Information Security Manager

Information Security Manager

Standard Chartered is a leading international banking group, with a presence in over 60 of the world’s most dynamic markets. Our purpose is to drive commerce and prosperity through our unique diversity, and our heritage and values are expressed in our brand promise, Here for good. We are seeking a highly skilled and experienced Security Manager to join our Cyber Security function. The ideal candidate will have extensive hands-on experience with cloud platforms such as AWS and Azure, along with proficiency in Python, Terraform, Azure DevOps, and cloud security tools. This role is crucial in ensuring the security and integrity of our cloud infrastructure and services.

Key Responsibilities

• Design, develop, and implement secure controls cloud-based solutions on AWS and Azure platforms.
• Collaborate with cross-functional teams to define, design, and ship new features.
• Develop and maintain infrastructure as code using Terraform.
• Utilize Python for scripting and automation tasks.
• Implement and manage CI/CD pipelines using Azure DevOps.
• Ensure compliance with security best practices and regulatory requirements.
• Conduct regular security assessments and audits of cloud environments.
• Troubleshoot and resolve issues related to vulnerabilities or configuration related to cloud security infrastructure and services.
• Stay updated with the latest industry trends and advancements in cloud technologies and security practices.

Preferred Skills

• Experience with containerization technologies such as Docker and Kubernetes.
• Knowledge of network security and firewall configurations.
• Familiarity with logging and monitoring tools like CloudWatch, Azure Monitor, and Splunk.
• Understanding of DevSecOps practices and integration of security in the CI/CD pipeline.

Strategy

Good understanding of the Industry standards and best practices related to Cloud Security Domain.

Business

Awareness and understanding of the wider business, economic and market environment in which the Group operates

Processes

Support the programme in reporting and analysis that helps prioritisation of deliverables and stakeholder management. Understand CSS and Risk governance processes relevant to programme activities.

People & Talent

Work within the team to demonstrate and help build the appropriate culture and values

Risk Management

Understand project risks

Governance

processes relevant to the programme

Regulatory & Business Conduct

Display exemplary conduct and live by the Group’s Values and Code of Conduct. Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct. Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key stakeholders

Project Managers, CSS service teams, Cloud Engineering team, VMIS BAU team.

Other Responsibilities

• Deep understanding of configuration validation and vulnerability security standards.
• Ability to work in the agile framework.
• Build and maintain strong and effective relationships with internal stakeholders from various units across the Bank.
• Be proactive and communicative in all areas related to understanding, documenting, and executing the change.
• Work alongside testers to develop of test scenarios and test cases.
• Review and/or prepare documentation (SOP) and specifications in accordance with Bank’s methodology.
• Assist in enforcement of project deadlines, schedules, and methodologies.

Skills And Experience

• Cloud Platforms like AWS, Azure
• Python
• Terraform
• ADO

Qualifications

• Bachelor’s degree in Computer Science, Information Technology, or a related field.
• 4+ years of hands-on experience with AWS and Azure cloud platforms is preferred.
• Strong proficiency in Python programming.
• Extensive experience with Terraform for infrastructure as code.
• Proficient in using Azure DevOps for CI/CD pipeline management.
• In-depth understanding of cloud security principles and tools.
• Experience with security frameworks and compliance standards (e.g., ISO 27001, NIST).
• Excellent problem-solving skills and the ability to work under pressure.
• Strong communication and interpersonal skills.
• Relevant certifications such as AWS Certified Solutions Architect, Microsoft Certified: Azure Solutions Architect, or similar are a plus.

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together We

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What We Offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

Key skills/competency

• Information Security Manager
• Cloud Security
• AWS
• Azure
• Python
• Terraform
• Azure DevOps
• CI/CD
• Infrastructure as Code
• Risk Management