISO, and T&O to ensure technology risk management practice is understood and consistently implemented in NSA, and 
• Supporting OTCR, CISO, and T&O Risk Management to ensure that technology risk management continues to evolve as a practice in the Bank 
• Participating in organizational improvement initiatives and special projects
• Maintain engagement with key stakeholders

Business

• This role is responsible for the enforcement of the NSA processes and supports it with design, implementation, and oversight of the relevant control environment. 
• Ensure controls are appropriately embedded in the Technology Process Universe through oversight of the control standards and design function for processes owned by NSA
• Drive adoption of best practices, technology standards and methodologies 
• Ensure that processes operated by NSA are compliant with relevant policies and standards and documented appropriately 

Processes

• This role is a team member role and will work alongside a team of 20 FTE. 

People & Talent

• Proactive in identifying risk and control gaps and seeking regular assurance that the areas of responsibility and teams are performing to an acceptable risk and control standard within the organization’s risk appetite
• Monitor and track domain specific risk obligations and remediation
• Support audits, 2Lod assurance and 1Lod control and compliance reviews
• Support risk reporting 

Risk Management

• This role is required to participate as necessary in relevant governance forums. 

Regulatory & Business Conduct

• Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key Stakeholders

• Business: NSA Management Team and practitioners
• 2nd Line of Defence functions
• Governance & Optimisation teams
• Group Internal Audit
• T&O Risk management teams 
• T&O technology process owners 
   

Other Responsibilities

• Support ad-hoc tactical and strategic risk initiatives to meet business and operational demands through thoughtful partnership. 

Qualification

• Relevant industry certifications desirable (e.g. CISSP, CISA, CRISC etc.) 

Role Specific Technical Competencies

• Technology Risk, Information and Cyber Security Risk
• Compliance Risk
• Risk & Control Self Assessment (RCSA)
• IT Standards, Procedures & Policies
• Controls Design and Assessment
• Process Improvement
• Architecture management
   

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.