Skip to main content

This job has expired

Risk Manager, Third Party Security Risk

Employer
Association of International Certified Professional Accountants
Location
Federal Territory of Kuala Lumpur, MY
Salary
Competitive Salary
Closing date
Jan 23, 2021

View more

Job Role
Risk Manager
Sector
Finance
Contract Type
Permanent
Hours
Full Time
About Standard Chartered
We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.

To us, good performance is about much more than turning a profit. It%27s about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.

We%27re committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.

The Role Responsibilities

The Group Chief Information Security Officer (CISO) organisation is instrumental in protecting and ensuring the resilience of Standard Chartered Bank's data and IT systems by managing information and cyber security (ICS) risk across the enterprise. As a critical function reporting into the Group Chief Risk Officer (CRO), the Office of the CISO serves as the second line of defence for assuring ICS controls are implemented effectively and in accordance with the ICS Risk Framework and for instilling a culture of cyber security within the Bank. The Group CISO is responsible for ICS governance, strategy, policy, awareness, training, risk assessments, red teaming, third party security risk, industry partnerships, and regulatory engagement. As such, the Office of the CISO is central to ensuring the Bank's ability to meet its ICS commitments to internal and external stakeholders, including regulators, as well as maintaining an acceptable ICS risk profile that is regularly reported to the Board.
The Information Security Manager role sits within the Third Party Security Risk team. The main responsibility of the Information Security Manager will be to support the Global Head of Third Party Security Risk in delivering the third party security risk program through third party security assessments of the information security controls environment at external Third Parties, whom have access to non-public information and/or Bank's systems that process those information.
Key Responsibilities
  • Interact with all levels of management within the Bank while performing third party security assessments of Third Parties across all of the Bank's markets
  • Effectively communicate the security risks to internal and external stakeholders
  • Effectively communicate and manage relationships with stakeholders globally
  • Assist in ensuring compliance with relevant regulations covering third party security risk
  • Maintain a register of third party security risks and ensure that deficiencies are mitigated
  • Diligently provide weekly and ad hoc reporting on the status of assessments
  • Support any training and awareness initiatives relating to third party security risk
  • Support and assist in third party program improvement initiatives

Regulatory and Business Conduct
  • Display exemplary conduct and live by the Group%27s Values and Code of Conduct
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct
  • Demonstrate leadership ability to ensure that the team achieves the outcomes set out in the Bank%27s Conduct Principles
  • Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters

People and Talent
  • Provide mentoring and support as required across the team and CISO organisation

Our Ideal Candidate
  • Bachelor's degree from an accredited college/university in an appropriate field
  • Minimum 5 years experience in information security / IT auditing, preferably with Big 4 and/or Banking %26amp; Financial services experience
  • Experience in third party audits is a plus, but understanding of auditing standards, compliance, risk assessment and internal control frameworks is a requirement
  • Familiarity with working in a multi-national company or cross-cultural setting
  • Excellent written and interpersonal skills
  • Strong time management skills
  • Ability to draft reports that clearly communicate observations and risks would be required
  • Strong stakeholder engagement skills, and ability to interact at all levels across an organisation
  • Strong audit project organisation and management skills
  • Ability to multitask and ensure that all key priorities are delivered as per agreed timelines
  • Knowledge of security frameworks (e.g. COBIT, ISF, COSO), standards (e.g. ISO, NIST, CIS), information security principles, security architecture and regulatory requirements will be a plus
  • Competency with Microsoft Office Suite (Word, PowerPoint, Excel, Visio, SharePoint)


Apply now to join the Bank for those with big career ambitions.

To view information on our benefits including our flexible working please visit our . We welcome conversations on flexible working.


Association of International Certified Professional Accountants

The Association of International Certified Professional Accountants (the Association) is the most influential body of professional accountants, combining the strengths of the American Institute of CPAs (AICPA) and the Chartered Institute of Management Accountants (CIMA) to power opportunity, trust and prosperity for people, businesses and economies worldwide. It represents 650,000 members and students in public and management accounting and advocates for the public interest and business sustainability on current and emerging issues. With broad reach, rigor and resources, the Association advances the reputation, employability and quality of CPAs, CGMA designation holders and accounting and finance professionals globally.

Get job alerts

Create a job alert and receive personalized job recommendations straight to your inbox.

Create alert