• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Be better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations
• Time-off including annual, parental/maternity (20 weeks), sabbatical (12 weeks maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum
• Flexible working options based around home and office locations, with flexible working patterns
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

• Ensuring business strategies, standards and roadmap abide by T&I operating principles, policies and procedures of Country and Group and the Enterprise Risk Management Framework (“ERMF”)
• Ensuring that the executions of T&I functions are fully compliant with statutory regulations, laws, guidelines and industry practises for Technology Risk Management, Information & Cyber Security covering T&I Security Technology Services (“STS”) and Technology Governance
• Support the Cluster CIO in the overall effective and proactive management of all T&I risks, governance and controls

• Oversee the risk management practice to manage the risks timely within the Cluster (including the Cluster risk indicators) and prepare the Cluster Risk Summary for T&I Asia Risk Forum (“T&I ARF”).
• Oversee the internal and external/ regulatory audit exercises across the Cluster and follow-up on the progress of remediation plans for the identified gaps.
• Information preparation of risk forum/ committee such as IT Steering Committee, T&I ARF, Asia Risk Committee and any other regular/ ad-hoc risk meetings in accordance with the TOR.
• Support the Regional Head, Risk & Control, Asia T&I in driving effective risk discussions in T&I ARF, and conduct Cluster level review/ thematic risk review exercises within Asia T&I (where necessary).
• Identify and further escalate any material risk arises from the Cluster to the Regional Head, Risk & Control, Asia T&I.
• Prepare the consolidated input for Cluster on various occasional Asia T&I risk matters/ practices such as DR practice, technology outsourcing management, technology related regulations.

• Support the Cluster CIO as the 1st line Risk Framework Owner for Technology, and work closely with the other relevant risk types such as Information and Cyber Security (“ICS”) Risk, Compliance Risk, Conduct Risk and Reputational Risk, in accordance with the ERMF.
• Responsible for the preparation, communication, implementation, delivery and expansion of T&I risk management plans, and represent T&I to liaise with regulators on technology risk governance.
• Oversee the implementation of Group T&I Policies and Standards in country and/or Cluster.
• Oversee effective risk management practice implementation in T&I including Risk Identification, Assessments, Measurements, Acceptance and Monitoring.
• Oversee internal and external/ regulatory audit exercises and the progress of remediation plans for the identified gaps, and ensure relevant risk incurred is properly managed through ERMF.
• Oversee regular residual risk assessment and risk acceptance for T&I processes.
• Provide timely and accurate management reporting to the CIO and relevant senior stakeholders for proper manage of technology and ICS risks.
• Provide support for the End User Computing implementation.
• Drive proactive risk management culture in T&I.

• Represent T&I in various risk forums and committees (such as Cluster T&I Risk Forum, Third-Party Risk Management Sub-Committee, ID Data Governance Committee, T&I ARF).
• Drive effective risk discussions within the Cluster T&I Risk Forum and oversee timely remediation of identified risks.
• Represent T&I Risk & Control (“R&C”) in other committees/ forums whenever necessary such as Project Steering Committee, and assist regulatory approvals for e-Banking and technology outsourcing initiatives whenever necessary

• Support the Cluster CIO to formulate the strategic plan in enhancing the system stability from a risk point of view.
• Review and provide oversight on the root cause analysis and follow-up on the closure of remediation plans.
• Provide oversight on the performance of the T&I service providers.
• Oversee the ongoing treatment of obsolescence risk.
• Review and provide oversight on effective contingency and resilience of Technology Service Delivery.

• Ensure T&I relevant ICS policy is well circulated amongst Bank’s businesses, functions, geographies and subsidiaries.
• Ensure applicable controls are identified, assessed and implemented by the business owners.
• Collaborate with Group Security Technology Services on local governance, if needed.

• Lead through example and build the appropriate culture and values. Sets appropriate tone and expectations for the team and work in collaboration with risk and control partners.
• Employ, engage and retain high quality (skill and experienced) people to deliver its obligations.
• Ensure the provision of ongoing training and development; ensure that direct reports are suitably skilled and qualified for their roles and that they have effective supervision in place to mitigate any risks.
• Set and monitor job descriptions and objectives for direct reports and provide feedback and rewards in line with their performance against those responsibilities and objectives

• Display exemplary conduct and live by the Group’s Values and Code of Conduct.

• Group T&I Management Team
• Asia CIO, Cluster CIOs & Country CIOs
• Regional Head, Risk & Control, Asia T&I
• Business & Function Heads
• Country 1st Line (including Business, COO, ICS, relevant risk managers)
• Country 2nd Line (including Operational Risk, CISRO, Fraud, Compliance)
• Country 3rd Line (GIA)

• Regulators and other government departments/officials
• Auditors/ Independent Assessors
• Industry partners/vendors, Banking Associations etc

• Very good level of understanding of operations and technology
• Compliance, Audit and/or Operational Risk background
• Results driven with strategic qualities
• Visionary leader able to engage and motivate performance in others
• High degree of independence, responsibility, and integrity
• Strong project management skills with demonstrable track record in a dynamic environment
• Knowledge of quality tools, procurement, and logistics planning
• Bachelor’s degree in technology/finance. Business Administration or related disciplines
• Relevant managerial experience
• Excellent communication capability – good command of written English
• Ability to work within a multi-function, multi-discipline team environment with strong influencing and stakeholder management skills

Standard Chartered