Senior Manager - CIB Channels Tech

Job Description

*About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.To us, good performance is about much more than turning a profit. Its about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.Were committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.

• Looking for senior manager with solid 10+ years of experience in Information Technology Risk & Security.

Key Responsibilities:

• Work with the Senior Leadership to develop a multi-year strategic IT Risk & Security Roadmap to realise the long-term vision and business objectives of the Bank
• Engage functional leadership to develop an annual IT Risk remediation Plan with a project portfolio and service deliverables to serve the strategic and operational needs of the Business Unit
• Participate in the review of Information Security policies, procedures and guidelines to ensure relevance to the rapidly changing cyber landscape
• Lead in establishing an IT Risk Scorecard with key performance measurements and to ensure an excellent level of project and program delivery
• Lead change in working practices to improve clarity, accountability and efficiency
• Drive agenda for the Information Security Project Steering Committee
• Facilitate IT procurement processes and negotiate with vendors
• Co-ordinate Enterprise IT Risk and IT Audit meetings with follow-up actions and closure
• Co-ordinate the publishing of reporting to keep user community updated on the latest achievements and developments
• Develop a comprehensive understanding of the business, risk landscape, financials, processes and control environment
• Evaluate the design and effectiveness of controls to manage risk within risk appetite and tolerance
• Validate exceptions including quantifying risks, investigating root causes, and working with owners to establish action plans
• Evaluate significant corporate initiatives, processes, operations, implementations, M&A, etc. to ensure appropriate risks and controls have been considered
• Recommend improvements to systems, procedures and processes to minimize risks, improve efficiency, or generate cost savings
• Prepare work papers to adequately document audit work performed and to support conclusions reached
• Maintain knowledge of current information technology, InfoSec, auditing practices, industry trends, etc.
• Participate in department initiatives to further advance the Internal Audit function

Job Requirements:

• Manage risk and control for the groups
• Have a process approach to risk management and ability to challenge status quo and build relationships
• Partner and liaise closely with the leadership and team to help implement all key applicable operational risk components/ programs.
• Perform risk assessments. Have a process-oriented approach to risk management.
• Proactively and continuously promote engagement of business functions to integrate the risk programs into daily activities/operations, drive risk awareness across the stakeholder groups.
• Evaluate design and operating effectiveness of the controls
• Develop and implement an effective change management process for any changes in the standard operating environment. This would involve identifying the risks associated with the change, conducting risk assessment and help implement risk mitigation plan working with the stakeholders.
• Monitor and track all the findings of the control validation reviews, audit reviews and self-identified issues using the corporate tools.
• Issue Management and development of periodic risk reporting to stakeholders for effective tracking and reporting of risk items and issues.
• Analyse content highlighting themes/trends/emerging issues
• Strong data analytical skills to present the trends/themes to senior management

Preferred Skills:

• Experience as an IT auditor, IT risk management consulting, IT internal audit and/or IT business process improvement.
• Possess a relevant IT audit/risk management/security professional certification, such as CISA, CISM, CRISC, CISSP or CEH.
• Possess knowledge and understanding of audit methodologies, system development methodologies, project management, ITGC frameworks and standards (including COBIT, ITIL and ISO 27001), and cyber security processes.
• Understanding of the relationships between ITGC, IT application controls (ITAC), use of service organisations and their impacts on the control environment.
• Experience auditing design, implementation, security, internal controls and post-implementation process for systems/applications.
• Possess knowledge and understanding of operational technology controls.
• Strong analytical skills with clear logical and strategic thinking to find out deeper insights, including root cause analysis, and ability to present findings in a structured way.
• Relationship management and business partnering skills proven experience of building, developing and sustaining relationships with key stakeholders, especially senior management.
• Capability in data analysis particularly in analysing large amount of data to produce effective reports

Soft Skills:

• Very good organization skill.
• Strong analytical and critical thinking skills and meticulous attitude.
• Able to lead a team and work independently with minimal supervision.
• Good communication, writing and presentation skill.
• Good negotiation skills.

Apply now to join the Bank for those with big career ambitions.To view information on our benefits including our flexible working please visit our career pages . We welcome conversations on flexible working.,

Keyskills :
financesalesltdmisaccountancyit risk managementroot cause analysisrisk management consultingenvironmental impact assessmentstatements of work sow