Job Summary
This role could be based in Malaysia or India. When you start the application process you will be presented with a drop down menu showing all countries, please ensure that you select a country where the role is based
Group Resilience is responsible for enabling the Bank to anticipate, withstand, respond to, recover from, and learn from operational disruptions through a unified framework and capabilities to meet regulatory expectations and strengthen operational readiness. We continue to stay committed to enhancing and embedding resilience as a capability throughout the Bank, via a comprehensive approach which encompasses 3 key pillars: Resilience, Resolvability and Crisis Management.
Operational Resilience ensures the safeguarding of the Bank’s critical business services and their supporting resources, ensuring they can function effectively during adverse events. Resolvability ensures the Bank can maintain continuity of critical operations and access to services in the event of severe stress or resolution, in line with regulatory expectations. Crisis Management provides the structures, capabilities, and coordination required to respond decisively to incidents, protect stakeholders, and stabilise the Bank during periods of heightened uncertainty. As a collective, these pillars support regulatory compliance, protect stakeholders, and reinforce the Bank’s reputation as a trusted and reliable institution.
Group Resilience plays a pivotal role in supporting the Bank by implementing robust frameworks, monitoring risks, and maintaining compliance with evolving regulatory requirements. Through proactive planning, rigorous testing, and continuous improvement, we help to ensure the Bank remains resilient and well-positioned to serve our customers and stakeholders.
The role of Lead, Third Party Resilience Risk is responsible for supporting to set and maintain Third Party Resilience requirements within the Group Operational Resilience and Business Continuity Standard as well as ensuring Third Party Resilience deliverables are managed across the Bank. This includes the provision of leadership over the operational delivery, controls, reporting, and governance of the Third Party Resilience agenda.
The role holder will work closely with key stakeholders across Third Party Risk Management (TPRM), Supply Chain Management (SCM), Legal, Business and all Resilience Processes, including the Operational Resilience programme to ensure effective delivery of Third Party Resilience activities.
Key Responsibilities
Strategy
• Support management of the delivery of processes, and controls of Third Party Resilience, aligned with the Bank’s global strategic direction and with regulatory requirements.
• Lead digitisation and transformation activities to drive the Third Party Resilience of the Bank, including but not limited to tooling, processes, and continuity management.
• Lead requirement analysis, design functional specifications and get agreement from various stakeholders on the solution and design while complying with existing standards, guidelines and processes.
• Verify that the user requirements are achievable and support business users during UAT and post-implementation phases.
• Work with Project team to produce high quality deliverables.
• Influence Resilience by Design principles across all Third Party initiatives, including with stakeholders from Business and functions.
• Act as Subject Matter Expert on Third Party Risk Management deliverables to influence and improve business understanding of Resilience requirements related to Third Party regulations.
• Responsible for maintenance of Third Party Resilience requirements across various Standards, Guidelines, Procedures.
Business
• Responsible for the implementation of Group regulations relating Third Party Resilience in support of the Operational Resilience of the Group.
• Lead engagement with Business globally towards implementation of Third Party Resilience requirements, including review and challenge of CIB and WRB Business controls and procedures.
• Develop a framework understand of Third Party dependencies across the Bank’s IBS, together with sound validation practices.
Processes
• Drive standardisation of Third Party Resilience procedures across all disciplines including Operational Resilience, Business Continuity, Crisis Management and IT Resilience.
• Provide escalation point on Third Party Resilience matters for stakeholders across Resilience, 2LOD, Business and Functions.
• To support the management of Operational Resilience requirements, Important Business Service Mapping for Third Party service providers lifecycle process, and to support the engagement with Business globally towards implementation of Third Party Resilience requirements, including review and challenge of CIB and WRB Business controls and procedures.
• To support the Vulnerability Assessment Program across process, governance, and automation layers from Third Party Resilience perspective i.e.
• Coordinate with Process & System SMEs to define and maintain BAU processes and requirements
• Support governance documentation (e.g., SOPs, FAQs, reference guides) and continuous improvements
• Align and track automation and metrics requirements with relevant digital/system teams
People & Talent
• Lead through example and build the appropriate culture in line with the Bank’s values. Set appropriate expectations from supporting team members.
