Associate Director, OTCR, T&O International Markets Job Details

Requisition Number: 52720

Job Location: Singapore, SGP

Global Grade: Band 6

Work Type: Hybrid Working

Employment Type: Permanent

Posting Start Date: 22/04/2026

Posting End Date: 06/05/2026

Job Description:

Job Summary:

Operational, Technology and Cyber Risk (OTCR) is a second line-of-defence Risk department that provides independent challenge, guidance, and oversight of first line-of-defence (1LoD) risk management. OTCR comprises coverage teams that oversee risk in the Bank’s lines of business and SME teams that provide deep expertise, setting the Bank’s OTCR risk management approach. OTCR sets the Bank’s approach for managing Information and Cyber Security (ICS) and Technology Risks. Both ICS and Technology risk are owned in 1LoD. OTCR provides independent oversight, guidance, and partnership to 1LoD risk management.

This is a Band 6, individual contributor position based in Singapore. It reports directly to Head, OTCR T&O International Markets, Policy & Regulatory Management. It is a permanent position requiring strong experience with Singapore and Malaysia’s regulatory landscape and deep knowledge of ICS & Technology risk.

This position spans two roles; a Technology & Operations (T&O) coverage role and an ICS & Technology SME role.

For the coverage role, the person will be responsible for review, challenge and (if relevant) approval of operational, technology and cyber risk matters in the Technology & Operations business unit.
For the SME role, the person will help, guide, and support informed decision-making and risk management with specialist knowledge and expertise. The role will be delivered through consultation, stakeholder engagement and SME insights.

Responsibilities :

The successful candidate will have a strong understanding of operating in a second line ICS and Technology Risk capacity and strong experience working with market regulators. They should be able to respond flexibly and collaboratively to evolving business, regulatory and threat requirements.
The role will provide oversight and challenge of ICS and Technology risk management as a risk partner to country leadership, as defined in the Bank’s ICS and Operational & Technology Risk Type Frameworks.
The role will focus on the following key activities:
• Coverage: Regulatory Engagement. Supporting and, where relevant, executing ICS & Technology risk regulatory engagement in relevant markets.
• Coverage: Managing Regulatory Change. Horizon scanning, impact and gap analysis of relevant regulatory change. This includes monitoring of regulatory implementation and driving Bank efforts to ensure compliance.
• Coverage: Business Strategy and Corporate Plans. Review, challenge and expert advice on corporate plan, evaluating with consideration of Risk Appetite, RCSAs, and business initiatives.
• Coverage: Risk & Control Self Assessments (RCSAs). Overseeing, supporting timely and accurate RCSA execution in relevant markets.
• Coverage: Risk Committees. Supporting high-quality, concise risk papers on ICS & Tech risk to relevant committees.
• Coverage/SME: Risk Appetite. Ensure timely and accurate risk profile reporting. Consult stakeholders in case of breaches.
• SME: Help, guide, and support informed decision-making and risk management with specialist knowledge and expertise. The role will be delivered through consultation, stakeholder engagement and SME insights. It does not involve approval responsibilities.

Key Stakeholders

• Country and Cluster CEO
• Regional & Country Chief Risk Officer
• Regional & Country OTCR Head
• Regional & Country Technology Manager
• Regional & Country CISO
• Country Compliance Officer
• Banking Regulators
• ICS & Technology Policy and Standard Owners

Our Ideal Candidate:

Education - Degree in cyber security or technology or equivalent.
6+ years of proven experience in an information security office, senior governance and policy, ICS/ technology risk or operational risk or audit role.
Thorough understanding of it security business process risks, threats, and internal controls relevant for managing and mitigating risks.
Strong knowledge of cyber security and technology frameworks, information security principles, architecture.
Technical knowledge across a broad range of ICS and technology risk capabilities including cyber defence, security monitoring, analytics, dlp, access management, cloud etc. Etc.
Strong leadership, negotiation and collaboration skills, and ability to work effectively in a complex multicultural and multi-time zone organization.
Strong interpersonal and stakeholder management skills with experience across various levels in the organization including senior leadership teams, in influencing key decisions taken in the business and in support teams.

Ability to collect and analyse data, establish facts, and make recommendations based on sound risk management principles.
A passion for keeping technical knowledge and skills up to date and horizon scanning new and emerging thematic risks from new technology or techniques.
Ability to articulate inherent and residual risk with specific ability to communicate complex ICS, technology and process risk clearly, concisely, and accurately to non-technical stakeholders in a lucid way.
Must be a self-starter who is able to initiate and successfully drive initiatives to completion with little or no management supervision.
Certifications Professional certifications related to ICS and technology risk are desirable (e.g., CCSP, CRISC, CISA, CISSP, CISM, GIAC etc).

Role Specific Technical Competencies

• Risk management
• Cyber security
• Regulatory engagement
• Technology architecture

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
Flexible working options based around home and office locations, with flexible working patterns.
Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

Recruitment Assessments

Some of our roles use assessments to help us understand how suitable you are for the role you've applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.

Visit our careers website www.sc.com/careers

Provider	Description	Enabled
LinkedIn	LinkedIn is an employment-oriented social networking service. We use the Apply with LinkedIn feature to allow you to apply for jobs using your LinkedIn profile. Opting out of LinkedIn cookies will disable your ability to use Apply with LinkedIn. Cookie Policy Cookie Table Privacy Policy Terms and Conditions
Google Analytics	Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Cookie Information Privacy Policy Terms and Conditions
Google Tag Manager	Google Tag Manager is a tag management system for conversion tracking, site analytics, remarketing and more. Privacy Policy Terms and Conditions