Head of Strategic Projects, Third Party Security Risk Head of Strategic Projects, Third Party Security  …

Standard Chartered Bank Malaysia Berhad
in Kuala Lumpur, Kuala Lumpur, Malaysia
Permanent, Full time
Be the first to apply
Standard Chartered Bank Malaysia Berhad
in Kuala Lumpur, Kuala Lumpur, Malaysia
Permanent, Full time
Be the first to apply
Head of Strategic Projects, Third Party Security Risk
About Standard Chartered
We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.

To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.

We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.

The Role Responsibilities
  • Interact with all levels of management within the Bank while performing third party security assessments of Third Parties across all of the Bank's markets (especially group of assessments for strategic/special projects)
  • Effectively communicate and manage relationships with stakeholders globally and project stakeholders
  • Effectively communicate the security risks to internal and external stakeholders
  • Manage team members to effectively perform third party security assessments, and ensure quality and timely execution
  • Make timely and sound judgments, and identify clear solutions from broad, complex or ambiguous situations
  • Provide coaching, support and career development to team members
  • Assist in ensuring compliance with relevant regulations covering third party security risk
  • Assist in the development of new/amended processes, innovative ways of working and reviewing risk and control assessments
  • Assist in the forward planning and prioritisation of assessments or requests from business stakeholders, and resource allocations
  • Manage a register of third party security risks and ensure that deficiencies are mitigated
  • Monitor and report on third party security risk compliance to stakeholders
  • Remain current on industry trends and regulatory requirements related to third party information security
  • Support any training and awareness initiatives relating to third party security risk
Regulatory and Business Conduct
  • Display exemplary conduct and live by the Group's Values and Code of Conduct
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct
  • Demonstrate leadership ability to ensure that the team achieves the outcomes set out in the Bank's Conduct Principles
  • Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters
People and Talent (if applicable)
  • Provide mentoring and support as required across the team and CISO organisation

Our Ideal Candidate
  • Bachelor's degree from an accredited college/university in an appropriate field
  • Professional auditing certification, e.g. CISA
  • 10 to 15 years experience in IT auditing, preferably with Big 4 and/or Banking & Financial services experience
  • Experience in managing audit staff and complex audits
  • Experience in third party audits or risk management is a plus, but understanding of auditing standards, compliance, risk assessment and internal control frameworks is a requirement
  • Understanding of controls, regulatory and risk issues in a global financial institution
  • Knowledge of key outsourcing regulatory requirements, e.g. MAS, HKMA, RBI
  • Familiarity with working in a MNC or cross-cultural setting
  • Excellent written and interpersonal skills
  • Ability to draft reports that clearly communicate observations, risks and constructive action items would be required
  • Strong stakeholder engagement skills, and ability to interact at all levels across an organisation
  • Strong audit project organisation and management skills
  • Knowledge of security frameworks (e.g. COBIT, ISF, COSO), standards (e.g. ISO, NIST, CIS), information security principles and security architecture
  • Competency with Microsoft Office Suite (Word, PowerPoint, Excel, Visio, SharePoint)

Apply now to join the Bank for those with big career ambitions.