#body.unify div.unify-button-container .unify-apply-now: focus, #body.unify div.unify-button-container .unify-apply-#body.unify div.unify-button-container .unify-apply-now: focus, #body.unify div.unify-button-container .unify-apply-
Requisition Number: 53136
Job Location:
Global Grade: Band 5
Work Type: Office Working
Employment Type: Permanent
Posting Start Date: 23/06/2026
Posting End Date: 23/07/2026
:
Job Summary
Standard Chartered’s diverse footprint across 63 of the fastest growing markets in Asia, Africa and the Middle East creates unique opportunities for passionate, motivated, and highly skilled people who want to make a difference. We are changing the way people think about banking. We are changing the way we do business – becoming the digital bank with a human touch. This is your opportunity to be part of a growth story in an industry that is reimagining how customers are getting better, faster experiences and convenience through digital technology.
Our Information & Cyber Security (ICS) team sits within the Transformation, Technology & Operations (TTO) function and is responsible for all mission-critical and enterprise-wide areas of cybersecurity, including identity and access management, global threat intelligence, data protection, malware protection, and application and infrastructure security. These are challenges that impact our clients globally.
Our ICS Portfolio team develops the platforms, drives the processes and builds partnerships on behalf of ICS. We thrive on providing solutions to complex issues, devoting time and energy to designing and delivering new and innovative solutions, and all in an environment that demands being risk-aware, not risk-averse. ICS chooses progress over perfection and aims to always participate with a constructive purpose. The team makes an impact wherever they are based, be it in our offices around the world, our Global Business Solution centres in China, India, Malaysia and Poland, or even from our home.
If tackling complex challenges excites you, then join our ICS Identity & Access Management team where you will get to collaborate and work on solutions across business and functions to drive the transformation and deliver better experiences to our customers. We constantly strive to reduce time-to-market and streamline our processes. We follow agile methodology and work to embed an improvement habit across the bank.
Now you have an opportunity to make a meaningful impact with a diverse and passionate team of creators, innovators, and achievers. With us, you’ll learn, be inspired, and make an impact every day. The success of our work hinges on how we use the unique diversity of our people to realise the effects we seek to achieve: Always on. Always safe. Always Simple.
Key Responsibilities
The Authorisation Security Team within the Identity and Access Management domain operates as an integrated model consisting of four independent yet interconnected capabilities that together form a closed-loop control system. Identity Lifecycle is established as an evolved capability responsible for end-to-end lifecycle of all identities across the enterprise.
Identity Lifecycle is the execution backbone of the Authorisation domain, responsible for ensuring every identity, human, non‑human, privileged has a deterministic, observable lifecycle. The role anchors the Bank’s event‑driven provisioning, access decay, and source‑of‑truth alignment, ensuring lifecycle correctness across all platforms.
The Head of Identity Lifecycle is a senior leadership role that ensures identity state is accurate, resilient and continuously synchronised with enterprise access policy. It provides the connective tissue that propagates policy decisions into operational reality, enabling reliable provisioning, change, reconciliation, and de-provisioning at scale. Head of Identity Lifecycle owns the end-to-end capability for governing identity state across the enterprise. Reporting directly to the Head of Authorisation Security, this role is accountable for the execution and evolution of identity lifecycle processes, ensuring that enterprise access policy is reliably enforced in operational reality. It expects to be a "Founder" leader with full autonomy to hire and groom the team to maintain systemic integrity under continuous change. The effectiveness of this role depends on close collaboration with peer Capability leaders to maintain alignment, manage systemic risk, and ensure the authorisation domain operates as a coherent, governed role.
Own Identity Lifecycle capability outcomes, including backlog prioritisation, delivery health, and budget stewardship.
Ensure end-to-end enforcement of Capability policies across all identities.
Implement and maintain deterministic, event‑driven identity lifecycle processes for all human and non‑human identities, ensuring consistent alignment to authoritative sources of truth.
Own the execution layer of the Authorisation control‑plane by ensuring timely, accurate provisioning, de‑provisioning, and lifecycle transitions for all identities.
Detect and remediate lifecycle drift, semantic inconsistencies, operational debt, and deviations from intended access state across all identity types.
Design and govern access‑decay, time‑bounded access, and lifecycle event patterns to minimise standing privilege and support Zero Standing Privilege objectives.
