Information Security Manager - Third Party Security Risk

ob Summary

Strategy

• The main responsibilities will be to support the Head of Third Party Security Risk in delivering the third party security risk program within the Bank.

Business

• Effectively perform third party security reviews and ensure quality and timely execution. Portfolio includes reviewing WRB, Cloud Service Providers (CSP) and global technology third parties and performing technical deep dive assessments (where applicable) and activities related to TPSR process.

• Make timely and sound judgments, and identify clear solutions from broad, complex or ambiguous situations.

• Interact with all levels of management within the Bank while performing third party security reviews of service providers across all of the Bank’s markets.

• Effectively communicate the security risks to internal and external stakeholders.

• Effectively communicate and manage relationships with stakeholders globally.

Processes

• Diligently provide weekly and ad hoc reporting on status of reviews.

• Support any training and awareness initiatives relating to third party security risk.

• Support and assist in third party program improvement initiatives.

• Assist in the development of new/amended processes, innovative ways of working and reviewing risk and control assessments.

• Assist in the forward planning and prioritisation of vendor assessments or requests from business stakeholders, and resource allocations.

Key Responsibilities

Risk Management

• Maintain a register of third party security risks and ensure that deficiencies are mitigated.

• Support the Head of TPSR to ensure compliance with relevant regulations covering third party security risk.

• Monitor and report on third party security risk compliance to stakeholders.

• Remain current on industry trends and regulatory requirements related to third party information security

Key Roles & Responsibilities

• Manage a register of third party security risks and ensure that deficiencies are mitigated.

• Support any training and awareness initiatives relating to third party security risk.

Governance

• Diligently provide weekly and ad hoc reporting on status of reviews.

Regulatory & Business conduct

• Display exemplary conduct and live by the Group’s Values and Code of Conduct.

• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

• Follow the Leadership of Head of TPSR to achieve the outcomes set out in the Bank’s Conduct Principles: Fair Outcomes for Clients; Effective Operation of Financial Markets, Financial Crime Prevention; Creating the Right Environment.

• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Industries:Banking, Financial Services, Investment Banking