Director Controls Data Management & Privacy

Job Description

*About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East. To us, good performance is about much more than turning a profit. Its about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good. Were committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.The Role ResponsibilitiesMake an impact every day with Trust, Data and Resilience (TDR)Our TDR team sits within the Group Operations function and is responsible for mission-critical areas including cyber, information, data, privacy and resilience. These are challenges that impact our clients globally. Our TDR team develops the platforms, drives the processes and builds partnerships to benefit millions of people every day. They thrive in providing solutions to complex issues, devote time and energy to designing new and innovative solutions, and all in an environment that demands being risk-aware, not risk-averse. TDR chooses progress over perfection and aims to always participate with a constructive purpose. The team makes an impact wherever they are based, be it in our offices around the world, our Global Business Solution centres in China, India, Malaysia and Poland, or even from our home.Now you have an opportunity to make a meaningful impact with a diverse and passionate team of creators, innovators and achievers. With us, you ll learn, be inspired, and make an impact every day. The success of our work hinges on how we use the unique diversity of our people to realise the effects we seek to achieve: Always on. Always safe. Always Simple.Significant transformation is underway within the Operations function to rapidly improve the Cyber, Data, Privacy and Automation control environment, along with digitization and innovation. A new function, TDR (Trust, Data & Resilience), has been formed by pulling together Cyber Security Services, TPSR, ICS Operations, Data Management & Privacy, Automation and Resilience into one function to:

• Grow trust with clients and regulators by delivering best practice cybersecurity solutions and protecting data and privacy.
• Provide cutting-edge technology for Artificial Intelligence, Robotics and Automation to improving Scalability, Efficiency and Time to Market.
• Contribute to Client Journeys, by providing insights and analytics to steer the Bank and supply real time information for actionable measures.
• Deliver efficiencies, continuous improvement, maximise risk reduction, resilience, policy and regulatory compliance.

To support the Operations transformation agenda in growing trust with clients and regulators and maximizing risk reduction, resilience, policy and regulatory compliance, a Director Controls Data Management & Privacy role has been created to support the championing of a Data, Privacy and Records Management controls function. This new role will work with business and function colleagues, by providing assurance and advice, as well as advocating and imparting lessons and good practice to shape the design and implementation of relevant controls. In addition, determining whether these controls are operating effectively within prescribed business risk appetite.Key responsibilities include:

• Lead in the design, build, and implementation of world class controls to effectively mitigate data, privacy and records management risks.
• Analyse business & functional processes to identify risks and control weaknesses. For example, the adequacy and effectiveness of internal controls over how data is collected, created, received, transmitted, maintained and disposed of.
• Act as a confidant to the Product Owner(s) responsible for developing, prioritizing and implementing data, privacy and automation controls.
• Recommend process improvements to address control gaps and to enhance efficiency where possible.
• Support stakeholders in defining remediation actions / solutions to address identified assurance findings.
• Validate that the completed remediation activities address the risk in the identified assurance findings
• Support the continuous improvement of risk and control processes, aligning to and avoiding duplication with other assurance functions.
• Support liaison with Group Internal Audit, External Audit and any third party or regulatory inspections. This will include obtaining clarity of scope, defining engagement models, supporting business / function stakeholders throughout the processes and driving for clarity of issues and actions.
• Adopt an anticipatory approach to risk assessment through stakeholder engagement and monitoring of the external environment.
• Work with other control assurance teams to drive efficiency, effectiveness and reduce duplication.
• Provide thought leadership on Data & Privacy technical control design, assessment, testing processes and drive continuous improvement in ORTF.
• Provide robust challenge and escalation to senior management to ensure activities achieve risk reduction.
• Manage and drive continuous improvement of the Data & Privacy technical control environment through proactive risk management.

Our Perfect CandidateEssential

• Risk management or audit professionals, with experience in executing deep control assurance/audit reviews.
• Strong IT knowledge/experience.
• Highly effective and structured verbal and written communication skills.
• The ability to influence senior leaders & peers, and build strong relationships is critical for this role
• Excellent organisation and leadership skills with ability to manage multiple deadlines and effectively prioritise
• Ability to exercise good judgment and objectivity.
• Independent - demonstrates the ability to work with limited direction and multi-task without loss of quality
• Ability to perform the role of Change Leader
• Confident and courageous to raise/escalate issues in a pro-active, professional and timely manner
• Demonstrate understanding of and commitment to the Group s core values
• Fluency in English

Preferred but NOT essential:

• Deep understanding of global data management, governance & privacy frameworks and standards Demonstrate deep knowledge of data governance, data quality management, data privacy, data handling and data classification including (but not limited to): Data and application protection, cross border data restrictions, data classification, data discovery, data governance, data loss prevention, back-up/recovery and retention etc.
• Expertise in global data protection laws and practices with an in-depth understanding of any of the following: Personal Data Protection Act, General Data Protection Regulation, Cybersecurity Act, Safe Harbour and Multi-Jurisdictional IT / Privacy regulations and requirements such as cross-border data transfer.
• Financial services experience
• University degree and professional certification (such as CIPP, CIA, CISA, CISSP, or CISM)
• Ability to commit up to 10% business travel

Apply now to join the Bank for those with big career ambitions. To view information on our benefits including our flexible working please visit our career pages . We welcome conversations on flexible working.,

Keyskills :
data protection actdata loss preventionpersonal data protectionbuild strong relationshipsdata qualitydata privacycross borderinternal auditcyber securityexternal auditrisk reductioncontrol designdata management