Job Description

Experienced Cyber Security Expert who will lead Integration Services Cyber Security journey. The Bank is focused on Information Cyber Security and Secure by design is corner stone of information architecture. This role requires both broad and deep knowledge of integration Technologies along with cyber security domain experience. It will demand strong leadership to collaborate with stakeholders, remove impediments, and use excellent communication to interface with external teams to understand their needs and use cases.

Responsibilities:

• Lead large, strategic, and complex Cyber security journey for  Integration Services .
• Take ownership of Data security aspects from cloud perspective for Integration Estate.
• Provide deep expertise and technical guidance in cyber security technologies, analyze and resolve tactical issues across a wide variety of areas
• Build relationships with stakeholders in CIO verticals, contribute to defining their strategic direction, planning the roadmap, escalating issues with regards to Cyber Security adoption journey
• Work with other heads in Integration Services to set policies and processes that span engineering and operations.
• Cyber risk assessment in diverse platform environments including cloud based, on-prem & hybrid deployment of systems including middleware, backend and application services
• Assess, plan and operationalize vulnerability assessments, scans and provide recommendation on associated fixes or compensating or mitigating or countermeasure controls
• Manage & monitor potential attacks & compromises
• Run diagnostics to identify root-cause and rapid-prototyping of simulated attack scenarios
• Provide design time recommendations on end-to-end cyber security and controls structure with focus on security-in-layers and risk-rated weighing strategy
• Be able to provide inputs on process re-engineering, automation & documentation

Skills 

• Deep Expertise in Certificate management, Crytographic protocols. 
• Hands on experience with tools like Hashicorp vault, HSM etc.
• Understanding of Security needs at Layer 4 and Layer 7 
• Security controls in Cloud like NACL, SECURITY GROUPS
• Working experience involving banking applications with adequate exposure to network and data centre security aspects
• Understand different Authentication and Authorization models for API banking.
• Understand Security trust models for large scale middleware with critical connected systems. 

Regulatory & Business Conduct 

• Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Lead the Integration Design Engineering team to achieve the outcomes set out in the Bank’s Conduct Principles: [Fair Outcomes for Clients; Effective Financial Markets; Financial Crime Compliance; The Right Environment.] * 
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.