Job Description

Role Responsibilities

Cyber Security Incident Management Operations:

\xc2\xb7 Monitor, detect & respond to any potential security threats and risks to the organisation, using the available technology toolset

\xc2\xb7 Correlate and consolidate the alerts, reports, anomalies and other intelligence sources, put the threat/risk in context, and determine event/incident urgency and priority, and initiate an appropriate response

\xc2\xb7 Continuously improve the accuracy and relevance of the Bank\xe2\x80\x99s detection tools and capabilities to keep pace with changing environments and regulatory/compliance requirements

\xc2\xb7 Adhere to the defined security monitoring processes and procedures, and initiate improvements to them, driving maturity and relevance

\xc2\xb7 Track and report the remediation of cybersecurity threats and risks, and provide domain expertise during remediation to the appropriate support groups

\xc2\xb7 Track and document cybersecurity incidents from initial detection through final resolution

\xc2\xb7 Operate within established standard operating procedures to handle security incidents

\xc2\xb7 Research trends and countermeasures in computer/network vulnerabilities, exploits, and malicious activity

\xc2\xb7 Support senior incident handlers during cybersecurity incident response activities

\xc2\xb7 Perform root cause analyses and present findings to relevant stakeholders for remediation

\xc2\xb7 Work closely with the other support groups to assess risk and provide recommendations for improving the Bank\xe2\x80\x99s security posture

Regulatory & Business Conduct:

\xc2\xb7 Display exemplary conduct and live by the Group\xe2\x80\x99s Values and Code of Conduct.

\xc2\xb7 Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

\xc2\xb7 Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key Stakeholders: As designated in this global coverage role

Other Responsibilities:

\xc2\xb7 Work within a 24x7 shift model

\xc2\xb7 Provide after-hours rotational coverage when required

Responsibilities*

Strategy*

• Monitor, detect & respond to any potential security threats across the Bank to ensure all events are acted on in a timely manner.

Business*

\xc2\xb7 Support senior incident handlers during cybersecurity incident response activities.

\xc2\xb7 Work closely with the other support groups to assess risk and provide recommendations for improving the Bank\xe2\x80\x99s security posture.

\xc2\xb7 Identify opportunities to improve detection and response capabilities of the team

\xc2\xb7 Work with content engineering team to monitor and tune alerts.

\xc2\xb7 Conduct research on attack patterns, techniques, and develop creative solutions to detect/prevent adversarial tools, techniques and procedures.

\xc2\xb7 Collaborate with key stakeholders to continuously enhance playbooks as new products, logs, and capabilities are introduced to the organization.

\xc2\xb7 Collaborate with key stakeholders in improving the Bank\xe2\x80\x99s detection posture.

Processes*

Ensure adherence to all internal and external policies, procedures and regulations.

Risk Management*

Be aware of, identify and escalate all risk issues and concentrations in accordance to the firm\xe2\x80\x99s Group Information and Cyber Security Policy. Where appropriate, direct remedial action and/or ensure adequate reporting to Risk Committees.

Governance *

Promote an environment where compliance with internal control functions and the external regulatory framework is a central priority of the service.

Regulatory & Business Conduct *

• Display exemplary conduct and live by the

. * Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key stakeholders*

\xc2\xb7 Tech, Transform and Ops

\xc2\xb7 Cyber Security

\xc2\xb7 Cyber Defence & Ops Technology

\xc2\xb7 Cyber Defence Centre

\xc2\xb7 Security Monitoring & Analytics

\xc2\xb7 Group Threat Management

Qualifications*

Training, licenses, memberships and certifications

\xc2\xb7 Diploma or higher educational qualification in Engineering, Computer Science/Information Technology or an equivalent qualification in a relevant discipline

\xc2\xb7 The following certifications are desirable but not mandatory: EC Council Certified Ethical Hacker (CEH), EC Council Certified Security Analyst (ECSA), SANS GIAC Certified Incident Handler (GCIH), CERT Certified Computer Security Incident Handler (CSIH), Axelos Information Technology Infrastructure Library (ITIL) v3 Foundation

Our Ideal Candidate

Well-versed in Cybersecurity Incident Analysis and Response and Cybersecurity Defensive Operations (Blue Team) Core

Strong understanding of core Enterprise Information Technology and Computer Networking concepts (Desktop/Laptop, Mobile Device, Server, Network Device, LAN and WAN) Advanced

Basic knowledge of selected IT Service Management (ITSM) processes (Event Management, Incident Management, Change Management, Service Assets and Configuration Management, Service Level Management) Entry

Exposure to Security Information and Event Management solutions, preferably Splunk ES. User Behaviour Analytics (UBA) exposure is desirable Core

Exposure to Endpoint Security and/or Endpoint Detection and Response tools, preferably Symantec Entry

Demonstrated ability to work with a diverse, geographically-dispersed team Core

About Standard Chartered

We\'re an international bank, nimble enough to act, big enough for impact. For more than 160 years, we\'ve worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you\'re looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents. And we can\'t wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you\'ll see how we value difference and advocate inclusion. Together we:

Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do

Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well

Be better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations

Time-off including annual, parental/maternity (20 weeks), sabbatical (12 weeks maximum) and volunteering leave (3 days), along with with minimum global standards for annual and public holiday, which is combined to 30 days minimum

Flexible working options based around home and office locations, with flexible working patterns

Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits

A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning

Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

Recruitment assessments - some of our roles use assessments to help us understand how suitable you are for the role you\'ve applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.

Visit our careers website

Standard Chartered