Standard Chartered Bank Recruitment for ICS First Line Risk Manager
Applications are invited from interested and suitably qualified candidates for Standard Chartered Bank Recruitment for ICS First Line Risk Manager.
Standard Chartered PLC is a British multinational banking and financial services company headquartered in London, England. It operates a network of more than 1,200 branches and outlets (including subsidiaries, associates and joint ventures) across more than 70 countries and employs around 87,000 people. It is a universal bank with operations in consumer, corporate and institutional banking, and treasury services. Despite its UK base, it does not conduct retail banking in the UK, and around 90% of its profits come from Asia, Africa, and the Middle East.
Standard Chartered has a primary listing on the London Stock Exchange and is a constituent of the FTSE 100 Index. It had a market capitalization of approximately £24.4 billion as of 4 April 2017, the 28th-largest of any company with a primary listing on the London Stock Exchange. It has secondary listings on the Hong Kong Stock Exchange and the National Stock Exchange of India. Its largest shareholder is the Government of Singapore-owned Temasek Holdings.
Job Description
- Company:Â Standard Chartered Bank
- Location:Â Accra, Greater Accra Region, Ghana
- State:Â Accra
- Job type:Â Full-Time
Responsibilities
Â
 • ICS 1 st Line Risk Manager, Africa will execute a robust and efficient plan to rollout ICS RTF by working with key stakeholders including COOs/CIOs direct teams, ICS RTF Implementation Programme teams, Office of the     CISO and Security technology teams. The plan will incorporate digital footprint discovery, risk assessment, definition and implementation of controls as guided by the ICS RTF and tailored to the relevant areas.
• Supporting the EA Head ICS in the implementation of the ICS Risk framework including working with stakeholders to identify, assess and rate the information assets, build out the risk profile per the framework, initiate risk      assessments and put together treatment plans.
• Use qualitative and quantitative data sources to validate Key Control Domains (KCD) and associated controls, accelerate risk assessment process, validate business risk profile and develop action plans to remediate to bring   ICS risk back into appetite.
• Follow up on identified thematic cyber issues, develop processes to address issues from re-occurrence and ensure cyber hygiene across the whole portfolio.
• Provide regular status updates including progress, top risks and issues to the respective country and regional forums for the relevant domains. Track RAG status, key milestones, risks, dependencies and issues.
• Interface with the Business and Country ICS Leads to assist with sharing of risk profiles, advising on cyber risk issues and addressing areas of concern.
• Interface into Technology forums to ensure security technologies are operating with input from countries and be actively involved in the roadmap of these technologies by providing regional/country input.
• Development of risk treatment plans for the assigned areas in conjunction with the business and technology teams. Interface with other areas to ensure dependencies are known and prioritised. Negotiate timelines to ensure   proper remediation by maintaining support and organizational alignment.
• Adapt to emerging and horizon risks and address issues to maximize outcomes. Urgent and timely action for risks and issues which adversely impact cyber risk profiles.
• Re-planning and prioritising as required to maximise risk reduction.
• Coordinate and plan for cyber crisis management exercises, build response and recovery capabilities, workarounds, ensure up to date playbooks etc.
• Assist with other cyber activities underway
StrategyÂ
• Ensure effective prioritisation and application of industry best practice into the ICS RTF and ICS country risk.
• Identify changes to plan required in terms of additional components, reprioritisation to anticipate and respond to changes.
• Learn from the recent regional and global cyber events and build into strategy to address current and emerging risks.
Region/CountryÂ
• Maintain strong stakeholder engagement with other COO ICS teams, Chief Information Security Office teams, ICS RTF Implementation Programme teams and Security Technology teams.
• Establish and maintain working groups across domains to progress the framework roll out.
• Escalate appropriately to ensure Head ICS, Africa is briefed, and necessary decisions are made in a timely manner.
GovernanceÂ
• Support the Head ICS, Africa on running periodic working groups and ensuring proper rollout of the ICS RTF.
• Assist with pulling together Risk papers going to various Risk committees within the region.
• Manage actions coming out of various risk and compliance forums.
Risk ManagementÂ
• Manage the rollout of the ICS RTF professionally and efficiently, closely tracking timeline commitments for provision of information and action plans, and for validation of actions taken.
• Ensure adoption of security tooling and capability to address ICS risk tactically and strategically.
• Address and adopt response and recover capabilities and assist with cyber crisis management exercises, playbooks etc.
Regulatory and Business ConductÂ
• Display exemplary conduct and live by the Group’s Values, Valued Behaviours, and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across the Bank.
• Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters.
Other Responsibilities
• Keep abreast of any new developments in the ICS risk frameworks globally, participate in industry and external discussions.
Â
Requirements
Â
 • Solid experience working across multiple security frameworks (e.g. NIST, ISO 27001, PCI-DSS) and understanding and exposure to various regulatory requirements across global regulators (e.g. PRA, FCA, MAS, HKMA,     RBI, NESA etc.)
• Experience in deployment and successful roll-out of risk frameworks across businesses with global footprint
• Experience in one or more key technology domains – Identity and Access Management (IAM), Data Protection, Vulnerability and Compliance Management, Network security, Security Incident Management etc.
• Experience in Cyber Crisis management, Response and Recovery activities etc.
• Excellent organisation and leadership skills with ability to manage multiple deadlines and effectively prioritize
• Ability to work independently to effect change across the countries and manage multiple deliverables simultaneously
• Ability to execute on strategy with plan to influence senior stakeholders and decision makers to adopt cyber capabilities across their countries
• Proven ability to deliver complex, global, pan-bank initiatives by driving collaboration and participation across diverse set of stakeholders
• Extensive experience within security or risk function, ideally gained in the financial industry
• Strong knowledge of the businesses, markets and operations of Standard Chartered Bank and relevant policies, procedures, and processes
• Ability to foster positive relationships with internal and external stakeholders at appropriate level ensuring open cooperative environment
• Stakeholder management, Negotiation skills, Conflict Management, Decision-making and Team work
• Possess one or more security certifications such as CISSP, CISA, CISM, CRISC, PCI-QSA, CSX, etc.
How to Apply
Interested applicant should click here to apply.
