Technology Risk and Control Manager

Technology Risk and Control Manager

Standard Chartered
Not Specified
Not Specified

Job Description

About Standard Chartered
We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.
To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.
We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.
The Role Responsibilities
As a Risk and Control Manager is responsible to ensure that Technology and Innovation (&ldquoT&I&rdquo) teams to operate in full compliance with all Country and Group policies as well as local regulatory requirements

  • Ensuring business strategies, standards and roadmap abide by T&I operating principles, policies and procedures of Country and Group and the Enterprise Risk Management Framework (&ldquoERMF&rdquo)

  • Ensuring that the executions of T&I functions are fully compliant with statutory regulations, laws, guidelines and industry practises for Technology Risk Management, Information & Cyber Security covering T&I Security Technology Services (&ldquoSTS&rdquo) and Technology Governance

  • Support the T&I team in the overall effective and proactive management of all T&I risks, governance and controls

Risk Oversight

  • Support the Cluster CIO as the 1st line Risk Framework Owner for Technology, and work closely with the other relevant risk types such as Information and Cyber Security (&ldquoICS&rdquo) Risk, Compliance Risk, Conduct Risk and Reputational Risk, in accordance with the ERMF.

  • Responsible for the preparation, communication, implementation, delivery and expansion of T&I risk management plans and represent T&I to liaise with regulators on technology risk governance.

  • Oversee the implementation of Group T&I Policies and Standards in country and/or Cluster.

  • Oversee effective risk management practice implementation in T&I including Risk Identification, Assessments, Measurements, Acceptance and Monitoring.

  • Oversee internal and external/ regulatory audit exercises and the progress of remediation plans for the identified gaps, and ensure relevant risk incurred is properly managed through ERMF.

  • Oversee regular residual risk assessment and risk acceptance for T&I processes.

  • Provide timely and accurate management reporting to the CIO and relevant senior stakeholders for proper manage of technology and ICS risks.

  • Provide support for the End User Computing implementation.

  • Drive proactive risk management culture in T&I.


  • Represent T&I in various risk forums and committees (e.g. Business Forums, Third-Party Risk Management Sub-Committee, ID Data Governance Committee).

  • Drive effective risk discussions within the Cluster T&I Risk Forum and oversee timely remediation of identified risks.

  • Represent T&I Risk & Control (&ldquoR&C&rdquo) in other committees/ forums whenever necessary such as Project Steering Committee, and assist regulatory approvals for e-Banking and technology outsourcing initiatives whenever necessary

System Stability

  • Support the Cluster CIO to formulate the strategic plan in enhancing the system stability from a risk point of view.

  • Review and provide oversight on the root cause analysis and follow-up on the closure of remediation plans.

  • Provide oversight on the performance of the T&I service providers.

  • Oversee the ongoing treatment of obsolescence risk.

  • Review and provide oversight on effective contingency and resilience of Technology Service Delivery.

Information Security

  • Ensure T&I relevant ICS policy is well circulated amongst Bank&rsquos businesses, functions, geographies and subsidiaries.

  • Ensure applicable controls are identified, assessed and implemented by the business owners.

  • Collaborate with Group Security Technology Services on local governance, if needed.

Regulatory & Business Conduct

  • Display exemplary conduct and live by the Group&rsquos Values and Code of Conduct.

Key Stakeholders

  • Business & Function Heads

  • Country 1st Line (including Business, COO, ICS, relevant risk managers)

  • Country 2nd Line (including Operational Risk, CISRO, Fraud, Compliance)

  • Country 3rd Line (GIA)


  • Regulators and other government departments/officials

  • Auditors/ Independent Assessors

  • Industry partners/vendors, Banking Associations etc

Our Ideal Candidate

  • Very good level of understanding of operations and technology

  • Compliance, Audit and/or Operational Risk background

  • Results driven with strategic qualities

  • High degree of independence, responsibility and integrity

  • Strong project management skills with demonstrable track record in a dynamic environment

  • Knowledge of quality tools, procurement, and logistics planning

  • Bachelor&rsquos degree in technology/finance. Business Administration or related disciplines

  • Ability to work within a multi-function, multi-discipline team environment with strong influencing and stakeholder management skills

Apply now to join the Bank for those with big career ambitions.
To view information on our benefits including our flexible working please visit our . We welcome conversations on flexible working.

Job Details

Job Source :

Similar Jobs

Career Advice to Find Better