ITDR Engineer

Strategy
•    Assess and compare the capability of existing and new security and detection tools within the Bank (e.g. Microsoft Defender for Identity (MDI), Wiz.io) to support ITDR objectives
•    Evaluate tool coverage across platforms including Azure, AWS, on-prem Active Directory, Entra ID, UNIX, and other relevant systems
•    Design and execute proof-of-value (PoV) activities to validate detection and response for identity-based threats
•    Engineer and enhance identity telemetry and signals required for ITDR use cases
•    Develop and validate identity threat detection logic aligned to MITRE ATT&CK techniques
•    Collaborate with IAM, security operations, and architecture teams to identify gaps in detection and response coverage
•    Support the design and rollout of an ITDR pilot covering approximately 50% of prioritized identity threat use cases and scenarios
•    Produce engineering documentation, PoV findings, pilot artefacts, and implementation recommendations
•    Contribute to ITDR operating model, secure-by-design principles, and SDLC processes
•    Stay current with emerging identity threats, attacker techniques, and ITDR best practices

Business
•    Designs, validates and pilots identity threat detection and response capabilities using existing or new tools 
•    Strong analytical, documentation, and stakeholder engagement skills

Processes
•    Strong understanding of identity systems including on-prem Active Directory, Entra ID, privileged access platforms, and non-human identities
•    Experience working with identity detection and cloud security platforms namely - Microsoft Defender for Identity (MDI), Entra, Wiz.io, SentinelOne, Splunk and Airflow is required. 
•    Experience with security monitoring, detection engineering, or SIEM/SOAR platforms
•    Familiarity with cloud and hybrid environments including Azure, AWS, and on-prem infrastructure
•    Knowledge of identity attack techniques and threat frameworks such as MITRE ATT&CK (including identity-related tactics and techniques)
•    Experience working with logs, signals, and identity telemetry across multiple platforms

People & Talent
•    Lead through example and build the appropriate culture and values. Set appropriate tone and expectations from their team and work in collaboration with internal ITDR team members and stakeholders such as SMA use case detection, threat intelligence and threat scenario teams. 

Risk Management
•    Exemplify the Group’s values and code of conduct and develop a robust culture to ensure that adherence with the highest standards of ethics, and compliance with relevant policies, processes and regulations among team members

Regulatory & Business Conduct

•    Display exemplary conduct and live by the Group’s Values and Code of Conduct. 
•    Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct.
•    Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters. 

Key stakeholders

•    SMA, CDC

•    Education: Bachelor’s degree in cyber security, Information Security, Computer Science, Information Technology or Related Discipline
•    Training: Training In Siem, EDR/XDR, Threat Detection Engineering, Cloud Security, IAM/PAM Security, Mitre ATT & CK Framework    
•    Certifications: Optional But Preferred: CISSP, GIAC (GCIA/GCIH), SC-200, AZ-500, Security+, Splunk Power User/Admin, Sentinel Certifications
•    Languages: Fluent In English (Written and Verbal) 

•    Identity Threat Detection & Response (ITDR)
•    SIEM / Detection Engineering
•    IAM / PAM Security Concepts
•    Threat Detection Use Case Development
•    MITRE ATT&CK Framework Mapping
•    Cloud Identity Security (Azure AD / AWS IAM)
•    EDR / XDR Technologies
•    Log Analysis & Security Telemetry Correlation
•    Threat Hunting & Investigation
•    Scripting / Automation (Python, PowerShell, KQL, SPL)
•    Security Incident Response Processes
•    Cyber Threat Intelligence Interpretation 

We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us.

Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion.

Together we:

• Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do
• Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well
• Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term

In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing.

• Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations.
• Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum.
• Flexible working options based around home and office locations, with flexible working patterns.
• Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits
• A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning.
• Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential.