The Group Chief Information Security Officer (CISO) organisation is instrumental in protecting and ensuring the resilience of Standard Chartered Bank's data and IT systems by managing information and cyber security (ICS) risk across the enterprise. As a critical function reporting into the Group Chief Risk Officer (CRO), the Office of the CISO serves as the second line of defence for assuring ICS controls are implemented effectively and in accordance with the ICS Risk Framework and for instilling a culture of cyber security within the Bank. The Group CISO is responsible for ICS governance, strategy, policy, awareness, training, risk assessments, red teaming, third party security risk, industry partnerships, and regulatory engagement. In addition, the team of Information Security Officers (ISO) reports to the CISO and performs a pivotal role as an extension of the CISO in supporting the ICS risk management strategy, governance, advisory and assurance roles that face off to the Client Services, Regions, and Functions. The Office of the CISO is central to ensuring the Bank's ability to meet its ICS commitments to internal and external stakeholders, including regulators, as well as maintaining an acceptable ICS risk profile that is regularly reported to the Board.
We have a role for a Training Specialist, Awareness & Enablement for Information & Cyber Security in the Cyber Training & Exercises team. This is a a small but energetic communications team, and this person will play a key role in driving enablement and targeted training efforts to drive ICS awareness across the Business, Functions and Geographies.
You will be part of the team that provides ICS awareness enablement and targeted training by rolling out the business, functions and geographies with the federated awareness model to equip stakeholders with an approach to build capabilities for them to own and drive ICS awareness by themselves with support from the awareness team. You will conduct train-the-trainer sessions to build a community of awareness facilitation partners who will ultimately deliver training for employees, you will also conduct role-based training. You will conduct role based training for ICS awareness champions teams to develop their capabilities to drive general awareness locally.
You will be expected to communicate and present to all levels, both internally and externally, with vendors and colleagues and senior stakeholders.
The role is varied and extremely dynamic. One day, you could be providing content and advisory to co-build an elearning module for 30,000 RB employees, the next working with stakeholders on how to ameliorate country awareness efforts by coaching the local champions team's to advance their thinking and capabilities. What the role provides you is a platform to participate in enabling your stakeholders' learning journeys to engage their employees to drive down their human ICS risk areas such as phishing, clear desk, data leakage. Main Purpose of the role: Reporting to the Head, ICS Awareness Enablement & Targeted Training, Group CISO, the Specialist, ICS Enablement and Targeted Awareness will collaborate with multiple internal stakeholders to manage and develop a dynamic range of activities to build and sustain ICS awareness capabilities in the Business, Functions and Geographies by driving the Bank's federated awareness model Roles and Responsibilities: Awareness Enablement · Manage the federated awareness model of building ICS awareness capabilities, i.e. provide and refine the strategic approach, manage regular stakeholder calls/communications to track and challenge progress, · Manage the train-the-trainer programme to build a community of ICS awareness facilitation partners across the Business, Functions and Geographies · Manage champion teams across the Bank and provide guidance, content, training and strategic direction for them to drive awareness locally · Collaborate with Heads ICS and Information Security Officers to shape and provide clear insights on improvement areas in employee awareness across the Business, Functions and Geographies by producing regular awareness improvement plans customised for each area · Obtain and package insights on enablement efforts for various risk dashboards/papers/reports with visually impactful, interactive and actionable communications when needed for stakeholders Targeted Training · Manage the high risk/role based training programme (champions, people managers, phishing clickers, general awareness), conduct or co-deliver together with ICS awareness facilitation partners, depending on stakeholder requirements (sessions are conducted via face-to-face/webex/VC) · Develop elearning and other digital training packages based on stakeholder requirements · Obtain and package insights on targeted training efforts for various risk dashboards/papers/reports with visually impactful, interactive and actionable communications when needed for stakeholders Communications · Manage all requests for targeted employee communications (whether bridge/email) on time, and create visually impactful, interactive and actionable communications when needed for stakeholders · Assist in provision of awareness enablement/targeted training data points for RFIs/risk dashboards/papers/reports from CISO, OR, GIA, ICS TRP teams · Liaise with Corporate Affairs and other communications partners to amplify our story in human-centric way Stakeholder and people management · Liaise with Heads ICS, Information Security Officers, Audit, Regulators, Governance, Operational risk, Compliance, Corporate Affairs and other functions to demonstrate ICS awareness enablement metrics that demonstrate ability of building awareness capabilities (champions, customised content, train-the-trainer programmes) · Other duties as required Key Stakeholders · Heads of Information & Cyber Security · Information Security Officers (Geography, Business & Functions) · Executive, General and Enablement/Targeted Training Awareness Teams Qualifications, Skills & Experience
A self-starter, go-getter with a minimum of 5-7 years relevant working experience in building awareness or employee engagement programmes, delivering employee training or in similar fields
A genuine interest in building and developing teams, and passionate about engaging employees
Finely tuned attention to detail with the ability to lead and act strategically with an eye for the "bigger picture" a must
Meticulous project management skills
Excellent and proven communications and writing skills a must
Advanced competency skills using MS Office software (particularly Powerpoint). Knowledge of elearning development an advantage
A reasonably competent level of understanding of (or interest in) information technology and user-oriented information security.
High adaptability to work and contribute to the team across geographies in a matrix and digital-centric environment
Ability to assess and manage priorities, working in a structured, autonomous manner with a firm focus on delivering results
Sound judgement and anticipation with strong integrity, independence and resilience
A Degree in a related field. Extended years of relevant working experience may be considered in lieu
About Standard Chartered We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.
To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.
We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation. This in turn helps us to provide better support to our broad client base.
Internal Number: 6641153
About Standard Chartered Bank
eFinancialCareers is a career site specializing in financial services.