• Senior Manager - Assurance Management, Third Party Security Risk Jobs in Malaysia

  • Standard Chartered Bank Ltd
  • Malaysia
  • Save Job
  • 10 - 13 Years
  • Posted : 27 days ago

Job Description:

About Standard Chartered

We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East

To us, good performance is about much more than turning a profit Its about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good

Were committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation This in turn helps us to provide better support to our broad client base

Job Overview

The Group Chief Information Security Officer (CISO) organisation is instrumental in protecting and ensuring the resilience of Standard Chartered Banks data and IT systems by managing information and cyber security (ICS) risk across the enterprise As a critical function reporting into the Group Chief Risk Officer (CRO), the Office of the CISO serves as the second line of defence for assuring ICS controls are implemented effectively and in accordance with the ICS Risk Framework and for instilling a culture of cyber security within the Bank The Group CISO is responsible for ICS governance, strategy, policy, awareness, training, risk assessments, red teaming, third party security risk, industry partnerships, and regulatory engagement As such, the Office of the CISO is central to ensuring the Banks ability to meet its ICS commitments to internal and external stakeholders, including

regulators, as well as maintaining an acceptable ICS risk profile that is regularly reported to the Board

The Senior Manager Assurance Management role sits within the Third Party Security Risk team The main responsibility of the Senior Manager Assurance Management will be to support the Global Head of Third Party Security Risk in the execution and delivery of quality assurance reviews on the third party security risk program

Key Responsibilities

Strengthen and formalise the quality assurance (QA) process across Third Party Security Assessment (TPSA) lifecycle covering risk identification, risk assessment, risk mitigation and risk monitoring & reporting
Responsible for planning, execution and delivery of QA reviews based on an approved annual QA plan
Ensure compliance with standard operating policies and procedures, quality management systems and regulatory requirements
Effectively communicate QA findings to internal and external assesors on a regular basis
Monitor and report on QA findings and third party security risk compliance to stakeholders
Manage QA working documents to record and track the control gaps and remediation activities to ensure that any deficiencies in the processes are mitigated
Act as an advisor on areas of improvements in the TPSA processes and operational efficiencies
Assist in the development of new/amended processes, innovative ways of working and reviewing risk and control assessments
Provide timely responses on audit and regulatory requests / queries
Conduct internal training sessions for internal and external assessors on QA process, documentation standards and QA evidence retention requirements
Support any training and awareness initiatives relating to third party security risk
Provide coaching, support and career development to team members

Regulatory and Business Conduct

Display exemplary conduct and live by the Groups Values and Code of Conduct
Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct
Demonstrate leadership ability to ensure that the team achieves the outcomes set out in the Banks Conduct Principles
Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters

People and Talent (if applicable)

Provide mentoring and support as required across the team and CISO organisation

Experience, Skills and Qualification

Bachelors degree from an accredited college/university in an appropriate field
Minimum 10 years experience in IT auditing and/or risk management, preferably with Big 4 and/or Banking & Financial services experience
Experience in third party audits is a plus, but understanding of auditing standards, compliance, risk assessment and internal control frameworks is a requirement
Strong senior stakeholder engagement skills
Industry certifications will be a plus eg CISA, CISSP, CRISC and CISM
Strong knowledge of security frameworks (COBIT, ISF, COSO), standards (ISO, NIST, CIS), information security principles, security architecture and regulatory requirements
Excellent written, oral communication, reporting and presentation skills
Strong organisation skills, sound judgement and good critical thinking and analytical skills
Result-orientated, able to meet tight deadlines and work under pressure
Competency with Microsoft Office Suite (Word, PowerPoint, Excel, Visio, SharePoint)

Apply now to join the Bank for those with big career ambitions

Profile Summary:

Employment Type : Full Time
Eligibility : Any Graduate
Industry : Banking
Functional Area : HR/PM/IR/Training
Role : Admin/Facilities Mgmt
Salary : As per Industry Standards
Deadline : 18th Mar 2020

Key Skills:

Company Profile:

Company
Standard Chartered Bank Ltdarfix

Salary trends based on over 1 crore profiles

View Salaries

All rights reserved © 2018 Wisdom IT Services India Pvt. Ltd DMCA.com Protection Status