Embed automation, observability, and reconciliation practices to minimise risk, including continuous reconciliation against HR, CMDB, and Cloud IAM sources to eliminate lifecycle drift.
Lead a high-performing team responsible for operational delivery and continuous improvement.
Partner with other Capabilities to ensure lifecycle execution aligns with policy semantics, privileged access patterns, and assurance signals, preventing system‑wide misalignment.
Define and track KPIs demonstrating the transition from manual interpretation to automated, deterministic enforcement.
Partner with other Capabilities in IAM to ensure coherent, enforceable, continuously validated authorisation semantics.
Act as the connective tissue between business intent, policy semantics, and technical implementation by ensuring that lifecycle logic faithfully and consistently executes defined authorisation rules.
Support capability growth through hiring input, coaching, and knowledge sharing.
Strategy
Define and maintain the multi-year roadmap for identity lifecycle capability, aligned with enterprise IAM transformation.
Define the enterprise lifecycle architecture, including lifecycle event models, golden flows, and failure‑mode handling across identity types.
Prioritise initiatives to reduce drift, improve resilience, and strengthen access controls.
Continuously evaluate emerging lifecycle automation and reconciliation technologies.
Ensure alignment with other Authorisation Security capabilities for systemic integrity.
Act as the expert in identity lifecycle area.
Act as a liaison between business and technical teams to ensure business and technical objectives and requirements are well communicated and understood.
Partner with the Bank Cyber Operations to design, develop and operationalise identity policy.
Partner with the Bank Security Architects and Risk Teams to ensure alignment with Enterprise Security approach and Regulatory standards.
Partner with the Bank Analytics and Strategy teams to translate insights into execution roadmaps.
Continuously identify opportunities for cost optimization, increase efficiency and process simplification.
Business
Translate policy and compliance requirements from Identity Role Engineering Capability into operational capability.
Collaborate with business units to validate outcomes and align with organisational strategy.
Communicate lifecycle performance, operational debt, and mitigation plans to executives.
Validate benefits realisation with measurable, outcome-based indicators
Facilitate integration of business priorities and strategic objectives into delivery roadmaps.
Translate technical requirements into business value statements for leadership stakeholders.
Ensure that processes are optimized for transparency, accountability, user experience and continuous improvement.
Partner with business owners to validate outcomes and benefits realization.
Work closely with ICS and Stakeholders to ensure that requirements are in line with the bank’s strategy
Responsible to evolve the craft towards improving automation, simplification and innovative use of latest market trends
Engage with third-party vendors as appropriate for the project
Processes
Design, optimise, and operate identity lifecycle processes to ensure consistent enforcement of enterprise policies.
Implement monitoring, alerting, and reconciliation processes.
Establish event-driven automation for state updates and compliance checks.
Maintain comprehensive, auditable records of lifecycle actions.
Align processes with enterprise architecture, operational practices, and compliance.
Identify automation and digital enablement opportunities (e.g., workflow, integration, self-service).
Partner with process owners, operations, and compliance teams to ensure business alignment.
Successful grooming of delivery backlog facilitating planning ceremonies with clear, aligned outcomes.
Responsibilities
People & Talent
Lead a high‑scale operational and engineering function that must deliver precision at volume, ensuring lifecycle correctness across tens of thousands of identities.
Foster a culture of accountability, collaboration, and technical excellence.
Support career growth and capability-building within your Capability.
Act as senior Capability representative across technology, business, and compliance partners.
Act as the primary liaison between business, cybersecurity, and platform teams.
Communicate product performance, risks, and roadmap to executive stakeholders and governance forums.
Build capability through coaching, mentoring, and shared practices.
Contribute to hiring, retention, and professional development.
Drive stakeholder alignment on adoption plans, investment needs, and decommissioning of legacy platforms.
Create an environment of trust, open communication, and cross-functional alignment across business, technology, and control functions.
Collaborate closely with business units, Scrum Masters, and development teams to ensure successful sprint outcomes.
Risk Management
Identify risks associated with lifecycle enforcement and identity state correctness.
Identify and mitigate lifecycle failure‑modes such as orphaned identities, stale privileges, attribute misalignment, and event‑handling gaps.
Maintain a risk register and track remediation plans.
Ensure continuity and resilience of lifecycle operations under failure conditions.
Escalate critical risks to executive stakeholders.
Contribute to audit and risk management with evidence-based artefacts.
