About Standard Chartered
We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.
To us, good performance is about much more than turning a profit. It%27s about showing how you embody our valued behaviours – do the right thing, better together and never settle – as well as our brand promise, Here for good.
We%27re committed to promoting equality in the workplace and creating an inclusive and flexible culture – one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.


PURPOSE:

  • Security Technology Services (STS) is a critical function within Standard Chartered Bank operating under the overall purview of Technology Services .
  • The STS team is made up of cyber security thought leaders, who are accountable for the provision of a global set of cyber security services and products in order to maintain and continuously improve Bank’s cyber security posture in today’s ever evolving cyber security landscape.
  • The STS function protects the Bank from cyber security threats by delivering effective information security technology services, managing and responding to security incidents to ensure, and support the continuity and growth of Bank’s business operations; and meet the both internal and external stakeholders’ expectations across 70+ countries and territories, in which SCB operates.
  • Within this function we are looking for a skilled Engineer who will drive the implementation of Cloud Security Solutions to improve the Bank’s security posture and protect it from complex cyber threats. The ideal candidate would have an Engineering mindset with excellent problem solving capabilities and would be able to convert abstract ideas to working solutions.

RESPONSIBILITIES:

  • Manages and continuously enhances capabilities within Security Technology service portfolio.
  • Would be responsible for integrating new Encryption, Key Management, Tokenization services with applications in the cloud
  • The role partners with technical teams and senior architects to analyse technical and non-technical requirements to build robust encryption solutions for cloud-based applications
  • Operates various Data Security technology tools, based on specialization, but not limited to PKI, Key Management, HSM, Encryption, Tokenization,
  • Operates and provide expert guidance on encryption, key management and tokenization solutions in the cloud
  • Makes recommendations to improve integration of applications with enterprise key management solutions
  • Coordinate solution implementation, advisory, problem management, change control and incident response.
  • Collaborates with business teams, infra teams, security operations and offers technical guidance
  • Develops, tracks and analyses actionable metrics to continuously improve tooling and procedures and provide visibility of operations to management.
  • Performs security assessments and vulnerability analysis as required to justify risk tolerances and acceptances
  • Documentation of security infrastructure, implementation, operational manuals and developing configurations to meet new business requests
  • Review findings from and Identify root causes for common issues and provide recommendations for sustainable improvement.

KEY STAKEHOLDERS:

  • Head, Security Technology Services
  • Head, Infrastructure Engineering
  • Services Domain Heads within Security Technology Services
  • Other relevant functions with Technology Services (Infrastructure Services, Networks etc.)

COMPETENCIES (KNOWLEDGE %26amp; SKILLS):

  • A Bachelor%27s degree in Engineering or related fields
  • 8 – 10 years of progressive Data Security experience with at least 3 years in delivering enterprise solutions
  • Hands on experience in public clouds (AWS/Azure) is a must
  • Must have experience in implementation of Encryption, Key Management technologies at an enterprise scale
  • Strong conceptual understanding of Symmetric and Asymmetric key based cryptography including PKI and X.509 certificates
  • Must have experience in implementing Cryptographic solutions in the cloud, including implementation of Key Management Systems
  • Skillsets in the following would be an advantage:
  1. Scripting experience in python
  2. Experience in Infrastructure as a Code Products (Terraform, Cloud Formation)
  3. Working knowledge of Containers and container orchestration platform
  4. Continuous Integration / Continuous Deployment practise, tooling, and techniques, (Jira, Confluence, BitBucket, git; Jenkins, Artifactory, Terraform, Packer, Rundeck, Ansible, AWS, ELK, AppDynamics etc)
  • Experience in working with geographically dispersed teams, preferably in the Financial Services industry.
  • Experience with enterprise applications (architecture, development, support, and troubleshooting).
  • Experience and exposure to threat modelling and design reviews to assess security implications and requirements for introduction of new technologies.
  • Strong interpersonal and communication skills; ability to work in a team environment
  • Ability to work independently with minimal direction; self-starter/self-motivated
  • Technical writing experience is a plus
  • Industry certifications like CISSP, Azure %26amp; AWS related certifications would be plus

Apply now to join the Bank for those with big career ambitions.
To view information on our benefits including our flexible working please visit our . We welcome conversations on flexible working.


Source link