Job Summary
The Operational, Technology and Cyber Risk (OTCR) organisation is instrumental in protecting and ensuring the resilience of Standard Chartered Bank’s operations, data, and IT systems by managing operational, technology and cyber risk across the enterprise. As a critical function reporting into the Group Chief Risk Officer (CRO), the Group OTCR team serves as the second line of defence for assuring that controls are implemented effectively, in accordance with the OTCR Framework, and for instilling a risk culture within the Bank.
The Head, OTCR, WRB is an important role that requires solid business acumen and a detailed knowledge of WRB and understanding of working in a second line capacity within a risk management organisation. The role reports directly to the Global Head, OTCR, WRB.
The purpose of this role is to act as the single point of contact (“SPOC”) within the second line for WRB, in respect of all OTCR matters and decisions, for the portfolio assigned, providing judgement-based input and advice to ensure effective risk management and be a trusted partner collaborating as appropriate with senior stakeholders including SMEs and other risk teams to ensure that risk management practices are integrated into all aspects of WRB.
The individual is expected to be familiar with WRB specific tools / practices, enabling the WRB first line leads to make right decisions. The individual will be skilled in business risk management, stakeholder management, and communication, with an ability to contribute to a vision for others to follow.
The successful candidate will add value by helping to deliver customer centric solutions, providing clear direction on effective risk management, taking on tough challenges, addressing difficult issues and responding in a flexible, courageous and collaborative manner to evolving business, regulatory and threat demands.
We are seeking an experienced Head, OTCR, WRB leader who will be responsible for the following areas:
Key Responsibilities
MONITOR
a) Risk indicators, metrics, and thresholds – e.g., Risk Appetite thresholds
b) Completeness and accuracy of risk identification and assessment
c) Regular review of residual risks and concentration of risks (e.g., locations, processes, etc.)
d) Impact to risks / regulations which the bank faces (e.g., through internal / external change or events)
e) Reporting and escalation of business restrictions where the risks not aligned with Risk Appetite
f) Timely and effective completion of actions and treatment plans
g) Business adherence to framework, policies, standards, and regulations
h) Appropriate application of decision authorities and delegation rights
CHALLENGE
a) Business initiatives and decisions to ensure effective adherence of risk, policy, regulations, etc.
b) Outputs of business risk identification and assessment activities for completeness and accuracy
c) Design and implementation of treatment plans / actions to mitigate risk or improve risk mgmt.
d) Risk Appetite Setting: 1LOD proposals on Risk appetite and where Risk Appetite is near breach
e) Proactive challenge on strategy, process, product, channel, change activities e.g., new deals / transactions
f) Design and operating effectiveness of controls in place to mitigate material risks
APPROVE
a) Risk Assessment decisions for changes arising from products / process and projects etc. E.g.Inherent and Residual Risk assessments; Control design; Control Monitors;
a) Treatment plans and actions design to mitigate risks, remediate appetite breaches, improve risk management. e.g. RCR, Treatment Plans, (subject to scope defined in Appendix D of the Group Operational Risk Standard); Validation of treatment plan actions;
b) Other approvals explicitly required by frameworks, policies, and standards e.g. Scenario Analysis design and assessment; OR approval in M7 for Group WRB OTCR approval (e.g. M7 ad hoc purging of records or backend amendments of M7 records via batch upload)
In addition, this role must work with SMEs to ensure that there is adequate support provided by the SME in respect of
a) Policy / regulatory interpretation, application, and implementation
b) Provision of information and guidance relating to risk mgmt. processes and frameworks
c) Appropriate appetite setting, identification and assessment of risk and input into control design
d) Support on investigations and reviews to ensure the right outcomes are reached
e) Regulatory horizon scanning, interpretation, application, and implementation
f) Opportunities for risk taking / commerciality (e.g., support and input on new business)
g) Identification of emerging and horizon risks in area of expertise
h) Training and support in communicating complex technical concepts to internal and external stakeholder
i) Advise in matters that are high risk and/or complex to provide specialised knowledge, oversight and/or expertise, using deep technical knowledge, interpretation of regulations with data driven judgment and experience
j) Analysis of internal and external trends to get early alerts
k) Thematic reviews with Assurance teams where required
Skills and Experience
Role Specific Responsibilities:
This role includes responsibility for monitoring and challenging that OTCR meets their obligations under the various non-financial risk frameworks and particularly in the context of the OTCR Framework (“OTCRF”), and that breaches / weaknesses are appropriately identified and escalated. This is discharged in part through collaboration with other second-line risk teams as well as enterprise-wide SMEs, both within Group and Country.
