Talent.com
Spl'st, Threat Assessment & Countermeasures

Spl'st, Threat Assessment & Countermeasures

Standard Chartered BankBengaluru, Karnataka, India
1 day ago
Job description

This job is with Standard Chartered Bank, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly.

Job Summary

  • This exciting opportunity within Group Threat Management (part of the Information & Cyber Security (ICS) function within Transformation, Technology & Operations) is to lead the new Threat Assessment and Countermeasures (TAC) service and processes. The role reports to the Head of Threat Assessment and Countermeasures. The TAC service enables synergies between strategic processes and technology orchestration across cyber security functions and ensures that consumers of threat intelligence (processes and products) can make informed decisions about the risk and required countermeasures.
  • In this role, you will be responsible for leading the efforts to assess and mitigate the impact of cyber threats on the Group. You will influence the team efforts, investment decisions, control design, processes, technology choices and training across the Group, including lines of business, to ensure that decisions are aligned to maximising threat reduction.
  • As this is a new team, the role holder will need to help establish the methodologies for threat capability assessment and research. They will support the creation of the capability that provides a single pane of glass for threat and defence posture and gap analysis, along with proposed countermeasures and prioritization. They will lead the efforts to investigate incidents that expose potential gaps in the current organizational security posture, plans and procedures. They will also act as the Group's subject matter expert in threat-informed defence, and they will lead and leverage the Group's strategic partnerships in this field.

Key Responsibilities Strategy

  • Support development of the overall threat-informed defence strategy and apply this methodology by driving and influencing cybersecurity activities across ICS and the wider Group relative to the threat landscape.
  • Familiarity with structured analysis techniques for intrusion analysis e.g. Kill Chain, Diamond Model, MITRE ATT&CK.
  • Ability to analyse Threat Actors TTPs, process large data sets to identify patterns and anomalies indicative of malicious activities.
  • Proficient in technical investigations.
  • Knowledge or experience in understanding attack techniques
  • Work with stakeholders to influence their respective strategies based on identified emerging threats.
  • Manage requirements, complete relevant impact assessments and ensure clear plan in place to track to execution.
  • Support with status reporting to senior management, relevant working groups and Committees. Escalate any material blockers and impediments in a timely manner.
  • Collaborate with the teams within the ICS Risk & Control function to drive a threat-led approach to risk management.

    • Business

  • Lead a comprehensive and on-going review of existing resources and practices across ICS to produce an action plan for building or enhancing threat mitigation initiatives and programs.
  • Apply knowledge of tactical to strategic level intelligence analysis of cyber threats, vectors, and actors in support of cyber defence and computer network operations

    • Processes

  • Oversee the development of the processes and methodology for on-going threat assessment and countermeasure prioritisation.
  • Lead the creation of clear, effective, and proactive plans for avoiding or mitigating newly emerged or evolving threats.

    • People & Talent

  • Lead through example and build the appropriate culture and values. Set appropriate tone and expectations from their team and work in collaboration with risk and control partners. Manage the scope, schedule, and resource allocation for projects, daily tasks and sustaining activities

    • Risk Management

  • Effectively manage, monitor, and communicate the Bank security posture by maintaining visibility across the threat landscape and corresponding security controls.
  • Be aware of, identify and escalate all risk issues and concentrations in accordance to the firm's Group Information and Cyber Security Policy. Where appropriate, direct remedial action and / or ensure adequate reporting to Risk Committees.
  • Exemplify the Group's values and code of conduct and develop a robust culture to ensure that adherence with the highest standards of ethics, and compliance with relevant policies, processes and regulations among team members.

    • Governance

  • Support with creating the threat assessment framework, methodology, gather and report on security metrics that demonstrate the relative cost / benefit of the security operations and other cybersecurity initiatives.
  • Agile change mindset to enable continuous improvement.

    • Regulatory & Business Conduct

  • Display exemplary conduct and live by the Group's Values and Code of Conduct.
  • Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
  • Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

    • Key stakeholders

    Group CISO aligned functions including Cyber Security, Architecture, ICS Risk and Control, Identity and Access Control, ICS Portfolio, Heads of Information and Cyber Security (HICS) and other business stakeholders

    Other Responsibilities

    Embed Here for good and Group's brand and values in Group Threat Management, Threat Assessment and Countermeasure; Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; Multiple functions (double hats); [List all responsibilities associated with the role]

    Qualifications

  • Bachelor's Degree in Cyber Security, Information Technology, or related field preferred and a minimum of five years' progressive information security experience.
  • Experience working in Threat Intelligence, Security Operations, Threat is essential, and a minimum of three years' related experience is preferred.
  • Over five years of cyber security operations experience, preferably in the Banking and Financial Services sector.

