STANDARD CHARTERED BANK
Senior ICS Risk Manager, ASEAN Cluster & Singapore
STANDARD CHARTERED BANK, West Islip, New York, United States
Overview
JOB SUMMARY: We have established a capability to implement and embed the ICS Risk Type Framework (RTF) across the Group and ASEAN region to standardize ICS risk identification and mitigation. The Senior ICS Risk Manager will support the ASEAN Cluster CISO to drive adoption and implementation of the framework across Singapore and the ASEAN Cluster, with an end-to-end view of ICS activities including regular risk assessments, tracking, follow-up and reporting. The role requires a hands-on approach to embed the ICS RTF, build constructive relationships with key stakeholders and regulators, and execute a robust plan to rollout the ICS RTF in collaboration with CTOOs/CIOs, business/functions, deployment teams and security technology teams. The incumbent may act as Market CISO for ASEAN markets (upon appointment).
Responsibilities
Strategy Responsible for the ICS Strategy for Singapore and the ASEAN Cluster. Accountable for the ICS Strategy for markets assigned as Market CISO (e.g., Australia, Thailand, or other markets). Identify and drive strategic change initiatives to deliver the ICS agenda with a forward-looking view. Develop strategies for engaging the business on information security, prioritise investments and funding approvals. Support the bank’s enterprise-wide risk management plan and strategy. Collaborate with application development to improve architecture and application security. Business Ensure ICS risks are proactively managed, mitigated and remediated with senior stakeholder support and regulatory requirements. Be the focal ICS contact for Singapore and ASEAN Cluster; engage with country/cluster leadership. Educate senior executives on ICS risks to drive accountability. Prioritise security issues with country/cluster management and drive timely remediation. Manage ICS risk across business/function/cluster; support security culture and readiness for cyber events. Identify and protect Critical Information Assets; work with IT to validate resilience of data and systems. Represent ICS requirements in business and regulatory contexts as needed. Processes Lead complex, global programmes and drive continuous improvement of practices. Implement the ICS agenda with business/function heads and management teams; manage risk remediation and regulator engagement. Drive the implementation of the ICS RTF focusing on key countries, including digital footprint discovery and control implementation. People & Talent Strong organisation and leadership skills with the ability to manage multiple deadlines and collaborate with peers. Maintain stakeholder engagement and act as the business-facing lead with IT, Risk, and executive teams. Coordinate with Communications, threat intelligence and other functions for change management, branding and training. Engage with external agencies to understand threat landscape; translate ICS requirements into technical requirements when needed. Risk Management Monitor and manage ICS incidents for Singapore and ASEAN. Represent Singapore, Australia and Thailand in governance forums and risk committees. Remediate audit/regulator ICS issues; drive lessons learned for consistency and efficiency. Ensure compliance with Group policies and regulatory requirements; oversee ICS RTF embedding. Governance Monitor ICS risk posture and report non-compliance to management and governance committees. Participate in risk committees, ICS working groups, and steering committees; validate risk metrics and process designs. Support third-party security assessments and embed ICS controls across markets. Regulatory & Business Conduct Display exemplary conduct and ethics; embed regulatory and business conduct standards. Identify, escalate, mitigate and resolve risk, conduct and compliance matters. Key Stakeholders CISO, ASEAN Cluster & Singapore; Cluster CEO and CTOO; Country C-level Management; ASEAN Market CISOs; ICS Control Owners; Banking Regulators Our Ideal Candidate Education: Degree in Engineering, Computer Science/Information Technology or equivalent. 10 years of experience in ICS Risk Management with strong communication and stakeholder management skills. Training & Certifications Strong knowledge of ICS products and operations preferred. Ability to initiate and drive programs; communicate complex risk to non-technical stakeholders. Strong interpersonal, written and verbal communication; proficient in MS Excel, PowerPoint, Word. Ability to manage projects to completion with minimal supervision; strong analytical and prioritisation skills; deep ICS domain knowledge. Certifications preferred: CISM, CISA, CISSP, GIAC, CRISC, PCI-ISA/PCIP, ISO 27001/22301 Lead Implementor/Auditor, etc. Role Specific Technical Competencies Excellent organisation and leadership to manage deadlines and prioritise. Proven ability to lead complex, global programs through collaboration and influence. Ability to build positive relationships with internal and external stakeholders; be a team player. About Standard Chartered We are an international bank with a purpose-driven culture focused on ethics, diversity and inclusion. Visit our careers website for more information: www.sc.com/careers What we offer In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your wellbeing across mental, physical, financial and social aspects. Core retirement, medical and life insurance with flexible benefits. Annual leave, parental/maternity leave, sabbatical and volunteering leave, with minimum 30 days total leave. Flexible working patterns based on location. Wellbeing support via digital platforms and employee assistance programs. Continuous learning culture with opportunities to reskill and upskill. Inclusive, values-driven environment inviting diverse perspectives. Recruitment Assessments Some roles may include assessments as part of the recruitment process. If invited, this indicates progression to an important stage of the process. Visit our careers website at www.sc.com/careers
#J-18808-Ljbffr
JOB SUMMARY: We have established a capability to implement and embed the ICS Risk Type Framework (RTF) across the Group and ASEAN region to standardize ICS risk identification and mitigation. The Senior ICS Risk Manager will support the ASEAN Cluster CISO to drive adoption and implementation of the framework across Singapore and the ASEAN Cluster, with an end-to-end view of ICS activities including regular risk assessments, tracking, follow-up and reporting. The role requires a hands-on approach to embed the ICS RTF, build constructive relationships with key stakeholders and regulators, and execute a robust plan to rollout the ICS RTF in collaboration with CTOOs/CIOs, business/functions, deployment teams and security technology teams. The incumbent may act as Market CISO for ASEAN markets (upon appointment).
