Snr Information Security Manager

Job Summary

The IAM Business Analyst is responsible for bridging business requirements and IAM technical solutions. This role focuses on gathering, analyzing, and translating identity, authentication, authorization, and access governance requirements into implementable IAM solutions aligned with security policies and regulatory standards.

Key Responsibilities

• Requirements Gathering & Analysis
• Engage with business stakeholders, application owners, and security teams to capture IAM requirements.
• Translate business needs into functional and non-functional IAM requirements.
• Document use cases, user journeys, and access scenarios (JML - Joiner, Mover, Leaver).
• IAM Process Design
• Define and optimize IAM processes such as:
• User provisioning & deprovisioning
• Role-based access control (RBAC)
• Access request and approval workflows
• Support implementation of deterministic and automated controls.
• Stakeholder Management
• Act as a liaison between business, IAM engineering, and operations teams.
• Facilitate workshops, requirement sessions, and design discussions.
• Communicate IAM concepts clearly to non-technical stakeholders.
• Compliance & Controls
• Ensure IAM solutions align with:
• Internal security policies
• Regulatory frameworks (e.g., SOX, GDPR, RBI guidelines)
• Support audit activities by providing documentation and evidence.
• Participate in control design and effectiveness assessments.

• Documentation
• Prepare and maintain:
• Business Requirement Documents (BRD)
• Functional Specification Documents (FSD)
• Process flows and control narratives
• Document IAM controls and risk assessments.
• Solution Support & Implementation
• Work with IAM tools such as:
• Identity Governance & Administration (IGA)
• Privileged Access Management (PAM)
• Single Sign-On (SSO) and Federation
• Support UAT (User Acceptance Testing) and validation of IAM solutions.
• Data & Access Analysis
• Analyze access data, entitlement models, and role structures.
• Identify excessive access, segregation of duties (SoD) risks, and control gaps.

People & Talent

• Lead through example and build the appropriate culture and values.
Regulatory & Business Conduct
• Display exemplary conduct and live by the Group's Values and Code of Conduct.
• Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
• Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters.

Key stakeholders

• Application technology team
• Application Architects
• Application Business Owner
• ICS/IAM domain Leads/Heads

Qualifications

• EDUCATION: Bachelor's or Master's degree in information security, Computer Science, or related field.
• CERTIFICATIONS: Relevant certifications such as CISM, or other IAM platform certification

Skills and Experience

Strong understanding of IAM concepts:
• Authentication (MFA, SSO, Federation)
• Authorization (RBAC, ABAC)
• Identity lifecycle management (JML)
• Experience in IAM tools (e.g., SailPoint, Saviynt, Okta, Azure AD / Entra ID)

Business Analysis Skills
• Requirement elicitation techniques (workshops, interviews)
• Process modeling (BPMN, flow diagrams)
• Strong documentation skills

About Standard Chartered

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

What we offer

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.