• Set and monitor job descriptions and objectives for direct reports and provide feedback and rewards in line with performance against those responsibilities and objectives.
• Promote new thinking, creative solutions to ensure timely and effective delivery of the programme milestones including management of financial and operational risks.
• Promote lean start-up product development mindset and behaviours at scale.
• Be a self-starter who can initiate and successfully drive programmes and projects to completion with little management supervision.
• Facilitate on-the-job learning from current & previous experience by identifying and communicating transferable lessons, helping to embed these lessons, and encouraging best practice across geographies team.
Risk Management
• Monitor, review and challenge the performance of Third Party Resilience controls within Group Resilience Processes, including review and challenge of 1LOD implementation of processes and controls
• Support design and implement new controls and metrics as required, including training to Resilience Risk and governance team for execution.
• Build and maintain an effective risk and control framework to identify and mitigate Third Party Resilience risks inherent to Third Party processes.
• Define minimum standards of controls and metrics to enable businesses and functions to manage Third Party Resilience risks.
• Drive the assessment of Third Party Resilience within the annual Risk and Control Self Assessments across Resilience Processes.
• Monitor, review and challenge the performance of Third Party Resilience controls within Group Resilience Processes, including review and challenge of 1LOD implementation of processes and controls
• Design and implement new controls and metrics as required, including training to Resilience Risk and governance team for execution.
• Support review Third Party Resilience Risk Appetite metrics.
• Review and challenge Risks, Issues, Country Addenda (CA) and Dispensations raised by business and country teams.
• Support closure of Third Party Resilience related issues and actions in M7 and engage with OTCR 2LOD relating to any resulting risk exposure.
• Support closure of GIA Issues and Treatment Plans where applicable and ensure completion of supporting actions.
• Support Audit / Regulatory Inspection as required.
• Support periodic review of Contingency Planning Legal Practice Note and ensure they are in sync with latest regulatory requirements.
Governance
• Establish reporting processes and provide periodic report on Third Party Resilience Landscape, Heatmap and Dashboards, including but not limited to TPCP completion and test status.
• Participate and represent Group Resilience to provide Third Party Resilience updates at risk and governance forums, to provide updates and influence positive outcomes:
• Group Third Party Risk Management Committee
• IGA Programme Operational Forum
• Resilience Governance & Oversight Forum
• Operational Resilience Working Group
• Operational Resilience programme steering committee
Regulatory & Business Conduct
• Lead implementation of Group regulations relating to Third Party Resilience Parties and drive regulatory compliance and conduct gap analysis for country specific regulations.
• Awareness and understanding of the PRA regulatory framework in which the Group operates, and the regulatory requirements pertaining to Third Party Resilience under PRA Supervisory Statements 1/21 and 2/21.
• Awareness and understanding of key regulation from local markets e.g. MAS, HKMA, BaFin and the applicability of these regulations across Third Party Resilience procedures.
• Support Group Resilience, Resilience Geographies, SCM and TPRM with key regulatory submissions.
• Display exemplary conduct and live by the Group’s Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
Key stakeholders
• Group Resilience Management Team
• Global Business and Regional Chief Operating Officers
• Regional Heads of Operational Resilience
• IBS and Contract Owners
• Global Process Owners
• T&O Governance
• T&O Risk and Control
• OTCR SME - Resilience
• OTCR Coverage
• Group Internal Audit
Other Responsibilities
• Embed Here for good and Group’s brand and values in T&O; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; Support any change management initiatives which impact on Third Party Resilience though the provision of advice and guidance as well as ensuring an effective control environment is maintained.
Skills and Experience
• Third Party Resilience
• Risk Management and Governance
• Operational Risk
• Strategy and Planning
• Project Management
• Financial Services Industry
Qualifications
• Bachelor’s degree or above in Management, Finance or similar
• Fluent written and spoken English
• 10+ years of overall working experience in Banking domain
• Minimum 5 years working experience covering operational / business resilience in financial institutions, with specialisation in
About Standard Chartered
We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.
Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.
Together we:
- Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
- Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
- Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term
What we offer
In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.
- Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
- Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
- Flexible working options based around home and office locations, with flexible working patterns.
- Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
- A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
- Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.