People and Talent:
• Exercising excellent people management in the areas of resourcing, talent development, performance management, learning and development and engagement
• Ensure that holders of all critical functions are suitably skilled and qualified for their roles ensuring that they have effective supervision in place to mitigate any risks.
• Lead through example and build the appropriate culture and values
• Set appropriate tone and expectations from team, working in collaboration with stakeholders, whilst upholding and reinforcing the independence of the second line
• Employ, engage, and retain high quality people, with succession planning for critical roles.
• Set and monitor job descriptions and objectives for direct reports, providing regular feedback against on performance against responsibilities and objectives
• Manage rewards across the team to ensure total compensation is in line with Group and fair pay guidelines
• Establishing constructive relationships with Key Stakeholders (as defined below)
Key Stakeholders include:
Internal
All teams of the following areas that support the assigned portfolio:
CEO WRB
CRO WRB
COO WRB
CIO WRB
CISO WRB
Functional Heads of WRB *
WRB leadership team
Head Second Line Assurance WRB
Head of Audit WRB
External
The Group’s external auditors
Regulatory & Business Conduct:
• Displaying exemplary conduct and living by the Group's Values and Code of Conduct.
• Taking personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Effectively and collaboratively identifying, escalating, mitigating and resolving risk, conduct and compliance matters.
• Demonstrating leadership ability to ensure that the team achieves the outcomes set out in the Bank's Conduct Risk framework.
• Providing ongoing reporting of risk exposure into governance meetings and to key stakeholders and escalating any blockages to progress to ensure Group MT, Risk & CFCC, and OTCR Scorecard objectives are met.
QUALIFICATIONS
Desired Qualifications: relevant industry leading certification and:
Our Ideal Candidate
• Education Degree level education or equivalent
• 10+ years of experience from financial services background, with 8 years in OTCR.
• The role holder will have significant experience in OTCR management within the Banking industry and have an in-depth knowledge of some of the key organisational and operational challenges faced by a Second-Line Risk function, including relevant regulation and industry trends. In particular, the role holder will demonstrate:
• A rigorous and analytical approach to risk management
• Knowledge of the Business and its franchise and/or remit.
• Experience of business partnering, including the ability to synthesise and articulate complex and technical topics clearly to diverse audiences
• Ability to manage a diverse and challenging stakeholder community / team
• Ability to lead and energise people, positive attitude, high energy and ability to work under pressure
• Innovative mindset
Skills
• Solid knowledge of the businesses, markets and operations of Standard Chartered Bank and the policies, procedures, and processes through which Operations, Technology and Cyber Risks are addressed throughout the Group
• Ability to assess strategic priorities and focus on detailed aspects of a function in order to drive effective delivery
• Excellent analytical skills: ability to think clearly and rigorously about how best to assess existing and emerging risks and readiness, being able to reach a pragmatic approach and direction.
• Experience of identifying risks (both existing and emerging), developing mitigation actions, and reaching agreement with stakeholders on the management of risks and issues.
• Situational context aware with ability to facilitate outcomes where priorities and personalities are in conflict
• Sound judgement and anticipation and strong integrity, independence and resilience
o Ability to communicate and explain complicated risk issues to internal and external stakeholders in a simple and business-friendly way
o Able to challenge constructively in a non-confrontational manner
• A self-starter, able to take initiation, to navigate within the approved parameters to work out a sensible and practical recommendation or decision
• Ability to participate within a multi-disciplinary team and be a strong team player
• Ability to identify opportunities for continuous improvements
• Strong emotional and cultural intelligence, being able to embrace and drive diversity of thought through inclusion and the valuing of cultural diversity
Role Specific Technical Competencies:
1. Business Partnering
2. Operational and Technologies Risk Management
3. Risk Management
4. WRB Business Knowledge
5. Information and Cyber Security Risk Management
6. Manage People
About Standard Chartered
We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.
Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.
Together we:
- Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
- Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
- Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term
What we offer
In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.
- Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
- Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
- Flexible working options based around home and office locations, with flexible working patterns.
- Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
- A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
- Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.
Recruitment Assessments
Some of our roles use assessments to help us understand how suitable you are for the role you've applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.
Visit our careers website www.sc.com/careers
