Monitor, detect & respond to any potential security threats and risks to the organisation, using the available technology toolset
Correlate and consolidate the alerts, reports, anomalies and other intelligence sources, put the threat/risk in context, and determine event/incident urgency and priority, and initiate an appropriate response
Continuously improve the accuracy and relevance of the Bank\xe2\x80\x99s detection tools and capabilities to keep pace with changing environments and regulatory/compliance requirements
Adhere to the defined security monitoring processes and procedures, and initiate improvements to them, driving maturity and relevance
Track and report the remediation of cybersecurity threats and risks, and provide domain expertise during remediation to the appropriate support groups
Track and document cybersecurity incidents from initial detection through final resolution
Operate within established standard operating procedures to handle security incidents
Research trends and countermeasures in computer/network vulnerabilities, exploits, and malicious activity
Support senior incident handlers during cybersecurity incident response activities
Perform root cause analyses and present findings to relevant stakeholders for remediation
Work closely with the other support groups to assess risk and provide recommendations for improving the Bank\xe2\x80\x99s security posture
Strategy
Monitor, detect & respond to any potential security threats across the Bank to ensure all events are acted on in a timely manner.
Business
Support senior incident handlers during cybersecurity incident response activities.
Work closely with the other support groups to assess risk and provide recommendations for improving the Bank\xe2\x80\x99s security posture.
Identify opportunities to improve detection and response capabilities of the team
Work with content engineering team to monitor and tune alerts.
Conduct research on attack patterns, techniques, and develop creative solutions to detect/prevent adversarial tools, techniques and procedures.
Collaborate with key stakeholders to continuously enhance playbooks as new products, logs, and capabilities are introduced to the organization.
Collaborate with key stakeholders in improving the Bank\xe2\x80\x99s detection posture.
Processes
Ensure adherence to all internal and external policies, procedures and regulations.
Risk Management
Be aware of, identify and escalate all risk issues and concentrations in accordance to the firm\xe2\x80\x99s Group Information and Cyber Security Policy. Where appropriate, direct remedial action and/or ensure adequate reporting to Risk Committees.
Governance
Promote an environment where compliance with internal control functions and the external regulatory framework is a central priority of the service.
Regulatory & Business Conduct
Display exemplary conduct and live by the Group\xe2\x80\x99s Values and Code of Conduct.
Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
Key stakeholders
Tech, Transform and Ops
Cyber Security
Cyber Defence & Ops Technology
Cyber Defence Centre
Security Monitoring & Analytics
Group Threat Management
As designated in this global coverage role
Other Responsibilities
Work within a 24x7 shift model
Provide after-hours rotational coverage when required
Our Ideal Candidate
Diploma or higher educational qualification in Engineering, Computer Science/Information Technology or an equivalent qualification in a relevant discipline
The following certifications are desirable but not mandatory: EC Council Certified Ethical Hacker (CEH), EC Council Certified Security Analyst (ECSA), SANS GIAC Certified Incident Handler (GCIH), CERT Certified Computer Security Incident Handler (CSIH), Axelos Information Technology Infrastructure Library (ITIL) v3 Foundation
Role Specific Technical Competencies
Well-versed in Cybersecurity Incident Analysis and Response and Cybersecurity Defensive Operations (Blue Team)
Strong understanding of core Enterprise Information Technology and Computer Networking concepts (Desktop/Laptop, Mobile Device, Server, Network Device, LAN and WAN)
Basic knowledge of selected IT Service Management (ITSM) processes (Event Management, Incident Management, Change Management, Service Assets and Configuration Management, Service Level Management)
Exposure to Security Information and Event Management solutions, preferably Splunk ES. User Behaviour Analytics (UBA) exposure is desirable
Exposure to Endpoint Security and/or Endpoint Detection and Response tools, preferably Symantec
Demonstrated ability to work with a diverse, geographically-dispersed team
About Standard Chartered
We\'re an international bank, nimble enough to act, big enough for impact. For more than 160 years, we\'ve worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you\'re looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents. And we can\'t wait to see the talents you can bring us. Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you\'ll see how we value difference and advocate inclusion. Together we:
Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
Be better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term
In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.
Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations
Time-off including annual, parental/maternity (20 weeks), sabbatical (12 weeks maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum
Flexible working options based around home and office locations, with flexible working patterns
Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning
Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.
Recruitment assessments - some of our roles use assessments to help us understand how suitable you are for the role you\'ve applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.