Technical Specialist, CInformation Protection Specialist, Cyber SecurityST - CNC

Key Responsibilities

Role Background

• This is a support engineer role plays a critical role in Cyber Security Technologies (CST) domain, specifically to manage Data Leakage Prevention and Vulnerability Management. This role is responsible for proactively safeguarding sensitive data, ensuring compliance with security policies, and managing lifecycle of vulnerabilities across production environments.
• The candidate need to work in 24*7 rotational support model, the role demands real-time monitoring, alert analysis, incident response, and escalation handling to protect the bank’s infrastructure. The engineer collaborates closely with the engineering team, SREs, Automation and Platform teams to ensure data confidentiality, integrity and availability are maintained at all times.
  

Supporting applications

• IP Applications: Proofpoint Email DLP (SAAS and On Prem) [ MS Purview , DDDC, IRM, MCAS ]
• CAT Applications: Sona type Nexus , Qualys Guard, Container Security, S-SAS
  

Impact of not having the backfill

• Without a dedicated DLP engineer, policy tuning, alert response, and incident triage may be delayed or missed, increasing the likelihood of undetected data and exfiltration.
• Compliance failures may occur and deviations with necessary ICS controls which has been put in place.
• Delays in Vulnerability scanning, patch tracking, and remediation
• MTTR may be longer for any security incidents or email related issues which is caused by Proofpoint DLP.
• Application availability and stability impact due to inadequate monitoring leading to service disruptions.
• Will be unable to rotate engineers across 24*7 support.
• Chances of BAU impact as multiple applications are handled in IP and CAT domains.
  

Regulatory & Business Conduct

• Display exemplary conduct and live by the Group’s Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
• Lead to achieve the outcomes set out in the Bank’s Conduct Principles: [Fair Outcomes for Clients; Effective Financial Markets; Financial Crime Compliance; The Right Environment.]
• Serve as a Director of the Board
• Exercise authorities delegated by the Board of Directors and act in accordance with Articles of Association (or equivalent)
  

Qualifications

• At least 3-4 years hands-on experience preferably with DLP solutions and vulnerability management.
• Demonstrated experience in managing production server security in 24*7 support models.
• Experience working in Service now, ITSM tools or SOC environments is a strong plus.
• Any industry certifications such as Comp TIA Security + or equivalent preferred
  

Skills And Experience

Technical Skills

Data Leakage Prevention (DLP)

• Hands-on experience with DLP tools in On-Prem and Cloud (Proofpoint DLP, Microsoft Purview preferred).
• Response to DLP incidents
• Understanding of data classification and Information rights management
  

Vulnerability Management

• Experience with tools such as Qualys, SonaType Nexus Repository, Aqua
• Patch management workflows.
• Risk prioritization based on CVSS scoring and asset criticality.
• Ability to correlate vulnerabilities with business impact.
  

Operating Systems

• Strong knowledge of Linux and Windows Server environments
  

Technical Skills

• Scripting skills preferred (e.g., Rundeck, Python)
• COP Tools, ITRS
  

Network & security

• Basic understanding of firewalls and firewall rules
  

Documentation & Reporting

• Creating incident and compliance reports
• Maintaining SOPs and playbooks for common security events or other technical issues
  

About Standard Chartered

Together We

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term
  

What We Offer

In line with our Fair Pay Charter,

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.