This job has expired, please see additional jobs below
IT Risk Officer - Executive Director
Morgan Stanley
New York, NY, United States
Job Details - this job has expired, please see similar jobs below
Description
Company Profile
Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more than 1,200 offices in 43 countries.
As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence and strong team ethic. Morgan Stanley can provide a superior foundation for building a professional career - a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.
Technology
Technology works as a strategic partner with Morgan Stanley business units and the world's leading technology companies to redefine how we do business in ever more global, complex, and dynamic financial markets. Morgan Stanley's sizeable investment in technology results in quantitative trading systems, cutting-edge modelling and simulation software, comprehensive risk and security systems, and robust client-relationship capabilities, plus the worldwide infrastructure that forms the backbone of these systems and tools. Our insights, our applications and infrastructure give a competitive edge to clients' businesses—and to our own.
Level: Executive Director
Technology & Information Risk is a global organization within Morgan Stanley's Technology organization. The groups mission is to deliver programs that protect and enable the business, ensure secure delivery of services to our clients, adjusts to address the risks presented by an evolving threat landscape and meet regulatory expectations.
The Division is made up of a number of groups which include: Cyber security, Access Management, Risk and Regulation and Risk Governance.
Team Background
The TIR Senior Risk Officer leads a global team of Risk Officers that are accountable for the practices associated with technology operational risk awareness, identification, assessment, reporting, governance, management, mitigation and/or acceptance, and policy compliance within the TIR organisation.
The group aims to promote a risk aware culture across TIR, providing management team with the necessary information, tools and training to ensure a proactive and informed approach to risk management. Additionally the team is responsible for divisional compliance with a number of mandatory initiatives to meet the requirements of internal audit and external regulators.
The team is a global team, with representatives in New York, London, Hong Kong and Glasgow.
Role Description
Responsibilities will include:
Management and execution of remediation work to reduce the level of risk within the Division.
Providing TIR Management with regular progress updates on risk responses from across the risk and control agenda through regular reporting to management via the TIR Divisional Risk Committee.
Working with Divisional representatives to ensure the completeness and appropriateness of key risk and control related data. Working with data owners and Divisional management to identify risk remediation approaches.
Managing Divisional risk and control assessments including the annual Risk Control Self-Assessment (RCSA), the quarterly SOX Assessment and Certification and the periodic Asset-level assessments (e.g. ARA and EIRA)
Monitoring Divisional compliance with the Global Technology Policy and Standards and coordinating Divisional participation in the development of relevant Policy and Standards and associated Procedures and their subsequent adoption
Assisting with the identification, assessment and management of agreed responses to risks and engagement with relevant governance committees.
Providing timely support during audit and regulatory activity. This includes responding to audit requests, providing status updates to Divisional management, supporting management in agreeing and prioritising responses to Audit findings and providing ongoing monitoring of the progress on Audit issues and actions.
Managing the relationship with our External Auditors and acting as the key point of contact during the annual testing cycle.
Monitoring the timely completion of the event-driven Asset level assessments (eg NAC, NAA), the Supplier Assessments and TOPS (Subsidiaries) Assessments, as required in the Division and undertake appropriate quality assurance
Management of the business continuity emergency preparedness planning and testing for the Division and contributing to the development of divisional continuity strategies
Managing divisional risk reporting for IT Risk Programs to ensure transparency to the TIR Senior Management team (e.g. DIRC, Divisional T30s)
Engaging with Firmwide risk and control groups, including Business Risk Management, ORD and Internal Audit.
Qualifications
Skills Required:
Understanding of Operational Risk and associated regulations (e.g., Basel, SOX), and the associated application to a technology division within Financial Services.
Project / Program Management experience.
Excellent oral and written communication skills, as the role involves a high amount of interaction with senior management across multiple divisions, including Business, Technology, Firm Control organizations.
Strong analytical and problem-solving skills.
Excellent influencing skills
Accurate, tenacious and delivery focused mindset with good attention for detail
Proficiency in MS Office and related applications (Word, Excel, Powerpoint, Access, Visio, Project)
Skills Desired:
Experience within the financial services industry
Technical knowledge
Risk related experience preferably with Information Technology
Comfort working with ambiguity, managing and resolving complex issues
Experience of SOX Regulations
Knowledge of COBIT and ITIL frameworks for risk assessment
Knowledge of the Morgan Stanley systems and infrastructure.
EDUCATIONAL REQUIREMENTS
Bachelors Degree