Ensure adherence to ICS governance standards and contribute to shaping internal audit and risk processes.
Ensures the project follows the standards with respect to risk management as applicable to their domain.
Adheres to common practices to mitigate risk in their respective domain.
Embed governance, compliance, and regulatory standards into lifecycle operations.
Ensure auditability, transparency, and accountability.
Demonstrate adherence to enterprise controls.
Ensure that program decisions and outcomes align with legal, regulatory, and business conduct requirements.
Act as a role model for integrity, ethics, and responsible delivery practices.
Ensure all artefacts and assurance deliverables are as per the required standards and policies (e.g., SCB Governance Standards, ESDLC etc.).
Regulatory & Business Conduct
Display exemplary conduct and live by the Group’s Values and Code of Conduct .
Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.
Key stakeholders
See the consolidated list of responsibilities below
Peers in IAM Authorisation Security Hive, Hive Tech Lead, PMs and SMs ICS wide, Engineering Leads & Enterprise Security Architecture
ICS IAM Leadership Team, ICS CISOs, ICS Delivery Team partners, CPOs
Technology & Architecture & CIOs
Global Head, ICS Identity & Access Management
Global Head, Cyber Security Technology
Global Head, Cyber Security Operations
Global Technology Service Heads (Production Support, Infrastructure, Testing, SRE, Architecture)
Embed Here for good and Group’s brand and values in ICS - Identity & Access Management domain . Perform other responsibilities assigned under Group, Country, Business or Functional policies and procedures; Multiple functions (double hats); [List all responsibilities associated with the role]
The ideal candidate will embody the following attributes:
Strategic Thinker - connects execution with long-term organizational goals.
Independent Driver - able to lead without heavy oversight.
Regulatory Mindset - embeds compliance and governance discipline in delivery.
Trusted Partner - strong communicator with ability to engage stakeholders up to CIO level.
Delivery-Oriented - relentless focus on achieving OKRs and outcomes.
Collaborative Leader - fosters alignment, removes silos, and builds trust across teams.
Our Ideal Candidate
15+ years of total experience as a cyber security professional with 8+years demonstrated experience defining and governing enterprise authorisation policy in regulated environments.Proven experience stabilising and transforming fragmented identity environments at scale, without disrupting business operations
Demonstrated structured problem‑solving with clear sequencing, risk prioritisation, and trade‑off management in complex environments
Strong stakeholder leadership across business, technology, and control functions, with ability to align outcomes at enterprise level
Clear and authoritative communication, able to translate lifecycle logic into defensible business and control outcomes
Strong understanding of governance, audit, and control expectations, with ability to embed these into execution
Demonstrated ability to challenge inconsistent practices and enforce standardisation, even under delivery pressure
Track record of operating in ambiguity and leading transformation in evolving or immature environments
Demonstrates learning agility and forward‑leaning mindset towards automated, event‑driven identity lifec
Role Specific Technical Competencies
- Enterprise lifecycle modelling (states, transitions, triggers, exception handling, and cross‑identity consistency)
- Event‑driven provisioning and lifecycle execution design across multiple systems and platforms
- Authoritative source alignment (HR, CMDB, cloud directories) with defined ownership, precedence, and conflict resolution
- Lifecycle reconciliation, drift detection, and enforcement of identity state correctness at scale
- Cross‑system determinism (ensuring the same lifecycle event produces consistent outcomes across all downstream systems)
- Lifecycle validation, testing strategy, and failure‑mode design (including detection and recovery)
- Control‑plane thinking (designing closed‑loop lifecycle systems with telemetry, validation, and continuous correction)
- Lifecycle operating model design (standards, guardrails, ownership, and enforcement across teams and platforms)
- Transformation leadership (moving from fragmented, manual processes towards deterministic, automated lifecycle execution)
About Standard Chartered
We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.
Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.
Together we:
Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term
What we offer
In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.
Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
Flexible working options based around home and office locations, with flexible working patterns.
Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.
Recruitment Assessments
Some of our roles use assessments to help us understand how suitable you are for the role you've applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process.
Visit our careers website www.sc.com/careers
#body.unify div.unify-button-container .unify-apply-now: focus, #body.unify div.unify-button-container .unify-apply-#body.unify div.unify-button-container .unify-apply-now: focus, #body.unify div.unify-button-container .unify-apply-
