This job has expired, please see additional jobs below
Information Security Risk Services - Technology (Vice President)
Morgan Stanley
New York, NY, United States
Job Details - this job has expired, please see similar jobs below
Description
Company Profile
Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more than 1,200 offices in 43 countries.
As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence and strong team ethic. Morgan Stanley can provide a superior foundation for building a professional career - a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.
Technology
Technology works as a strategic partner with Morgan Stanley business units and the world's leading technology companies to redefine how we do business in ever more global, complex, and dynamic financial markets. Morgan Stanley's sizeable investment in technology results in quantitative trading systems, cutting-edge modelling and simulation software, comprehensive risk and security systems, and robust client-relationship capabilities, plus the worldwide infrastructure that forms the backbone of these systems and tools. Our insights, our applications and infrastructure give a competitive edge to clients' businesses—and to our own.
POSITION DESCRIPTION:
Member of Technology Information Security Office (BUISO)
The candidate will be a senior member of a team that is part of a recently formed Cross Divisional Services Risk Team within Technology and Information Risk (TIR). The role will focus on delivering consistent information security risk services for all divisions within Technology at Morgan Stanley.
The candidate will have responsibility for:
• Deliver quality and timely services in the core program of work:
Data Leakage Prevention (DLP) program
Contingent worker email block exceptions
Offshore Development Center (ODC) exceptions
Vontu policy implementation
Removal storage device Control
Secure build exceptions
Incident response
Can be very sensitive and timely
Provision of education and advice/ guidance on secure handling & transfer of data & information
• Leverage best practices across the team and the Division
• Enable consistency and standardization in monitoring and managing the program of work
Identify/work to introduce improvements/ efficiencies where possible across the program:
Communicate progress, potential areas of focus, challenges requiring escalation and/or assistance to management effectively and timely.
QUALIFICATIONS
Interpret customer requests, validate that approval processes are followed; track and report on exception grants by referencing the documented procedures
Strong process focus and awareness and good judgement (when to escalate/ raise an issue to management)
Strong analytical skills; able to digest requirements and share feedback, ideas on improvement etc.
Strong interpersonal, problem solving, organizational and time management skills
Strong sense of ownership and accountability
Clear and appropriate communication; targeting/ tailoring content appropriate to audience
Managing (internal) client relationships and working as part of a distributed team
Highly motivated; ability to drive project deliverable(s) to delivery/ lead meetings with cross functional and cross level participation
Collaborate with internal solutions providers to enhance security solutions and advocate on behalf of users/consumers
Serve as an escalation point for junior members on the team
Ability to interpret existing policies, standards, procedures and apply in a real-world setting
Ability to drive improvements to existing policies, standards, procedures; i.e. analyze current state, develop desired state, and perform gap analysis to achieve future desired state
General IT Security knowledge and applying best security practices
5+ years of work experience in Technology Information Risk (or related risk areas),
MS Office suite skills; ability to draft succinct and impactful PowerPoint decks (with appropriate level of detail for a given audience), ability to extract, aggregate, and report on data in Excel
Ability to articulate key points clearly and succinctly in meetings and 1:1
Ability to define a proposed plan/ approach based on an initial scope of work
Ability to work within an open, consensus based organization
Ability to manage and interact in a matrixed organization is essential
Individual must be able to multi-task effectively
Bachelors Degree or equivalent