About Standard Chartered
We are a leading international bank focused on helping people and companies prosper across Asia, Africa and the Middle East.
To us, good performance is about much more than turning a profit. It's about showing how you embody our valued behaviours - do the right thing, better together and never settle - as well as our brand promise, Here for good.
We're committed to promoting equality in the workplace and creating an inclusive and flexible culture - one where everyone can realise their full potential and make a positive contribution to our organisation.
This in turn helps us to provide better support to our broad client base. The Role Responsibilities
The Control Assurance Manager is a permanent non-people leader role with the following responsibilities :
Support the Head of Control Assurance and Conformance Testing to deliver control assurance activities
Assist with the development and enhancement of the Control Self-Assessment Review framework and methodology for control self-assessment review and reporting
Execute a consistent, sustainable, and re-performable control self-assessment review framework / methodology for the bank’s technology environment
Drive, guide and work with T&I domains / countries and the respective risk managers in the control assessment activities across T&I
Assess the adequacy of existing controls within T&I to ensure completeness, asset coverage, and alignment to IT Policy and Standards
Draft narratives documenting findings and assessment results as well as articulating risk and impact to the Bank
Deliver control assessment review reports and document workpapers to evidence the review process and cycle
Manages and tracks completion of the technology control self-assessments
Support the provision of timely and accurate control self-assessment review MI to the respective risk forums
Identify opportunities for automation of control assessment
Additional responsibilities will include participating in any ad-hoc or regulatory based control assurance activities as part of the T&I Risk and Control assurance agenda and strategy
Assist with the development and maintenance of the Control Self-Assessment methodology, templates (checklist, questionnaire, test scripts / plan, summary reports) and process documentation required for Control Self-Assessment review activities
Tracking and monitoring of material actions and risks arising from T&I Control Self-Assessment activities (e.g. Control Self-Assessment Review outcome, action assigned etc) and escalate as appropriate to T&I Control Assurance Lead
Track findings from control assessment and assess control owner responses and evidence provided to close any findings, and deliver an assurance outcome on whether the issue has been addressed or not
Assist with the regular reporting on T&I Control Self-Assessment program for various stakeholders
Support the Head of Control Assurance and Conformance Testing to design and implement the Control Self-Assessment review methodology and ensure that the Control Self-Assessment review deliverables meets the quality standards set out in the methodology
Contribute in the development of knowledge base of controls for Control Self-Assessment purpose
Support the continuous improvement of control self-assessment review, aligning to and avoiding duplication with other assurance functions
Contribute to the team to ensure that all activities are in line with and support of the Operational principal risk type under the Bank’s ERMF
Drive the adoption of risk management framework through Control Self-Assessment review and / or thematic review
Support the Head of Control Assurance and Conformance Testing to develop the annual plan and manage the execution of the plan to achieve the target on quality, timeline, and budget
Produce trend analysis of common control failures and thematic issues to enable a holistic view of risk management and control assurance
Provide regular status updates including tracking against review / testing requirements and plan forecasts
Regulatory & Business Conduct
Display exemplary conduct and live by the Group’s Values and Code of Conduct
Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank.
This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct
Effectively and collaboratively identify, escalate, mitigate, and resolve risk, conduct and compliance matters.
Technology & Innovation (T&I) Domain heads and process owners
T&I Domain risk managers and teams
T&I Risk Control
Country Technology and Risk & Control teams
Group Operational risk
CISO / ISO
Group Internal Audit
Adopt Here for Good and the Group’s brand and values.
Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures where relevant.
Our Ideal Candidate
Bachelor’s degree in computer science, software engineering, business management, accounting, finance, or related field.
Minimum seven (7) years of technology risk and / or technology audit experience, preferably in financial institution
Prior experience with technology control testing, control assessment and / or auditing including report writing
Solid understanding of Risk Management areas, control testing, risk and control assessment process and audit fundamentals
Strong control mindset, role-modelling the importance of good governance and able to demonstrate courage in challenging processes or practices that fail to deliver a well-controlled business
Good understanding of financial institution technology operations and systems.
Self-motivated, able to multitask and have an ability to work well where team are based offshore
Strong analytical thinking with ability to clearly highlight material findings
Strong written & verbal communication skills, report writing skills
Possess the coordination and interpersonal skills required to work across various functions and seniority level globally and locally
CISA or similar testing / audit qualifications are considered an advantage.