Job Summary

The Senior Expert, Red Team Operations and ICS Testing is a permanent role that requires strong technology knowledge and a detailed knowledge of risk assessment, control testing, regulatory submissions and offensive testing techniques as well as penetration testing techniques and Cyber Threat Intelligence. The successful candidate will have key skills in critical thinking, problem solving, industry specific technical and regulatory knowledge, stakeholder management, decision making under pressure, and be able to respond in a flexible and collaborative manner to evolving business, regulatory and threat demands. The Senior Expert will work closely with key stakeholders to address Operational, Technology, Cyber risks as identified “top risk” for the Bank and align these to the Bank’s overall ICS Risk Type Framework and Enterprise Risk Management Framework (ERMF).

Key Responsibilities

• Collaborate with leadership to align Red Team activities with business objectives and strategic goals.
• Design, plan, and execute comprehensive red team engagements to identify vulnerabilities and test the resilience of organizational defences.
• Communicate findings and recommendations to key stakeholders on different organisation levels.
• Provide oversight and management of findings identified in reviews which includes Red Team exercises and required Regulatory findings.
• Communicate complex risks, issues and testing insights precisely and effectively to management and regulators as required.
• Manage and maintain a risk-based plan to focus testing on areas of highest risk.

Skills and Experience

• Minimum 8 years of experience in cybersecurity.
• Bachelor’s degree in Computer Science, Engineering, or a related field.
• Proven track record of successful penetration testing or red teaming engagements.
• Demonstrable experience leading offensive security assessments.
  
• Advanced understanding of operating system internals.
  
• Experience with risk assessment methodologies and frameworks.
  
• Experience developing automation scripts for security testing and operations.
  
• Ability to identify and exploit vulnerabilities in various systems and applications.
  
• Familiarity with network architecture, system administration, and IT infrastructure.
  
• Understanding of cloud security best practices and compliance requirements.
  
• Experience with tools and platforms for infrastructure management.
  
• Certifications supporting offensive security knowledge (such as OSCP, OSWE, OSCE or similar) are preferred.

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.