Architect - EESP domain

Job Summary

Strategy
• Define, communicate, and implement Standard Chartered Bank’s Technology Vision for the EESP Domain aligned to the ICS Strategy and Bank Strategy as it related to respective domain.

• Define, assess, and review each capability underpinning the domain capabilities, establish and maintain the maturity assessment and opportunities to enhance, simplify and consolidate to provide effectiveness of protection whilst achieving cost efficiency.

• Maintain knowledge of industry best practice in security capabilities for the EESP Domain, review applicable threat models and input into policies, standards, minimum baseline security requirements and implementation.

• Thought leader and Subject Matter Expert on Endpoint Security, Email Security & Server Security capabilities.

Business
• Embed a client led mindset focused on the continuous delivery of value aligned to bank strategy

• Domain Architecture - Define and embed a Domain Architecture capability to build the foundations, frameworks, enablers and overarching governance to accelerate our delivery, execute efficiently and ensure our services both remain secure (by design) and meet minimum regulatory requirements.

• Define the baseline and target architecture for assigned security domains globally.

• Define the roadmap and govern product selection to establish cost effective best in class respective domain capabilities in line with achieving our aspirations to deliver growth in ROTE and sustainably protect the Bank

• Portfolio Optimisation & Roadmaps – Align investment in capabilities/features to identify efficiencies, redirecting investment from tactical to target state spend aligned, e.g. cloud and building global capabilities.

Processes
• Ensure architectural governance to support speed of delivery whilst ensuring sustainable, target state aligned solutions are delivered.

• SME for approval of architectural reviews such as SACA, CCH etc.

• Support presentation of Domain capabilities at relevant governance forums (such as SACA, Cloud Clearing House, Technology Standards Board etc)

• Responsible for compliance with processes required to deliver the objectives of the role/team.

• Drive adoptions of best practices, technology standards and methodologies.

• Allocate resources effectively to maximise efficiency of delivery to ensure high quality deliverables.

People & Talent
• Display exemplary conduct and live by the Group’s Values and Code of Conduct.

• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

• Display exemplary conduct and live by the Group’s Values and Code of Conduct.

• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

• CPO / PO
• ICS Hive Heads / CPO
• Engineering Team
• Support & Testing Team
• Enterprise Technology,
• Enterprise Architecture,
• Cloud & Platform Team,
• Network Security,
• End-user Support Teams,
• Enterprise Integration Teams

• Bachelor's degree in engineering, computer science, preferably majoring in cybersecurity.
• 5 years’ experience in security architecture roles, leading complex architectural projects with multiple stakeholders, utilizing various security tools/technologies.
• 10+ years’ experience in Endpoint & Email domain.
• Hands on experience leading in mature agile environments and delivering outcomes iteratively focused on value to the customer.
• Proven threat modelling experience using STRIDE/MITRE/OWASP and/or other threat modelling methodologies for complex systems (ideally MITRE ATT&CK Defenders (MAD) Certified).

• Deep technical skills with good understanding in cross-functional technologies (Infrastructure, Endpoints, Email, Server Protection, IAM, data protection, threat management, vulnerability management, etc.) ability to dive into technical engineering details.

• Excellent communication skills, ability to explain complex topics to both technical and non-technical audiences. Proven ability to influence relevant stakeholders and decision makers.

• Excellent organisational skills, ability to manage deadlines and effectively prioritise multiple projects
• Effective leadership and interpersonal and communication skills
• Ability to balance short-term expediency and long-term effectiveness
• Ability to self-manage and contend effectively with ambiguity
• Demonstrated credibility with stakeholders and project team members

Role Specific Technical Competencies

• Experience working in security architecture / engineering roles for financial institutes
• Experience and knowledge of enterprise architecture
• Experience working on Endpoint Security
• Experience with cybersecurity frameworks e.g., NIST cybersecurity framework, NIST 800-53, NIST 800-37, ISO 27xxx, etc.
• Experience working on Email Security

About Standard Chartered

We\'re an international bank, nimble enough to act, big enough for impact. For more than 170 years, we\'ve worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you\'re looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can\'t wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you\'ll see how we value difference and advocate inclusion.

Together we:

• Do the right thingand are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle,continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together,we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter,we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance,with flexible and voluntary benefits available in some locations.
• Time-offincluding annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible workingoptions based around home and office locations, with flexible working patterns.
• Proactive wellbeing supportthrough Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills,global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning cultureto support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation,one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.