The Role Responsibilities
The Group Chief Information Security Officer (CISO) organisation is instrumental in protecting and ensuring the resilience of Standard Chartered Bank’s data and IT systems by managing Information and Cyber Security (ICS) risk across the enterprise.
Cyber Security domain is central to ensuring the Bank’s ability to meet its ICS commitment to internal and external stakeholders, including regulators, as well as maintaining an acceptable ICS risk profile that is regularly reported to the Board, and that is supported by the Group ICS Risk & Governance Function.
The Lead Strategy & Planning role provides core Strategy & Planning support for the Global Head Cyber Security with a core focus on Strategy, Planning, Business Operations and Special Project Delivery.
Strategy
CS Strategy:Development of the CS strategy to define, plan and coordinate the delivery of the functions long term objectives supporting and contributing to the wider ICS, TTO and Group Strategies. The CS strategy sets out the general direction and principles for the function by providing a desired future state and the high-level steps to achieve. Ensure initiatives to deliver the strategy are signed off by MT & Stakeholders, clearly communicated across CS, all supporting initiatives are funded in the annual investment cycle and are prioritised as part of Cyber Planning & Prioritization (P&P) Forum. Strategic outcomes are to be linked to OKRs & Objectives, with regular status reporting and coordination of any corrective measures to meet objectives.
Mission and Vision: Capturing the Mission and Vision for the function and ensuring it is aligned to Information & Cyber Security, TTO, Corporate Strategy and Industry strategic themes. Ensure Mission & Vision are clearly communicated & understood across Cyber Security & stakeholders and embedded into CS planning and prioritization of work.
Priorities and Objectives:Define and communicate CS annual objectives and metrics ensuring alignment to wider ICS, TTO and Group objectives. Establish and manage the framework for measuring performance, aligning and prioritizing all BAU & Project work against agreed objectives. Provide accurate monthly status reporting in CS P&P forums, Monthly MT Meetings and coordinate any corrective action required to meet objectives that are lagging.
Business
Maintain strong stakeholder engagement with CS MT, ICS MT, TTO MT, GTO MT, Finance, HR and Vendor Management to ensure alignment across stakeholder groups.
Work with the CS MT to ensure work is prioritised across competing demands to achieve the committed outcomes Cyber Security
Escalate appropriately to ensure Domain Accountable MT are briefed and necessary decisions are made in a timely manner
Responsible for the definition, documentation and continuous improvement of the Cyber Security operating model to ensure roles and responsibilities are clearly defined and the function is optimally structured, organised and is within the approved annual budget. Partner with ICS Strategy, Budget & Service Management, Finance and other stakeholders to manage any change to CS Target Operating Model in alignment with organisational standards & targets.
Support the Global Head of CS in developing high quality materials to enable clear and transparent reporting of risks, progress and strategic trends to senior stakeholders across the bank, along with external stakeholders as required. Provide CS wide visibility for all governance forums, reports, engagements and material submission due dates, ensuring quality materials are published & signed off within agreed timeframes. Provide oversight and ownership of Reporting & Engagement process and drive initiatives to streamline reporting process, drive efficiency and improve quality & accuracy of materials.
Special Projects: Project Manage and coordinate special projects that span across domains to deliver change and high priority initiatives across CS.
Book of Work/Backlog Management:Coordinate and manage the central BAU backlog and prioritisation process to track and manage the core deliverables across the function. Matrix manage domain aligned S&P leads to deliver and track deliverables consistently across CS organisation
Communications and Engagement: Partner with TTO Comms team & CS MT to define and implement annual comms strategy across CS, ensuring the team and our key stakeholders are informed, updated and engaged on a consistent and regular basis (Examples include all Town Halls, Stakeholder Briefings, People Leader and MT Connect sessions, newsletters, function wide training and development).
Processes
Budget & Cost Management (BAU):Manage the annual BAU budget planning exercise across CS to define and sign-off annual resource and vendor budget requirements. Enhance monthly financial reporting process to drive domain-level budget ownership & accountability ensuring accurate monthly financial reporting and early awareness of any projected overruns. Support CS Global Head in assessing all requests against annual BAU budget prior to approval and coordinate discussions and activities required to reduce any projected overspend and meet annual budget within approved tolerances.
Demand Management (Investment): Coordinate annual planning exercise for all new investment and projects across CS.Engagement with core stakeholders across BAU, TRP and ICS to ensure requirements, associated costs and dependencies are identified, aligned and internally prioritised against CS/ICS/Investment Objectives & Strategy.Proposed Investment budget to be socialised and agreed with CS Stakeholders and manage submission from Investment Prioritization through to approval.Ensure work submitted through CS P&P forum is part of approved investment budget and ensure any future changes are managed through the formal Governance processes & forums (i.e. Investment Prioritization, Cyber P&P; ICS RF & QPR)
Build & Maintain/Investment Delivery:End to end ownership of Monthly CS Planning & Prioritization forum ensuring adherence to Bank’s policies and governance standards for delivery of project work. Ensure all ‘Change’ type activity across both BAU and Investment are channelled through CS P&P, all work is prioritized against the agreed objectives to facilitate trade-off discussions and all outcomes & decisions are minuted. Partner with BAU, Investment, PMO and ICS B&M teams to transition BAU and TRP to Build & Maintain construct where applicable, and streamline monthly forums through implementation of standardised templates, planning processes and implementation of Unified Backlog for managing and tracking work.
