Sr Manager - ICS, CoE

Job Description

* Responsibilities Strategy
• Ensure prioritisation and assisting the HICS community with oversight and remediation
• Identify changes required in terms of additional components, reprioritisation to anticipate and respond to changes emanating from the ICS drivers.
Business
• Ensure timely and quality delivery of e2e ICS regulatory commitments (including submission and non-submission),
• Ensure timely remediation of higher risk issues including external regulators and Group Internal Audit through proper visibility and appropriate escalation,
• Responsible for speaking out on emerging risks, issues, blockages, challenges, and trends in the appropriate forums.
Processes
• Driving End-to-End LRM Pre-submissions review,
• Driving Gap Assessment for past regulations (non-submissions),
• Support Regulatory Inspections for countries,
• Scope RFIs and review the quality of response from on-going submissions / Non-submissions for quality review managed by COE,
• Orchestrate complex organization wide gap assessments emanating from group regulators like Prudential Regulatory Authority, FCA, etc.
• ICS RFI support for Internal & External audits (e.g., Financial Audits)
• Non-Regulatory Assessments, RTPSA,
• Draft regulatory related responses pertaining to ICS attestations like SWIFT, NESA, CRAF, CHAPS, PCI-DSS etc,
• Regularly identify and implement opportunities for efficiency (via A3s) across processes, systems, and infrastructure,
• Ensure standardisation and best practice migration across regions, segments, and functions by working closely with the HICS.
People & Talent
• Working in close collaboration with HICS, risk and control partners across all functions to effectively embed a strong culture of risk awareness and good conduct,
• Improve client centricity through increased delivery velocity,
• Spread and sustain a continuous improvement and innovation culture.
Risk Management
• Mature the Bank s ability to proactively identify and manage cyber threats through implementation of robust, integrated risk framework (the ICS RTF and Threat Scenario Risk Assessment (TSRA) Standard),
• Support establishing governance to enable Secure & Resilient by Design solutions, supporting the Group s cloud first and digital transformation agenda.
Governance
• Become the trusted cybersecurity advisor to Business, Functions, Regions, Countries to directly support the delivery of the Bank s ICS strategy.
Regulatory & Business Conduct
• Display exemplary conduct and live by the Group s Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Lead the Centre of Excellence team to achieve the outcomes set out in the Bank s Conduct Principles : Fair Outcomes for Clients; Act responsively and within your authority; Comply with laws, regulations, and group standards; Be open and co-operate with regulators; Protect confidential information; Treat colleagues fairly and with respect *
• Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters.
Key stakeholders
• Regional, Segment and Function HICS; ISRO and CISRO team; GIA, Business & Country Compliance teams; Control owners in ET, CCIB, CSS etc
Other Responsibilities
• Embed Here for good and Group s brand and values in ICS CoE; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; driving and adapting to change; identifying and implementing efficiencies through the new ways of working, actively participating in A3s.
Qualifications
• Training, licenses, memberships and certifications
• Someone with proven track record of working on Cyber Security related assessments for various countries, knowledge in Cyber Security and data privacy related concepts and relevant certifications e.g., CISSP, CISM, CISA, CRISC, ISA, PCIP, CIPP etc will be preferred.
,

Keyskills :
keeping things simplepci dssdata privacyhuman skillsinternal auditlife insurance