Director, Cyber and Technology Digital Asset Risk

JOB SUMMARY

• The Operational, Technology and Cyber Risk (OTCR) organisation is instrumental in protecting and ensuring the resilience of Standard Chartered Bank’s operations, data, and IT systems by managing operational, technology and cyber risk across the enterprise. Reporting into the Group Chief Risk Officer (CRO), the Group OTCR team serves as the second line of defence for assuring that controls are implemented effectively, in accordance with the OTCR Framework, and for instilling a risk culture within the Bank. 
• This role is part of the Subject Matter Expert function for Cyber Security and Technology Risk, which provides targeted and in-depth analysis, guidance, and oversight of critical topics across the Bank.  The role provides the benefits of getting broad exposure to the Banks global team and operations whilst simultaneously getting into the details for key projects, topics and challenges.   

What is the role?

• The Digital Asset Cyber Security Risk Manager will play a critical role in the second line of defence, responsible for overseeing and challenging the management of cyber security risks associated with digital assets (cryptocurrencies, NFTs, stablecoins, etc.). This role will focus on ensuring the effective identification, assessment, mitigation, and monitoring of risks specific to the digital asset ecosystem, contributing to the development and execution of a robust digital asset risk management framework. The ideal candidate possesses a strong understanding of blockchain technologies, cyber security principles, risk management best practices, and the unique challenges and opportunities presented by digital assets.
• This role will support the Bank as it extends it’s footprint in Digital Asset services in the coming years. 

Who are we looking for?

• A deep technical expert who has practical experience working across Cyber Security, Technology and Digital Assets, who can provide in depth technical analysis and oversight of the topic across the organisation.   The candidate will need to have a strong working understanding of blockchain technology, cryptography, and digital asset ecosystems.
• Given the evolving nature of the topic we’re looking for a self-starter who is willing to continually learn and develop to stay at the cutting edge of best practice. 
• An individual who will collaborate and share knowledge to help the process of upskilling the developing the broader ICS and Technology community. 
• Someone with a drive and intellectual curiosity to explore new problems, topics and challenges in a highly dynamic and fast paced area.

RESPONSIBILITIES

Strategy

• Oversight of ICS and Technology Strategic direction and plans for Digital assets. 

Risk Management

• Digital Asset Risk Framework Development & Enhancement: Contribute to the development, implementation, and maintenance of a comprehensive digital asset risk management framework, aligned with industry best practices and emerging regulatory requirements.
• Risk Identification & Assessment: Proactively identify and assess emerging cyber security and technology risks across the digital asset landscape. This includes evaluating risks related to: 
• Blockchain Security: Smart contract vulnerabilities, consensus mechanism attacks, 51% attacks, network congestion.
• Custody Solutions: Private key management, wallet security, exchange hacks, custody provider risks.
• Market Manipulation: Pump and dumps, wash trading, insider trading.
• Regulatory Compliance: AML/KYC requirements, sanctions screening, tax implications.
• Operational Resilience: System failures, data breaches, DDoS attacks.
• Third-Party Risks: Security of exchanges, custodians, DeFi protocols, and other service providers.
• Risk Mitigation & Control Evaluation: Evaluate the design and effectiveness of controls implemented by the first line of defence to mitigate identified digital asset risks. Challenge and provide recommendations for improvement where necessary.
• Collaboration & Communication: Collaborate closely with stakeholders across Technology, Legal, Compliance, Product, and other relevant departments to ensure a consistent and coordinated approach to digital asset risk management.

• Knowledge & Expertise: Stay abreast of the latest developments in blockchain technologies, cyber security threats, regulatory landscape, and emerging trends within the digital asset space. Share knowledge and best practices with the broader organization.
• Policy & Guidance: Contribute to the development and maintenance of policies, standards, and guidelines related to the secure and compliant use of digital assets within the organization.
• Challenge & Oversight: Provide independent challenge and oversight of the first line of defence’s management of digital asset risks

Governance

• Monitoring & Reporting: Establish and execute ongoing monitoring activities to track the effectiveness of digital asset risk management controls. Prepare and present regular reports on digital asset risk posture to senior management and relevant committees.

Regulatory & Business Conduct

• Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters. 
• Lead to achieve the outcomes set out in the Bank’s Conduct Principles

• Key Stakeholders

• Business Lines and Functions implementing Digital Assets 
• Central Digital Asset Risk and Technology Teams. 
• Cyber Security and Technology Teams. 
• CISO’s 
• Group Internal Audit

Our Ideal Candidate

•  Bachelor’s or Master’s degree in a relevant field (e.g., Computer Science, Engineering, Mathematics, Finance, Risk Management, Cyber Security).
• 10 + years of experience in risk management, preferably within the technology or financial services industry.
• Strong understanding of blockchain technology, cryptography, and digital asset ecosystems.
• Knowledge of cyber security principles and practices, including threat modelling, vulnerability management, and incident response.
• Familiarity with relevant regulatory frameworks and standards related to digital assets and data privacy (e.g., FATF recommendations, AML/KYC regulations).
• Excellent analytical, problem-solving, and communication skills (written and verbal).
• Ability to work independently and as part of a team.
• Strong stakeholder management and influencing skills.

Preferred Skills & Experience:

• Professional certifications related to risk management (e.g., CRISC, CISM, CISA) or blockchain/cryptocurrency.
• Experience with blockchain security audits and vulnerability assessments.
• Knowledge of smart contract development and security best practices.
• Experience in a second line of defence function.
• Active involvement in the digital asset community.

Role Specific Technical Competencies

• Information Security Management
• Cybersecurity Risk Management
• Artificial Intelligence and Machine Learning. 
• Governance, Regulation and Risk Management  – Risk and Control
• Communicating Complex Concepts
• Information Security Technologies
• Emerging Technologies

About Standard Chartered

We’re an international bank, nimble enough to act, big enough for impact. For more than 170 years, we’ve worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you’re looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can’t wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you’ll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies – everyone feels respected and can realise their full potential.

Recruitment Assessments

Some of our roles use assessments to help us understand how suitable you are for the role you’ve applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.

Visit our careers website www.sc.com/careers