Head of Malware Protection and Network Security Head of Malware Protection and Network Security …

Standard Chartered Bank
in Singapore, Singapore, Singapore
Permanent, Full time
Last application, 01 Jun 20
Standard Chartered Bank
in Singapore, Singapore, Singapore
Permanent, Full time
Last application, 01 Jun 20
Head of Malware Protection and Network Security
About Standard Chartered
We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.

To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.

We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.

Role Responsibilities

Cyber Security Services is a critical function within Standard Chartered Bank operating under the overall purview of COO - Trust, Data & Automation function. The Cyber Security Services Team is made up of cyber security thought leaders, who are accountable for the provision of a global set of cyber security services and products to maintain and continuously improve Bank's cyber security posture in today's ever evolving cyber security landscape. This includes managing and responding to information and cyber security incidents to ensure and support the continuity and growth of Bank's business operations; and meet the both internal and external stakeholders' expectations across 70+ countries and territories, in which SCB operates.

This is an Executive Director role who will report directly to the Global Head, Cyber Defence & Threat Management. The role will be accountable for the successful execution of Malware Protection & Network Security strategy, ensuring that there is appropriate funding, skilled resources, prioritisation, service integration and control sustainability and efficacy to protect the Bank. This is a transformational leadership role with the accountability to uplift the maturity and sophistication of the services (people, process, technology & governance) within the function delivering advanced capabilities to protect, detect and respond against sophisticated cyber threats.

Key responsibilities:
  • Provide leadership and oversight by setting the direction, strategy, deliverables, and operating model of the Malware Protection & Network Security within Cyber Security Services (CSS - CD&TM) function.
  • Drive strategic direction of Malware Protection & Network Security to protect the Bank's assets from various cyber threats -to avoid the financial loss and reputation damage by implementing the technology and controls for end protection against known and unknown threats,
  • Lead complex and Bank wide malware protection & network security improvement efforts that work across CSS, End User Services, infrastructure services, DevOps, and Cloud Computing domains.
  • Drive the capability uplifting to ensure an appropriate toolset, technologies and processes are in place to optimise, automated and achieve effective malware protection & network security service supporting the team's operational objectives.
  • Ownership of the Malware Protection & Network Security service catalogue content (including service fact sheets, service descriptions, service level objectives, total cost of ownership etc.)
  • Defines and maintains the Malware Protection & Network Security service and products strategy based on the evaluation of internal and external threat trends, business needs, regulatory and corporate drivers.
  • Plans and manages the financing of the Malware Protection & Network Security service (RtB, Continuous Improvement budget, CtB) within the applicable financial framework.
  • Manage and coordinate the effective delivery of high quality, cost effective, pragmatic and threat driven Malware Protection & Network Protection service.
  • Work with stakeholders such as End User Services, Infrastructure Services, Cyber Defence Centre, Security Monitoring & Analytics, Secure Design Centre, CISRO, IT Risk etc. to ensure the continuous improvement of the bank's Cyber Security capabilities
  • Act as the delegated Group Process Owner (GPO) responsible for executing and full front to back control oversight over the respective Malware Protection & Network Security controls and processes as defined in the Group's Operational Risk Framework and ICS RTF
  • Performs thorough assessment and analysis on new and existing changes to Malware Protection & Network Security service capability and its end-to-end components, ensuring fit for purpose solutions and appropriate service components are implemented.
  • Act as the Bank's thought leader for Malware Protection & Network Security and ensure the service stays ahead of competitive and industry trends.
  • Proactively engage with stakeholders to obtain buy-in for the service and manage the escalations and expectations accordingly.
  • Act as the SME during regulatory engagements when discussing Malware Protection & Network Security topics.
  • Manage a team of Subject Matter Experts at senior levels.
Regulatory & Business Conduct
  • Display exemplary conduct and live by the Group's Values and Code of Conduct.
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.

Our Ideal Candidate
  • Degree in Engineering, Computer Science/Information Technology or its equivalent.
  • At least 10 years of experience in ICS
  • Experience in Cyber & Information Security in Banking and Financial services.
  • One or more of the following certifications will be preferred:
    • Certified Information Security Manager (CISM)
    • Certified Information Systems Security Professional (CISSP)
    • SANS Global Information Assurance Certifications (GIAC)
    • Certified in Risk & Information Systems Control (CRISC)
    • Certified Information Systems Auditor (CISA)
  • Strong knowledge of Threat detection & Network Security products preferred.
  • Strong knowledge of cyber security frameworks, information security principles, architecture.
  • Ability to articulate gross and residual risk with specific ability to clearly, concisely and accurately communicate complex technology and process risk to non-technical stakeholders in a lucid way.
  • Strong interpersonal and stakeholder management skills, across various levels in the organization including senior leadership teams, in influencing key decisions taken in the business and in support teams.
  • Strong communication skills - oral, written and presentation. Sound knowledge of MS-Excel, PPT, and Word.
  • Must be a self-starter who is able to initiate and successfully drive programs and projects to completion with little or no management supervision.
  • Strong analytical skills and ability to prioritise, make decisions, and work to tight timeframes.
  • Strong business acumen and deep knowledge and experience in the ICS field.
  • Proven ability to lead highly complex, global activities through influence and credibility rather than command and control.
  • Ability to both assess strategic priorities and to focus on detailed aspects of a function in order to drive effective delivery. Strong integrity, independence and resilience.

Apply now to join the Bank for those with big career ambitions.

To view information on our benefits including our flexible working please visit our career pages .