Information Security Risk Officer, COO

As a part of the Group Operational, Technology and Cybersecurity Risk (OTCR) organisation at Standard Chartered Bank, your role will involve protecting and ensuring the resilience of the bank's data and IT systems by managing technological, information, and cyber security risks across the enterprise. You will be reporting into the Group Chief Risk Officer (CRO) and serving as the second line of defence to assure that Operational, Technology, and ICS controls are effectively implemented. Your responsibilities will include instilling a positive culture of Operational, Technology, and Cybersecurity risk management within the bank. **Key Responsibilities:** - Develop and implement strategies for Operational, Technology, and Cybersecurity Risk Officer for Group Transformation, Technology & Operations (TTO) to ensure effective management of risks. - Oversee and challenge 1st line Tech and ICS risk proposals and activities for key domains such as Cloud Computing, DevSecOps, and AI/ML. - Monitor Tech and ICS risks and remediation plans across business lines using the CISRO Governance Risk Type Framework. - Lead the team in promoting a healthy Tech and ICS risk culture within Transformation, Technology & Operations. **Qualifications:** - **Education:** A degree in Information and Cyber Security or Technology or equivalent. - **Training:** Minimum 10 years of experience in information security or risk management, with 5 years of hands-on experience in information security risk assessments. - **Certifications:** Professional Certifications such as CRISC, CCSK/CCSP, CISSP, CISA, CISM or equivalent is desirable. In addition to these responsibilities, you will be required to have skills and experience in Cyber Security frameworks, Cloud and Container Security, Data Science and Analytics, and ML Ops. You should have a strong technical knowledge of cloud, DevSecOps, and AI/ML technologies. The role also requires excellent communication and reporting skills in English to present complex AI/ML risk concepts to non-technical stakeholders. About Standard Chartered: Standard Chartered is an international bank driven by its purpose to drive commerce and prosperity through unique diversity. The bank values differences, advocates for inclusion, and works collectively to build for the long term. If you are looking for a career with purpose and want to work for a bank that makes a difference, Standard Chartered welcomes you to join their team. As a part of the Group Operational, Technology and Cybersecurity Risk (OTCR) organisation at Standard Chartered Bank, your role will involve protecting and ensuring the resilience of the bank's data and IT systems by managing technological, information, and cyber security risks across the enterprise. You will be reporting into the Group Chief Risk Officer (CRO) and serving as the second line of defence to assure that Operational, Technology, and ICS controls are effectively implemented. Your responsibilities will include instilling a positive culture of Operational, Technology, and Cybersecurity risk management within the bank. **Key Responsibilities:** - Develop and implement strategies for Operational, Technology, and Cybersecurity Risk Officer for Group Transformation, Technology & Operations (TTO) to ensure effective management of risks. - Oversee and challenge 1st line Tech and ICS risk proposals and activities for key domains such as Cloud Computing, DevSecOps, and AI/ML. - Monitor Tech and ICS risks and remediation plans across business lines using the CISRO Governance Risk Type Framework. - Lead the team in promoting a healthy Tech and ICS risk culture within Transformation, Technology & Operations. **Qualifications:** - **Education:** A degree in Information and Cyber Security or Technology or equivalent. - **Training:** Minimum 10 years of experience in information security or risk management, with 5 years of hands-on experience in information security risk assessments. - **Certifications:** Professional Certifications such as CRISC, CCSK/CCSP, CISSP, CISA, CISM or equivalent is desirable. In addition to these responsibilities, you will be required to have skills and experience in Cyber Security frameworks, Cloud and Container Security, Data Science and Analytics, and ML Ops. You should have a strong technical knowledge of cloud, DevSecOps, and AI/ML technologies. The role also requires excellent communication and reporting skills in English to present complex AI/ML risk concepts to non-technical stakeholders. About Standard Chartered: Standard Chartered is an international bank driven by its purpose to drive commerce and prosperity through unique diversity. The bank values differences, advocates for inclusion, and works collectively to build for the long term. If you are looking for a career with purpose and want to work for a bank that makes a difference, Standard Chartered welcomes you to join their team.