Responsibilities
Strategy Responsible for the ICS Strategy for Singapore and the ASEAN Cluster. Accountable for the ICS Strategy for markets assigned as Market CISO (e.g., Australia, Thailand, or other markets). Identify and drive strategic change initiatives to deliver the ICS agenda with a forward-looking view. Develop strategies for engaging the business on information security, prioritise investments and funding approvals. Support the bank’s enterprise-wide risk management plan and strategy. Collaborate with application development to improve architecture and application security. Business Ensure ICS risks are proactively managed, mitigated and remediated with senior stakeholder support and regulatory requirements. Be the focal ICS contact for Singapore and ASEAN Cluster; engage with country/cluster leadership. Educate senior executives on ICS risks to drive accountability. Prioritise security issues with country/cluster management and drive timely remediation. Manage ICS risk across business/function/cluster; support security culture and readiness for cyber events. Identify and protect Critical Information Assets; work with IT to validate resilience of data and systems. Represent ICS requirements in business and regulatory contexts as needed. Processes Lead complex, global programmes and drive continuous improvement of practices. Implement the ICS agenda with business/function heads and management teams; manage risk remediation and regulator engagement. Drive the implementation of the ICS RTF focusing on key countries, including digital footprint discovery and control implementation. People & Talent Strong organisation and leadership skills with the ability to manage multiple deadlines and collaborate with peers. Maintain stakeholder engagement and act as the business-facing lead with IT, Risk, and executive teams. Coordinate with Communications, threat intelligence and other functions for change management, branding and training. Engage with external agencies to understand threat landscape; translate ICS requirements into technical requirements when needed. Risk Management Monitor and manage ICS incidents for Singapore and ASEAN. Represent Singapore, Australia and Thailand in governance forums and risk committees. Remediate audit/regulator ICS issues; drive lessons learned for consistency and efficiency. Ensure compliance with Group policies and regulatory requirements; oversee ICS RTF embedding. Governance Monitor ICS risk posture and report non-compliance to management and governance committees. Participate in risk committees, ICS working groups, and steering committees; validate risk metrics and process designs. Support third-party security assessments and embed ICS controls across markets. Regulatory & Business Conduct Display exemplary conduct and ethics; embed regulatory and business conduct standards. Identify, escalate, mitigate and resolve risk, conduct and compliance matters. Key Stakeholders CISO, ASEAN Cluster & Singapore; Cluster CEO and CTOO; Country C-level Management; ASEAN Market CISOs; ICS Control Owners; Banking Regulators Our Ideal Candidate Education: Degree in Engineering, Computer Science/Information Technology or equivalent. 10 years of experience in ICS Risk Management with strong communication and stakeholder management skills. Training & Certifications Strong knowledge of ICS products and operations preferred. Ability to initiate and drive programs; communicate complex risk to non-technical stakeholders. Strong interpersonal, written and verbal communication; proficient in MS Excel, PowerPoint, Word. Ability to manage projects to completion with minimal supervision; strong analytical and prioritisation skills; deep ICS domain knowledge. Certifications preferred: CISM, CISA, CISSP, GIAC, CRISC, PCI-ISA/PCIP, ISO 27001/22301 Lead Implementor/Auditor, etc. Role Specific Technical Competencies Excellent organisation and leadership to manage deadlines and prioritise. Proven ability to lead complex, global programs through collaboration and influence. Ability to build positive relationships with internal and external stakeholders; be a team player. About Standard Chartered We are an international bank with a purpose-driven culture focused on ethics, diversity and inclusion. Visit our careers website for more information: www.sc.com/careers What we offer In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your wellbeing across mental, physical, financial and social aspects. Core retirement, medical and life insurance with flexible benefits. Annual leave, parental/maternity leave, sabbatical and volunteering leave, with minimum 30 days total leave. Flexible working patterns based on location. Wellbeing support via digital platforms and employee assistance programs. Continuous learning culture with opportunities to reskill and upskill. Inclusive, values-driven environment inviting diverse perspectives. Recruitment Assessments Some roles may include assessments as part of the recruitment process. If invited, this indicates progression to an important stage of the process. Visit our careers website at www.sc.com/careers
#J-18808-Ljbffr