Continuous Improvement:Drive continuous improvement within the CS function by managing and tracking initiatives that champion improved efficiency.
People & Talent
Work with HR & CS MT to define and execute the CS people strategy, including TOM, location strategy, spans & layers and skill requirements
Develop and motivate a globally diverse team within direct line management.Build a resilient team, enabling an environment where mistakes are opportunities for all to learn and improve, where speaking up is encouraged and positively recognised.
Provide leadership, management and coaching to direct reports to ensure they are highly engaged and performing to their potential.
Set job descriptions and objectives for direct reports and regularly provide feedback on performance against those responsibilities and objectives.
Lead through example and build the appropriate culture and values.Set appropriate tone and expectations across the portfolio and work in collaboration with risk and control partners.
Risk Management
Delegated responsibilities across third party agreements and hiring approvals up to approved limit, whilst individual CS MT members are responsible for their individual budgets, the CS Strategy & Planning Lead provides oversight and support across workforce and vendor management, as such is acts as a partner, and delegated approver, to the CS MT Members and aids in highlighting risks and opportunities
Exercise urgent and effective remediation of risks and issues impacting the delivery, escalate when appropriate
Governance
Secure investment funding to deliver the strategic goals by building a compelling case for change, and by reviewing, challenging, and approving business cases.
Oversee the definition of a set of key deliverables and KPIs which enable tracking of delivery.
Support Global Head CS & CS Management team to ensure CS wide adherence to annual conduct & mandatory compliance standards.
Provide a single group view of current CS investment programmes and improvement activities
Oversight and coordination of, with delegated ownership from Global Head, Cyber Security, the Master Service Agreement, Master Service Level Agreements and Outsourcing initiatives across CS ensuring adherence to Bank and regulatory standards, supporting Country level service reviews, Periodic Risk Reviews and related service, risk and control commitments.
Regulatory & Business Conduct
Display exemplary conduct and live by the Group's Values, Valued Behaviours, and Code of Conduct
Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across the Bank.
Lead the team to achieve the outcomes set out in the Bank's Conduct Principles.
Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters.
Display exemplary conduct and live by the Group’s Values and Code of Conduct.
Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
Help the Group meet its commitment of being “Here for Good”
Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
Key stakeholders
Global Head, Cyber Security
Cyber Security Management Team
ICS Management Team (MT) Members
Chief Information Security Officers (CISOs) across all businesses and functions
Chief Information Security Risk Officers (CISRO/ISRO) across all businesses and functions
COOs/CIOs of different businesses/functions
ICS Risk and Governance Management Team (R&G MT) Members
Group Internal Audit (GIA)
HR Business Partners
Sourcing & Vendor Management
Other Responsibilities
Embed Here for good and Group’s brand and values in ICS Cyber Security Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures
Our Ideal Candidate
10+ years of experience in the financial domain.
Strong organisational skills and process discipline to drive multiple agendas, with flexibility and responsiveness to handle changing priorities and requirements from stakeholders.
Creative problem-solver able to quickly prioritise, break down an issue and identify a path to resolution, able to work on broad strategic multi-year initiatives as well as day-to-day processes and tasks.
Experienced in information technology management and approaches, able to understand and be comfortable with cyber security jargon, global and diverse working experience across matrixed organisations.
Experience engaging and influencing at senior levels internally and externally, including directly engaging with or presenting to Board members, regulatory bodies, and senior stakeholders.
Experience of developing a people strategy, operating models, and organisational design, influencing relevant stakeholders and decision makers, and executing decisions efficiently and consistently.Capabilities in driving people change/diversity/culture improvement programs required.
Strong sense of personal ownership and responsibility in accomplishing the organisation’s goal. Is confident in capabilities, though resilient enough to handle mistakes as an opportunity to learn and improve, quick to learn, high energy levels and happy to roll-up candidate sleeves to drive success.
Extensive experience working across business management, Service Office, risk and planning domains, management and oversight of budgeting and forecasting cycles, particularly around headcount and vendor spend, high level of discretion given restricted and confidential information handled.
Excellent communication skills – oral, written and presentation, enables transparency and sharing of information and skills with an ability to break down complex concepts to an appropriate level for the audience.
Able to make the challenging decisions, influence key parties and effect change.
Education : Graduation
Project Management certification useful.
Role Specific Technical Competencies
Business Management
Process Management
Cyber Security
Project Management & BOW prioritization
Communications, Materials Preparation & Presentation Skills
Budget Planning & Tracking
About Standard Chartered
We're an international bank, nimble enough to act, big enough for impact. For more than 160 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents. And we can't wait to see the talents you can bring us.
Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion. Together we:
Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
Be better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term
In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.
Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations
Time-off including annual, parental/maternity (20 weeks), sabbatical (12 weeks maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum
Flexible working options based around home and office locations, with flexible working patterns
Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning
Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.
Recruitment assessments - some of our roles use assessments to help us understand how suitable you are for the role you've applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.
Visit our careers website www.sc.com/careers