VP, Cyber IR Readiness & Playbooks

Job Description

*About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East. To us, good performance is about much more than turning a profit. Its about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good. Were committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.Make an impact every day with Trust, Data and Resilience (TDR)Our TDR team sits within the Group Operations function and is responsible for mission-critical areas including cyber, information, data, privacy and resilience. These are challenges that impact our clients globally. Our TDR team develops the platforms, drives the processes and builds partnerships to benefit millions of people every day. They thrive in providing solutions to complex issues, devote time and energy to designing new and innovative solutions, and all in an environment that demands being risk-aware, not risk-averse. TDR chooses progress over perfection and aims to always participate with a constructive purpose. The team makes an impact wherever they are based, be it in our offices around the world, our Global Business Solution centres in China, India, Malaysia and Poland, or even from our homeNow you have an opportunity to make a meaningful impact with a diverse and passionate team of creators, innovators and achievers. With us, you ll learn, be inspired, and make an impact every day. The success of our work hinges on how we use the unique diversity of our people to realise the effects we seek to achieve: Always on. Always safe. Always Simple.The Role ResponsibilitiesCyber Security Services (CSS) is a critical function within Standard Chartered Bank operating under the overall purview of Trust, Data & Resilience.The CSS team is made up of cyber security thought leaders, who are accountable for the provision of a global set of cyber security services and products to maintain and continuously improve Bank s cyber security posture in today s ever evolving cyber security landscape.As part of the Cyber Defence Centre, we have established a dedicated IRR (Incident Response Readiness) function to develop and maintain an advanced library of incident response playbooks and sophisticated triage techniques that are ready to be automated. Regularly perform cyber response table-top exercises, simulations, and training to ensure the team is always ready for a major security incident.Functional

• Own the development, maintenance and enhancement of the incident response playbooks and ensure the library of incident response playbooks is contemporary against the emerging threats, technologies and reflects lessons learnt from past cyber security incidents.
• Establish and manage a pipeline of incident response playbooks, for on-boarding to the SOAR Platform, ready for orchestration and automation.
• Leverage information from latest cyber security attacks, threat and vulnerabilities and proactively provide expertise and guidance to the team to develop creative solutions and incident response playbooks.
• Plan, lead and conduct regular cyber response table-top exercises internally, including leading and participating in relevant activities externally, i.e. regulatory and industry specific (FS-ISAC, SWIFT) table-top exercises
• Analyse observations and lessons learned from cyber response table-top exercises, track actions to closure and ensure gaps observed in processes, incident response playbooks, controls and relevant findings are addressed accordingly.
• Govern the training framework for CDC team, ensure that training plans are kept updated and relevant trainings attended by the team tracked for record purpose

People and Talent

• Identify and attract the right talent to continuously uplift the capability and maturity of the function.
• Coach/mentor the fellow team members, and identify development plans, based on their skill gaps.

Risk Management

• Provide support on audit, risk and regulatory engagements on CDC s cyber resiliency plan.
• Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters.

Regulatory & Business Conduct

• Display exemplary conduct and live by the Group s Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

Key Stakeholders

• Cyber Defence & Threat Management - Service Managers (Heads), Service Operations Managers
• Crisis Management Team
• Head of Information & Cyber Security
• Group ISRO, Group Operational Risk & other Risk and Control Teams

Our Ideal Candidate

• GAIC Certified Incident Handler (GCIH) and CERT Certified Computer Security Incident Handler (CSIH) would be a plus.

Apply now to join the Bank for those with big career ambitions. To view information on our benefits including our flexible working please visit our career pages . We welcome conversations on flexible working.,

Keyskills :
cyber securityoperational riskequipment supplysecurity servicescomputer securitythreat managementbusiness solutionservice operationscreative solutions