Associate Director ICS Standards (Malaysia, India)

The Information and Cyber Security (ICS) Standards and Controls is a pivotal function within the first line of defence at Standard Chartered. This position is responsible for the development, implementation, and oversight of the bank'sICS standards and controls, ensuring they align with industry best practices, regulatory requirements, and the bank's strategic objectives. The role involves maintaining a comprehensiveICS controls library, facilitating communication across the organization, and fostering a culture of security awareness and compliance.

• Develop and Maintain Standards and Controls
  • ICS Standards and Controls Development: Contribute to the creation and continuous improvement of the bank'sICS standards and controls. Ensure these standards incorporate the latest industry frameworks, such as NIST 800, ISO 27001, PCI-DSS, and SWIFT.
  • Controls Library Management: Support the maintenance and enhancement of theICS controls library, ensuring it is up-to-date, comprehensive, and reflective of the bank's risk profile and regulatory requirements.
  • Change Management: Support the change management process forICS standards, ensuring that changes are well-documented, communicated, and implemented with minimal disruption. Develop and enforce procedures for managing exceptions and deviations from the standards.
• Regulatory Compliance
  • Regulatory Mapping and Integration: Map all relevant regulatory requirements to theICS standards, ensuring the bank's operations comply with local and international regulations. Maintain an up-to-date understanding of regulatory developments and adjust theICS standards accordingly.
  • Compliance Assurance: Provide high quality and timely support tocompliance and audit teams to conduct regular assessments and audits, ensuring adherence toICS standards. Address any findings or non-compliance issues promptly and effectively.
• Stakeholder Collaboration
  • Internal Collaboration: Collaborate with various internal stakeholders, including business units, function CISOs, CIOs, and risk management teams, to ensure a cohesive approach to implementingICS standards.
  • External Engagement: Support relationship and preparation for contact with external bodies, including industry associations, regulatory authorities, and other financial institutions. Participate in industry forums and working groups to stay informed about emerging threats and regulatory changes.
• Simplification
  • Simplification Initiatives: Contribute to the efforts to simplify theICS standards, making them more user-friendly and easier to implement. This includes reducing complexity, eliminating redundancies, and ensuring clear and concise documentation.
• Strategy, Business & Governance
  • Strategic Leadership: Supportan execution of a strategic plan for the bank'sICS standards and controls, ensuring alignment with the bank's broader business goals and risk management strategies. Anticipate future trends and challenges, and proactively adapt the strategy to meet evolving needs.
  • Business Integration: Ensure thatICS standards are seamlessly integrated into business processes and decision-making. Work closely with business leaders to understand their needs and challenges, and provide tailored advice and solutions.
  • Governance Framework: Presenting to governance committee ensuring alignment with the bank's overall governance structure. This includes developing procedures for managing and enforcing the standards.

• Bachelor’s degree in Cybersecurity, Information Technology, or any related field.
• Candidates with relevant certifications (e.g., CISSP, CISM, CISA, CRISC) are preferred.
• Minimum of 5 years of experience in cybersecurity, with a focus on standards and controls, risk management, and regulatory compliance.
• Experience in a financial institution or a similarly regulated industry is preferred.
• Excellent leadership, communicationand interpersonal skills.
• Demonstrated ability to work effectively with diverse teams and stakeholders.
• Proven track record of managing complex projects and driving change in a large organization
• Demonstrate proficiency in Microsoft 365 applications.
• Business correspondence skills with excellent proficiency of English – written and spoken.

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thingand are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle,continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together,we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-offincluding annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible workingoptions based around home and office locations, with flexible working patterns.
• Proactive wellbeing supportthrough Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills,global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning cultureto support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.