Talent.com
This job offer is not available in your country.
Senior Risk Manager

Senior Risk Manager

Standard Chartered BankBukit Jalil, Kuala Lumpur, Malaysia
1 day ago
Job description

We are looking for a passionate Third-Party Cybersecurity Risk Assessor to join our dynamic cybersecurity team In this critical role, you will assess and manage the cybersecurity risks posed by third-party vendors, suppliers, and service providers, ensuring alignment with our organization's information and cyber security standards. You'll play a pivotal part in safeguarding sensitive data, protecting infrastructure, and enabling secure digital ecosystems in an ever-evolving threat landscape.

If you thrive in a fast-paced environment, are excited by emerging technologies and have a keen eye for risk and resilience, this opportunity is for you.

About our Technology & Operations Team

Our Technology & Operations (T&O) team is the powerhouse for the Bank. We aim to go further, faster, to ensure we're agile and ready for tomorrow, today. Our diverse network enables us to innovate and build banking solutions that support communities to prosper. We're a place where talented people are encouraged to grow, learn, and thrive, to drive their own career journeys, to reach their full potential.

When you work with us, you're protecting the reputation and legacy of a 170-year organisation and building on it. We're driven by progress and continuously evolving to ensure we're agile and ready for tomorrow, today

Strategy

  • The main responsibilities will be to support the Head of Third Party Security Risk in delivering the third party security risk program within the Bank.

Business

Business

  • Perform cybersecurity risk assessments on third-party vendors, suppliers, and service providers.
  • Lead due diligence assessments, security reviews, and continuous vendor risk monitoring.
  • Evaluate vendor responses to security questionnaires, attestations, and evidence artifacts.
  • Assess vendors' cybersecurity posture against standards like ISO 27001, NIST, GDPR, SOC 2, PCI-DSS, and best practices.
  • Analyse third-party cloud security controls, data protection measures, and threat management capabilities.
  • Document findings, provide risk ratings, remediation recommendations, and track actions to closure.
  • Partner with CISO, procurement, and business teams on vendor onboarding and contract renewals.
  • Continuously evolve and optimize third-party risk assessment methodologies and frameworks.
  • Leverage AI / ML tools and data analytics to enhance risk detection and predictive assessments.
  • Stay informed on the latest cybersecurity trends, threat intelligence, and regulatory developments.
  • Support audits, regulatory reviews, and compliance assessments related to third-party risk.
  • Communicate risk insights and reporting to executive leadership and stakeholders.

    • Processes

  • Diligently provide weekly and ad hoc reporting on status of reviews.
  • Support any training and awareness initiatives relating to third party security risk.
  • Support and assist in third party program improvement initiatives.
  • Assist in the development of new / amended processes, innovative ways of working and reviewing risk and control assessments.
  • Assist in the forward planning and prioritisation of vendor assessments or requests from business stakeholders, and resource allocations.

    • People & Talent

  • Manage a register of third party security risks and ensure that deficiencies are mitigated
  • Support any training and awareness initiatives relating to third party security risk.

    • Risk Management

  • Maintain a register of third party security risks and ensure that deficiencies are mitigated.
  • Support the Head of TPSR to ensure compliance with relevant regulations covering third party security risk.
  • Monitor and report on third party security risk compliance to stakeholders.
  • Remain current on industry trends and regulatory requirements related to third party information security

    • Governance

  • Diligently provide weekly and ad hoc reporting on status of reviews.

    • Regulatory & Business Conduct

  • Display exemplary conduct and live by the Group's Values and Code of Conduct.
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
  • Lead to achieve the outcomes set out in the Bank's Conduct Principles
  • Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
  • Serve as a Director of the Board
  • Exercise authorities delegated by the Board of Directors and act in accordance with Articles of Association.

    • Key stakeholders

  • Supply Chain Management
  • Business Functions

    • Other Responsibilities

    Embed Here for good and Group's brand and values in TPSR Team; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures.

  • Ideally 3 years of experience in information security / IT auditing, with Big 4 and / or Banking & Financial services experience
  • Candidate with Cyber security background , Understanding and knowledge OF ICS / IT
  • Experience in third party audits is a plus, but understanding of auditing standards, compliance, risk assessment and internal control frameworks is a requirement.
  • Knowledge of security frameworks (e.g. COBIT, ISF, COSO), standards (e.g. ISO, NIST, CIS), information security principles, security architecture and regulatory requirements will be a plus.
  • Familiarity with working in a MNC or cross-cultural setting.
  • Excellent written and interpersonal skills.
  • Good risk management , understanding emerging risk / technologies AI / ML.
  • Ability to draft reports that clearly communicate observations and risks would be required.
  • Strong stakeholder engagement skills, and ability to interact at all levels across an organisation.
  • Strong audit project organisation and management skills.

