Job Information
Morgan Stanley VP, US Banks Operational Risk Department Information Security in Baltimore, Maryland
Role: VP, US Banks Operational Risk Department Information Security
Location: Baltimore, MD
Department Profile:
This role will reside within the Firm’s Operational Risk Department (ORD) focusing on Information Security Risk Oversight for the US Banks.
Operational Risk refers to the risk of financial or other loss, or potential damage to a firm's reputation, resulting from inadequate or failed internal processes, people, systems, or from external events (e.g., fraud, legal and compliance risks or damage to physical assets). Management works with the business units and control groups to help ensure Morgan Stanley has a transparent, consistent, and comprehensive program for managing operational risk, both within each area and across the firm globally. This group designs, implements and monitors the company-wide operational risk program.
Primary Responsibilities
Identify and evaluate Information Security risks related to the assets and information supporting Bank activities
Work with 1st line of defense management in discussing and resolving control gaps, risk trends, risk issues and incidents
Provide challenge to 1st line of defense assessments of their risks and controls
Participate in relevant governance, steering, and working group committees
Review metrics and escalation reports to monitor risk and control-related developments, issues and trends
Review security risk issues as well as internal and external incidents in order to help inform the 2nd line of defense independent view of the overall technology and security risk posture of the Firm and its underlying legal entities
Work with 1st line of defense management in preparing lesson learned analysis of operational risk incidents
Provide monthly and quarterly risk reporting
Coordinate with ORD colleagues who cover Business Units in discussing impact of security risks on business and support processes
Participate in scenario analysis workshops to assess risk impacts
Monitor industry developments in the management of technology and security risk
Build and maintain strong positive relationships with the broader risk community in 1st line of defense
Maintain and/or oversee relevant policies and procedures related to Information Security
Serve as SME for the Information Security Risk Acceptance Program
Experience Required
Bachelor's Degree minimum
8-15 years' worth of Information Security risk related work experience, preferably in the financial services industry
Experience in Information Security risk management, audit, or consulting
Ability to engage and influence stakeholders
Demonstrated critical thinking skills and ability to provide recommendations to manage risk based on analytic insights
Strong interpersonal skills in order to work in a team-oriented environment
Excellent communication skills, both verbal and written; ability to produce concise and effective presentations tailored to technical and non-technical audiences
Strong project management and organization skills
Ability to multitask and prioritize
Ability to work under pressure and to tight deadlines
Flexible and self-motivator
Strong analytical and problem-solving skills;
Proficiency in MS Office and related applications (e.g. Word, Excel, Powerpoint);
Morgan Stanley is committed to creating and providing opportunities that enable our workforce to reflect diverse backgrounds and views.
Morgan Stanley's goal is to build and maintain a workforce that is diverse in experience and background but uniform in reflecting our standards of integrity and excellence. Consequently, our recruiting efforts reflect our desire to attract and retain the best and brightest from all talent pools. We want to be the first choice for prospective employees.
It is the policy of the Firm to ensure equal employment opportunity without discrimination or harassment on the basis of race, color, religion, creed, age, sex, sex stereotype, gender, gender identity or expression, transgender, sexual orientation, national origin, citizenship, disability, marital and civil partnership/union status, pregnancy, veteran or military service status, genetic information, or any other characteristic protected by law.
Morgan Stanley is an equal opportunity employer committed to diversifying its workforce (M/F/Disability/Vet).
Job: *Compliance
Title: VP, US Banks Operational Risk Department Information Security
Location: Maryland-Baltimore
Requisition ID: 3230920
Other Locations: Americas-United States of America-Georgia-Alpharetta