Authentication Engineer

Job Description

*About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East. To us, good performance is about much more than turning a profit. Its about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good. Were committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.The Role ResponsibilitiesSecurity Technology Services (STS) is a critical function within Standard Chartered Bank operating under the overall purview of Technology Services .The STS team is made up of cyber security thought leaders, who are accountable for the provision of a global set of cyber security services and products in order to maintain and continuously improve Bank s cyber security posture in today s ever evolving cyber security landscape.The STS function protects the Bank from cyber security threats by delivering effective information security technology services, managing and responding to security incidents to ensure, and support the continuity and growth of Bank s business operations; and meet the both internal and external stakeholders expectations across 70+ countries and territories, in which SCB operates. As part of the Security Transformation activities within SCB, STS is going through a capability transformation covering process and technology. This requires highly skilled and experienced cyber security engineers to work with each key service line, to define, build and implement threat driven capability roadmaps, patterns and drive an innovative vision for security to protect the Bank from complex cyber threats in support of the Security Architecture & Capability Authority.The role is responsible for the delivering the engineering activities related to various transformational project, enabling traditional business and security authentication methods, deploying password-less authentication for end users along with Directory service consolidation. These projects are driving Authentication Services strategy and implementing best in class authentication services in order protect the Bank from complex cyber threatsAs we embark on our Authentication Services strategy implementation, we require engineers/developers with the expertise to deliver that Transformation priorities, whilst continually improving resilience and stability. This role is therefore integral to STS achieving its transformational goals, aimed at migrating away from our legacy Directories and being fully aligned for cloud-based authentication patterns as well as continuing the current on-premise methods.The ideal candidate would have an Engineering mindset with excellent problem-solving capabilities and would be able to convert abstract ideas to working solutions.Regulatory & Business Conduct

• Display exemplary conduct and live by the Group s Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

Key Stakeholders

• Chief Product Owner, Authentication Services
• Engineering Chapter Lead, Authentication Services
• Head, Authentication Services
• STS Testing Team
• Other relevant functions with Technology Services (Infrastructure Services, Networks etc.)

Other Responsibilities

• Responsible for Development and implementation of API/OOTB based solution in ForgeRock and Secret Double Octopus product that covers continuous integration, code scanning, automation script, configuration, release/deployment.
• Responsible for implementing and troubleshooting if any issue.
• Review and Provide options on any solution coming out of enterprise Architect team.
• Must know JIRA and Confluence and knowledge on DevOps model and developing automated software deployment solutions to support integrated solutions using GIT, Subversion, Jenkins, Stash, JIRA, Java, RDBMS technologies and other toolsets as per SCB standard.
• Recommend opportunities to create and manage Microservices and published API in the Software Development Lifecycle. Enforce externalization of configurations and API Gateways.
• Improve the code-coverage of applications in the continuous integration drives
• Translate technical requirements, assist with all stages of the development process (development, testing, deployment, monitoring).
• Ensure reports on code metrics (i.e. code quality, code coverage, security scanning etc) are in place.
• Provide solutions in integrating disparate systems.
• Champion DevOps innovations by introducing better tools and agile practices
• Work collaboratively as a member of a Team to build and develop technical Identity and Access Management solutions
• Responsible for Development, Testing, and Implementing identity management (policy service) solutions using ForgeRock, Secret Double Octopus and Access Management products.
• Assist Project Team in troubleshooting and remediating issues
• Provide subject matter expertise in ForgeRock and Secret Double Octopus tools to Build organisation.
• Manage your delivery tasks to time and budget
• The role partners with technical teams and senior architects to analyse technical and non-technical requirements to build robust authentication integration pattern for cloud-based applications
• Coordinate solution implementation, advisory, problem management, change control and incident response.
• Collaborates with business teams, infra teams, security operations and offers technical guidance
• Performs security assessments and vulnerability analysis as required to justify risk tolerances and acceptances
• Documentation of security infrastructure, implementation, operational manuals and developing configurations to meet new business requests
• Review findings from and Identify root causes for common issues and provide recommendations for sustainable improvement.

Our Ideal Candidate

• Bachelor s degree in information technology, engineering, computer science, related field or equivalent experience.
• Minimum 6+ years experience in Information Technology, preferably in Banking and Financial services sector;
• Must have at least 6+ years Build & Implementation experience with Any IAM products like ForgeRock, Secret Double Octopus
• Industry certifications like CISSP, ForgeRock related certifications would be plus
• Ability to work independently with minimal direction; self-starter/self-motivated
• Hands on experience in public clouds (AWS/Azure) is a preferrable
• Must have a clear understanding of the concepts of Identity Management on Privileged Access Management and Credential Vaulting and Authentication mechanising.
• Candidate must have an understanding of industry best practices for access and authentication protocols and access governance (logging, monitoring etc.)
• Very well known to MS SQL and must be able to optimise the complex queries
• Ability to design and implement workflow rule-based provisioning solutions to meet complex business requirements.
• Experience in performance tuning, configuration, support, and troubleshooting.

Apply now to join the Bank for those with big career ambitions. To view information on our benefits including our flexible working please visit our career pages . We welcome conversations on flexible working.,

Keyskills :
subject matter expertisems sqlnew businesscode coveragecyber securitychange controlproblem solvingcomputer scienceaccess managementsecurity servicesfinancial services