    • Optional Skills :

  • Certified Information Systems Security Professional (CISSP)
  • Systems Security Certified Practitioner (SSCP)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Security Manager (CISM)
  • Certified Cloud Security Professional (CCSP)
  • Strong communication skills in English

    • o    Deep understanding of cybersecurity principles, data privacy, and regulatory frameworks.

    o    Expertise in third-party risk management (TPRM), cyber risk quantification, and vendor assessments.

    o    Understanding of AI, ML, Cloud Security (AWS, Azure, GCP), and Zero Trust Architecture.

    o    Familiarity with security testing methods like Vulnerability Assessment, Penetration Testing (VAPT), and Red Teaming.

    o    Ability to analyse technical evidence, security policies, and complex risk scenarios.

    o    Excellent written and verbal communication with the ability to influence stakeholders at all levels.

    o    Analytical mindset with problem-solving skills and attention to detail.

    o    Ability to prioritize tasks and manage multiple assessments in a fast-paced, agile environment.

  • Additional information

    • o    May require occasional travel for onsite vendor assessments.

    o    Experience working within highly regulated sectors (e.g., Banking, Finance, Healthcare) is highly desirable.

    o    Knowledge of regulatory requirements such as GDPR, CCPA, DORA is a plus.

  • Preferable certifications (e.g. CISSP, CCSP, CISA, CISM, CTPRP, CRISC etc.,)
  • Knowledge of security frameworks (e.g. COBIT, ISF, COSO), standards (e.g. ISO, NIST, CIS), information security principles, security architecture and regulatory requirements will be a plus.
  • Competency with Microsoft Office Suite (Word, PowerPoint, Excel, Visio, SharePoint).
  • Information System / Technology
  • ICS Audit / Risk / Assurance

    • We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

    Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

    Together we :

  • Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
  • Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
  • Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

    • In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

  • Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
  • Time-off including annual leave, parental / maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
  • Flexible working options based around home and office locations, with flexible working patterns.
  • Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
  • A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
  • Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.
    • Create a job alert for this search

    Senior Manager Risk • Bukit Jalil, Kuala Lumpur, Malaysia

    Related jobs
    • Promoted
    Senior Manager, Technology Risk Audit

    Senior Manager, Technology Risk Audit

    Industrial and Commercial Bank of China (Malaysia) BerhadKuala Lumpur, Kuala Lumpur, Malaysia
    Assist the Head in developing and implementing a flexible audit strategy using appropriate risk based methodology including business process risk assessments for key business lines.Establish work p...Show moreLast updated: 25 days ago
    • Promoted
    Senior Executive, Enterprise Risk Management

    Senior Executive, Enterprise Risk Management

    Malaysian Communications and Multimedia CommissionSepang, Selangor, Malaysia
    This role is focused on embedding risk awareness and accountability at all levels of the organisation.It covers the end-to-end delivery of the Risk Leaders Development Program (RLDP), the design of...Show moreLast updated: 1 day ago
    • Promoted
    Senior Manager / Manager, Risk Management

    Senior Manager / Manager, Risk Management

    Generali MalaysiaKuala Lumpur, Kuala Lumpur, Malaysia
    Responsible for implementing risk management processes to meet Company's objectives, local regulatory and group requirements. To execute plans and strategize effective risk control metrics and proce...Show moreLast updated: 1 day ago
    • Promoted
    Manager, Risk

    Manager, Risk

    Alliance Bank Malaysia BerhadKuala Lumpur, Kuala Lumpur, Malaysia
    Assist and guide functional unit on the implementation of operational risk management framework, tools and activities : . Identify, assess and report operational risks and adequacy of controls; includ...Show moreLast updated: 1 day ago
    Senior Manager, Credit Risk

    Senior Manager, Credit Risk

    Funding Societies | Modalku GroupKuala Lumpur, Federal Territory of Kuala Lumpur, MY
    Quick Apply
    SME digital finance platform in Southeast Asia.We are licensed and operating in Singapore, Indonesia, Thailand, Malaysia and Vietnam, and backed by Sequoia India (Peak XV), Softbank Vision Fu...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Credit Risk Analyst

    Senior Credit Risk Analyst

    RHB Banking GroupKuala Lumpur, Kuala Lumpur, Malaysia
    Develop, review and implement RAC for higher risk sector for Non-Retail Malaysia Operations and Overseas Operations.Identification of new emerging risk in sector other than selected higher risk sec...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Manager

    Senior Manager

    Boardroom Corporate Services Sdn BhdPetaling Jaya, Selangor, Malaysia
    A career in Boardroom Outsource Services, within Risk, Legal and Compliance, will provide you with the opportunity to make a difference by helping to fully leverage the skills and talents of all ou...Show moreLast updated: 1 day ago
    • Promoted
    Senior Manager

    Senior Manager

    AIA Shared ServicesCyberjaya, Selangor, Malaysia
    We don't simply believe in being 'The Best'.We believe in better - because there's no limit to how far 'better' can take us. We believe in empowering every one of our people to find their 'better' -...Show moreLast updated: 1 day ago
    Global Governance, Risk & Compliance Manager

