End User Security Associate

Team Description:The Wealth Management (WM) Chief Data Office (CDO) sits within the WM Risk organization and strives to find the right balance between risk management and business enablement. WM CDO's mission is to: prevent unauthorized access to or misuse of client sensitive data and assets; abide by relevant privacy laws and regulations; effectively retain, retrieve, and protect information and records; and mitigate risks caused by inaccurate, untimely, or incomplete WM data.The End User Security team within WM CDO works to ensure that our clients' sensitive Personally Identifiable Information (PII) is stored and replicated securely, used properly, and accessed only by authorized individuals.Role Description:The End User Security team is seeking a dynamic and detail-oriented Associate to focus on data leakage prevention (DLP) and incident response. Our team designs and implements layered security controls to prevent data leakage incidents, while continuously evaluating and enhancing these controls based on remediation of past issues. The team manages preventative controls to block users from sending sensitive information outside Morgan Stanley by scoping and fine-tuning data leakage policies and monitoring alerts to identify potential gaps. When suspected data leakage incidents occur, the End User team supports the centralized Morgan Stanley incident response (iRespond) process to identify root cause and impact and coordinate remediation. In support of this program, the team also prepares and analyzes metrics to identify trends as well as opportunities for new controls to improve WM's security posture. To maintain this security feedback loop, you will collaborate closely with cross-functional teams, including technology, Legal and Compliance, and business stakeholders, to ensure that our security measures align with organizational goals and regulatory requirements. Your ability to analyze incidents, identify risks, and recommend actionable improvements will be crucial in driving our mission to protect sensitive data while supporting business innovation and growth.Key responsibilities will include, but are not limited to, the following:Data Leakage Prevention and Incident Management * Review DLP activity to identify and escalate potential efforts to circumvent Morgan Stanley controls * Conduct testing on DLP controls to validate control efficacy and identify any gaps for corrective actions * Develop new data protection policies to prevent additional sensitive data types from leaving Morgan Stanley * Work with technology and business stakeholders to scope policy requirements to align controls with business objectives and mitigate disruption * Work with the U.S-based team to develop an oversight framework to monitor applications sending/uploading data externally * Monitor DLP alerts on application-generated traffic and document use cases to determine if the activity is appropriate * Review potential data leakage incidents and triage incidents that require immediate attention/escalation to management * Work with incident reporters and risk partners to document incident details and provide the information required for Legal and Compliance to make client notification assessments * Maintain clear and consistent communication on incident status across the incident lifecycle and coordinate incident remediation activities * Assist in the development and execution of incident response plans and training, including process flow diagrams to ensure roles and responsibilities for different incident types are clear and well-defined * Close data leakage incidents within established Service Level Agreements (SLAs) * Identify and document broken business processes that cause repeat incidents * Generate reports and metrics to communicate the effectiveness of DLP and incident response efforts to senior management and stakeholders * Analyze metrics on data leakage incidents, trends, and repeat offenders to generate actionable recommendations for security control enhancements * Develop training and Quick Reference Cards (QRCs) on cybersecurity best practices for WM business users * Update security procedures and playbooks to align with best practices * Stay informed about the latest security trends, technologies, and regulatory changes to proactively address potential risksQualifications: * 1-3 years of relevant incident management, risk management, or cybersecurity experience in financial services or a related industry * Bachelor's degree or greater in related field * Strong written and oral communication abilities, along with organization and time-management skills to swiftly transition between projects and tasks * Excellent analytical and problem-solving skills, with the ability to think critically, solve open-ended problems, and make informed decisions under pressure * Curiosity to learn new technologies and skills and motivation to proactively and independently identify risksPreferred Qualifications: * Knowledge of the financial services industry, preferably in wealth management, finance, operations, or technology * Conversant with security frameworks, data protection regulations, and industry best practices * Experience working with data leakage prevention technologies (e.g., Netskope, Symantec, ProofPoint, M365) or file scanning and labeling tools (e.g., Varonis, Microsoft Compliance Portal, Symantec Network Discover, BigID etc.) * Familiarity with visualization tools (e.g., Tableau, Dataiku, Power BI) Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents. #LI-NB1 #BPDBA #LI-hybridWHAT YOU CAN EXPECT FROM MORGAN STANLEY:We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you'll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work.Certified Persons Regulatory Requirements: If this role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or the minimum qualifications to meet internal company benchmarks. Flexible work statement Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more. Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.