    • Skills and Experience

  • Ability to understand complex challenges and develop out-of-the-box solutions to solve them
  • Ability to conceptualize, identify, evaluate and synthesize information to formulate unbiased judgements, analytic lines and relevant recommendations.
  • Thorough understanding of cyber threat
  • actors and their tactics, techniques and procedures (TTPs) as well as existing CTI frameworks, CTI tools, and IT systems.
  • Ability to determine whether existing constructs, frameworks or tools
  • require uplift, or if there is the need to develop new ones in response to innovations in adversary tradecraft or technologies
  • Ability to present analytic conclusions, research and methodologies to various audiences in an effective manner
  • Ability to identify and adapt communication
  • style. This covers medium, language, message, cadence and preference for different audiences, ranging from the strategic, executive level to highly technical practitioners, such as detection
  • engineers and security architects.
  • Ability to understand operating systems principles, which include :
  • Design decisions inherent to system architecture
  • How identities, access and authorization are administered,
  • How systems communicate with one another and the protocols
  • used for certain types of communications
  • Ability to identify the core concepts, components and conventions associated with cyber defensive measures and cyber
  • security processes, technologies
  • Knowledge of industry best practices and frameworks such as the NIST, Cyber
  • Security Framework (CSF), MITRE ATT&CK
  • Ability to understand business decisions around enterprise architecture design
  • Provide peer mentoring and learning opportunities to fill knowledge and skills gaps while building a culture of cohesion and trust.
  • Ability to identify and apply appropriate CTI terms and frameworks to track and communicate adversary capabilities
  • or activities.
  • Thorough knowledge of the Lockheed Martin Cyber Kill Chain, MITRE ATT&CK framework to visually create playbooks through phases of an adversary's TTPs
  • The ability to interact effectively with peers and leadership to build a collaborative culture that embraces diversity in
  • backgrounds, skills, knowledge, and experiences to identify and answer key intelligence questions

    • About Standard Chartered We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

    Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

    Together we :

    Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do

    Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well

    Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

    What we offer In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

    Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.

    Time-off including annual leave, parental / maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.

    Flexible working options based around home and office locations, with flexible working patterns.

    Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits

    A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.

    Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.

    ]]>

    Create a job alert for this search

    Assessment • Bengaluru, Karnataka, India

    Related jobs
    • Promoted
    Assessment Accessibility Specialist

    Assessment Accessibility Specialist

    RecroBengaluru, Karnataka, India
    In this role, you will work with the Assessment Editorial team improve our accessibility story for students who are blind or have low vision and for students who are deaf or hard of hearing.You wil...Show moreLast updated: 10 days ago
    • Promoted
    Security & Compliance Specialist

    Security & Compliance Specialist

    [24]7.aibangalore, karnataka, in
    Position : Security & Compliance Specialist.Reports to : Manager InfoSec, GRC.Department : Information Security (InfoSec). This role oversee the development, evaluation and implementation of governanc...Show moreLast updated: 30+ days ago
    • Promoted
    Spl'st, Threat Assessment & Countermeasures

    Spl'st, Threat Assessment & Countermeasures

    Standard Chartered BankBengaluru, Karnataka, India
    This job is with Standard Chartered Bank, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly....Show moreLast updated: 1 day ago
    • Promoted
    Senior Manager-Risk Assessment

    Senior Manager-Risk Assessment

    HCLTechBengaluru, Karnataka, India
    The position is a member of Risk & Compliance team within HCL Technologies.The DCO will be aligned to critical service delivery engagements and will be responsible for ensuring compliance in accord...Show moreLast updated: 30+ days ago
    • Promoted
    Guidewire Policycenter dveloper

    Guidewire Policycenter dveloper

    PwC Acceleration Center IndiaBangalore Rural, Karnataka, India
    Minimum of 4 to 10 years of experience.Role : Policy Center Configuration developer.Willingness to work Second Shift (2 pm IST to 11 pm IST) to support US based clients. Demonstrates abilities soluti...Show moreLast updated: 23 days ago
    • Promoted
    The Role : Senior AI & Rapid Development Specialist (f.e. Cursor)

    The Role : Senior AI & Rapid Development Specialist (f.e. Cursor)

    YamathosBangalore Rural, Karnataka, India
    The Role : Senior AI & Rapid Development Specialist.We’re building a global team of modern developers who use.Cursor, Lovable, Replit, and GitHub Copilot. You’ll work closely with our consultants in ...Show moreLast updated: 1 day ago
    • Promoted
    VAPT