    Global Governance, Risk & Compliance Manager

    PeopleLake GroupKuala Lumpur, Kuala Lumpur, MY
    A global technology leader providing IT Solutions such as Geoscience Software & Data Analytics Services, High-Performance Computing as a Service as well as IT Security – dealing with data sovereign...Show moreLast updated: 1 day ago
    • Promoted
    Senior Risk & Safety / CFD Consultant (SME)

    Senior Risk & Safety / CFD Consultant (SME)

    Bureau Veritas North AmericaKuala Lumpur, Kuala Lumpur, Malaysia
    Across all our businesses and countries, each one of our people leaves their mark.Being part of the BV family, is more than just working, it’s being convinced that you. Carry out formal safety asses...Show moreLast updated: 25 days ago
    • Promoted
    Senior Analyst Lead - Regulatory & Risk Reporting

    Senior Analyst Lead - Regulatory & Risk Reporting

    RBCKuala Lumpur, Kuala Lumpur, Malaysia
    To ensure all controls are completed in line with the departmental procedures.To assist the Team Manager / Department Head on projects, process improvements or new business initiatives as requested...Show moreLast updated: 5 days ago
    • Promoted
    Senior Associate - Credit Risk

    Senior Associate - Credit Risk

    DHL ExpressPetaling Jaya, Selangor, Malaysia
    Senior Associate - Credit Risk.Role Purpose : To ensure Dunning was successfully triggered and Monitor ICCC stop credit process aligning with Collection GSOP and Strategy. Analyse account in ICCC Sto...Show moreLast updated: 25 days ago
    • Promoted
    Senior Credit Manager, Regional Credit Management

    Senior Credit Manager, Regional Credit Management

    RHB Banking GroupKuala Lumpur, Kuala Lumpur, Malaysia
    Senior Credit Manager, Regional Credit Management.Evaluate Business Banking’s Commercial and CBBC credit applications and ensure only quality assets are booked. Make credit decisions to either recom...Show moreLast updated: 3 days ago
    • Promoted
    • New!
    Senior Manager / Manager, Market and Liquidity Risk Management

    Senior Manager / Manager, Market and Liquidity Risk Management

    Industrial and Commercial Bank of China (Malaysia) BerhadKuala Lumpur, Kuala Lumpur, Malaysia
    Responsible for the design, implementation, and ongoing maintenance of an effective and consistent bank-wide market risk management and Treasury Middle Office Function as follows : .Promote a prudent...Show moreLast updated: 20 hours ago
    • Promoted
    Senior Risk

    Senior Risk

    ImpactivaKuala Lumpur, Kuala Lumpur, Malaysia
    Carry out formal safety assessment (FSA) studies (qualitative, semi-quantitative, quantitative) such as Quantitative Risk Assessment (QRA), Consequence Modelling / Fire Explosion Risk Assessment Stu...Show moreLast updated: 1 day ago
    • Promoted
    Senior Manager - Cybersecurity

    Senior Manager - Cybersecurity

    HartalegaPetaling Jaya, Selangor, Malaysia
    The Head of Cyber Security is a strategic leadership role responsible for safeguarding the organization's digital assets, IT infrastructure, and sensitive data across both corporate IT and operatio...Show moreLast updated: 30+ days ago
    • Promoted
    Assistant Manager, Risk & Resilience

    Assistant Manager, Risk & Resilience

    PLUS MalaysiaPetaling Jaya, Selangor, Malaysia
    The incumbent will be responsible to develop, coordinate, and maintain PLUS’s risk management and resilience practices through comprehensive risk assessments and business continuity management.Th i...Show moreLast updated: 3 days ago
    • Promoted
    Senior Merchant Risk Analyst & Underwriting

    Senior Merchant Risk Analyst & Underwriting

    RazerShah Alam, Selangor, Malaysia
    Joining Razer will place you on a global mission to revolutionize the way the world games.LifeAtRazer experience that will put you in an accelerated growth, both personally and professionally.Lead ...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Compliance Manager - MY871598

    Senior Compliance Manager - MY871598

    Morgan Philips GroupKuala Lumpur, Kuala Lumpur, Malaysia
    Our client is a prominent, globally recognized leader in the insurance and takaful industry.They are a forward-thinking organization that prides itself on a culture of integrity, diversity, and con...Show moreLast updated: 30+ days ago
    • Promoted
    Senior Risk Manager, TPSR

    Senior Risk Manager, TPSR

    Standard Chartered BankBukit Jalil, Kuala Lumpur, Malaysia
    As a Cyber Security Analyst, you'll be at the forefront of protecting our customers' financial assets and data by monitoring, detecting and responding to security threats across our global banking ...Show moreLast updated: 1 day ago