Specialist Operational Risk Subject Matter Expert for Information & Cyber Security Specialist Operational Risk Subject Matter Expert  …

Standard Chartered Bank
in Singapore, Singapore, Singapore
Permanent, Full time
Be the first to apply
Competitive
Standard Chartered Bank
in Singapore, Singapore, Singapore
Permanent, Full time
Be the first to apply
Competitive
Standard Chartered Bank
Specialist Operational Risk Subject Matter Expert for Information & Cyber Security
About Standard Chartered
We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.

To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.

We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.


The Role Responsibilities


Strategy

  • Operational Risk spans an array of potential for financial loss and negative impact on our clients and providers of capital. A developed understanding of this potential and the business case for minimising loss and impact is a requirement for this role .

  • From a regulatory perspective, under Section 320 of the European Union Capital Requirements Regulation (CRR) banks are required to demonstrate the ability to identify their exposures to Operational Risk and have in place an appropriate system of monitoring and control, Understanding this and other relevant regulatory requirements and guidance in respect of Operational Risk is a requirement for this role.

  • While the majority of risk management is done in the First-Line, the Group Operational Risk (GOR) team is accountable for monitoring and ensuring that Operational Risk is appropriately identified, assessed, understood/calibrated, controlled and managed, with Risk Appetite clearly articulated and supported by appropriate stress testing. GOR is also responsible for ensuring appropriate escalation, follow-up and learning from Operational Risk Events / Incidents.

  • Working in partnership with CROs, Single Points of Contact, Country and Regional Second-Line Operational Risk experts, those charged with Operational Risk management in the First-Line and identified SMEs enterprise wide the team is charged with ensuring the adequacy of - and adherence to - a comprehensive Operational Risk Type Framework as it pertains to their area of expertise.

  • The role-holder is required to understand the role and responsibilities of the GOR team as a whole and how these are discharged by the team, actively contributing to development and improvement in the same, as well as to remain informed of pertinent industry and organisational developments.

Business

The role-holder is also charged with supporting Businesses and Functions define their Operational Risk strategy in conjunction with CROs, Single Points of Contact, Group Internal Audit and Compliance. This includes the challenging of Businesses' and Functions' strategies and Corporate Plans as they pertain to Information and Cyber Security risk .

This will be achieved through delivery of the following:
  • Advice & Engagement : Offering a point of deeper expertise around more technical areas of operational risk, including through engaging with regulators and the broader market, offer subject matter expertise
  • Governance : Help develop and inculcate the right policy, process, technology and governance architecture, in partnership with ERM and Country Management where appropriate.
  • Support : Support delivery of core end-to-end second-line operational risk activity .
In terms of specific COEs (Information & Cyber Security - ICS) we would highlight the following responsibilities:
  • Design & Guidance : Acting as the hub for identifying risks, designing process and controls and providing overarching guidance around the relevant COE to all stakeholders (First Line and Second Line).
  • Escalation Point for Queries : Responding to proactive questions and queries in respect of the relevant COE, alongside more formal escalation of queries or requests for support through relevant frameworks and standards.
  • Coordination and Alignment : Seeking to align and co-ordinate the delivery of CROs' and Single Point of Contacts' responsibilities in respect of the relevant COE.
  • Group Level Activities : Providing input and expertise to Group-level routines and deliverables in respect of the relevant COE.
Processes
  • Support line management in all Second-Line accountabilities within the Operational Risk Type Framework, as they pertain to the relevant COE ( ICS ) to deliver the same effectively and efficiently.
  • Fully adhere to - and actively contribute to - all agreed governance (e.g. committees) and other routines (regular meetings, attendance at other forums) for the GOR team or, where applicable and requested, that relate to the relevant COE ( ICS ) .
  • Act as an advocate for the GOR team, its objectives and best practice in Operational Risk management more broadly where opportunity arises.
  • Adhere to such other process and governance requirements as requested by line management, from time to time.
People and Talent
  • Team Management: Uphold and reinforce the independence of the GOR team, including through setting and monitoring appropriate Job Descriptions for direct reports and rigorous adoption of other people management routines (objective setting, performance reviews, development and training reviews etc.)
  • Talent Management: Help the GOR team to identify, attract, employ, engage and retain high performing and high potential individuals as needed for the team and more broadly, including ensuring a high-quality succession pipeline.
  • Leadership: Lead through example and tone and help to build the appropriate culture and values within the team and across the wider organisation, communicating vision and building commitment and energy to focus on key priorities
Risk Management
  • Ensure all activity adheres to the Risk Management Framework, with a specific focus on ensuring an effective framework for the management of Operational Risks within the team as they pertain to the role.
Governance
  • Demonstrate an awareness and understanding of the regulatory framework in which the Group operates, and the regulatory requirements and expectations relevant to the role.
  • Deliver 'effective governance'; capability to challenge colleagues effectively; and willingness to work in an open and cooperative manner with all.
Regulatory & Business Conduct
  • Display exemplary conduct and live by the Group's Values and Code of Conduct.
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
  • Lead the Risk CISRO function and impacted business and functions to achieve the outcomes set out in the Bank's Conduct Principles.
  • Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
  • [Support the Risk CISRO as needed for responses and dialog with the PRA/FCA].
Key Stakeholders
  • Group Operational Risk Team
  • Country Operational Risk Team
  • Key other Risk colleagues for Information & Cyber Security
  • First Line and Third Line stakeholders for Information & Cyber Security
  • Business leadership
  • Key change, operations and technology partners / vendors
Other Responsibilities
  • As delegated by line management from time to time.

Our Ideal Candidate

The role holder will have significant experience in Operational Risk management within the Banking industry, including relevant regulation and industry trends. In particular, the role holder will demonstrate:
  • A rigorous and analytical approach to risk management
  • Knowledge of the relevant COEs including relevance and importance.
  • Experience of business partnering, including the ability to synthesise and articulate complex and technical topics clearly to diverse audiences
  • Ability to manage a diverse and challenging stakeholder community / team
  • Proven experience with co-ordination of many dependencies in a complex, large-scale environment
  • Excellent oral, written communication and presentation skills
  • Specific strong competence in the use of Excel for analysis of complex data and PowerPoint for communication purposes
Ideally the role holder will have specific experience of Operational Risk frameworks and have an in-depth knowledge of some of the key organisational and operational challenges faced by a Second-Line Operational Risk function. Experience of balancing cost targets with delivery need, as well as regulatory requirements, would also be helpful.

The role holder should comply with all mandatory e-learning as prescribed from time to time.

Apply now to join the Bank for those with big career ambitions.

To view information on our benefits including our flexible working please visit our career pages .
Close
Loading...