Information Security Risk Officer at Standard Chartered Bank Kenya

Other Responsibilities

• Establish strong relationships with identified stakeholders across the country and understand their strategic goals, to ensure ICS alignment.
• Articulate the value of ICS controls and their bottom-line impact to Country's security and resiliency.
• Prepare, present and challenge in a 2nd line capacity at relevant risk committees, steering groups and cross-business opportunities.
• Perform Delegation of Authority (DoA) responsibilities for Group CISRO as defined for the countries.
• Measure efficient and effective management of ICS risk for the countries.
• Validate the accuracy of KRI's and KCI's and other risk ratings, as well as process designs, to meet policy requirements.
• Ensure that Process Owners are escalating risk, control, and process deficiencies appropriately in accordance with the relevant risk frameworks.
• Build trusted working relationships with other security functional heads, risk and compliance counterparts, and country stakeholders.
• Utilize appropriate risk management tool(s) to manage, track and monitor ICS risks across the countries.
• Maintain sufficient and appropriate evidence of work performed for review by Group Internal Audit and others.
• Monitor, assess and advise countries on acceptable risk tolerances based on policy and control environment and the evolving regulatory and threat landscape. (Knowledge of Pakistan regulatory environment will be an added advantage)

Qualifications

Training, licenses, memberships and certifications

• Master's in Information Technology / Cybersecurity
• Information Security certifications and courses
• Trainings & Courses attended on security audits
• Familiar with and hands on experience of working on Security best practices and frameworks.

Experience:

• Minimum 18 years of experience, having worked on similar roles.