    VAPT

    Tata Consultancy Servicesbangalore, karnataka, in
    Address : Bangalore- Think Campus Tata Consultancy Services, Think Campus, JRD Auditorium Cafeteria, Electronic City, Bangalore. Expertise and experience of conducting VAPT (Vulnerability Assessment ...Show moreLast updated: 30+ days ago
    • Promoted
    Senior AI & Automation Specialist

    Senior AI & Automation Specialist

    YamathosBangalore Rural, Karnataka, India
    Senior AI & Automation Specialist (N8N etc).Join Yamathos — a fast-moving AI consultancy helping companies automate smarter, not harder. If you’re passionate about AI, automation, and creative probl...Show moreLast updated: 1 day ago
    • Promoted
    • New!
    Security Consultant

    Security Consultant

    Techfullyhosur, tamil nadu, in
    Job Title : Security Consultant - Vulnerability Assessment & Penetration Testing (VAPT).Professional is required to work from office and Client locations. To lead and deliver advanced client-facing o...Show moreLast updated: 13 hours ago
    • Promoted
    Threat Intelligence Manager (Exclusively 6-7 years of Exp in Threat Intelligence)

    Threat Intelligence Manager (Exclusively 6-7 years of Exp in Threat Intelligence)

    FICOBengaluru, Karnataka, India
    FICO (NYSE : FICO) is a leading analytics software company, helping businesses in 90+ countries make better decisions that drive higher levels of growth, profitability and customer satisfaction.The ...Show moreLast updated: 30+ days ago
    • Promoted
    Training and Development Specialist

    Training and Development Specialist

    Emmvee GroupBangalore Rural, Karnataka, India
    Emmvee is an intelligent solar solutions producer born from an idea to implement green energy to better use.Our solar energy products are an amalgamation of cutting-edge technology and smart innova...Show moreLast updated: 18 days ago
    • Promoted
    RMS (Reliability Monitoring System) Technical Expert – OSAT

    RMS (Reliability Monitoring System) Technical Expert – OSAT

    Tata ElectronicsKolar, Karnataka, India
    Tata Electronics (a wholly owned subsidiary of Tata Sons Pvt.India’s first AI-enabled state-of-the-art Semiconductor Foundry. This facility will produce chips for applications such as power manageme...Show moreLast updated: 30+ days ago
    • Promoted
    Vulnerability Management - L3

    Vulnerability Management - L3

    ITC InfotechBengaluru, Karnataka, India
    On the portal where vulnerabilities are listed, each vulnerability must be analyzed;.Within each record of each vulnerability, analyze the required fixes and the vendor involved.Contact the vendor ...Show moreLast updated: 30+ days ago
    • Promoted
    EHS Enablon Technical Consultants

    EHS Enablon Technical Consultants

    ADR Application Development Resources, Inc.bangalore, karnataka, in
    If you are interested, please email me your CV at linda.There are 4 openings for EHS Technical Consultants in India It is a Remote positions. Enablon solution will support internal and external r...Show moreLast updated: 30+ days ago
    • Promoted
    Sr SAP EHS Functional

    Sr SAP EHS Functional

    KATBOTZ®hosur, tamil nadu, in
    We are seeking a highly skilled.SAP Environment, Health, and Safety (EHS) solutions.The ideal candidate will have deep knowledge of SAP EHS modules, regulatory compliance requirements, and process ...Show moreLast updated: 1 day ago
    • Promoted
    Safety Aggregate Report Specialist 2

    Safety Aggregate Report Specialist 2

    IQVIA IndiaBengaluru, Karnataka, India
    Job title : Safety Aggregate Report Specialist.Must have skills : Authoring Aggregate reports.Apply knowledge and expertise for Safety Aggregate Report and Analytics (SARA) Center deliverables incl...Show moreLast updated: 30+ days ago
    • Promoted
    Deputy Manager – VAPT (Vulnerability Assessment & Penetration Testing)

    Deputy Manager – VAPT (Vulnerability Assessment & Penetration Testing)

    Cubical Operations LLPBengaluru, Karnataka, India
    Deputy Manager – VAPT (Vulnerability Assessment & Penetration Testing).Information Security / Cyber Risk.The ideal candidate will have a strong understanding of security testing methodologies, expl...Show moreLast updated: 1 day ago
    • Promoted
    • New!
    Spl'st, Threat Assessment & Countermeasures

    Spl'st, Threat Assessment & Countermeasures

    ConfidentialBengaluru / Bangalore, India
    This exciting opportunity within Group Threat Management (part of the Information & Cyber Security (ICS) function within Transformation, Technology & Operations) is to lead the new Threat Assessmen...Show moreLast updated: 15 hours ago