Provide thought leadership to drive strategic and tactical evolution necessary to maintain effective and efficient CTIS risk management for EMEA Legal Entities. Provide independent oversight and monitoring of risks and controls around the Firm's technology, cyber and security to help inform and drive the 2nd line response to the technology and security risk posture of the Firm and its underlying legal entities. Prepare non-financial risk management reporting and governance. Participate in preparation for regular regulatory meetings and responses to regulatory queries. Directly support and manage existing and developing 2nd line cyber and information security focused risk governance processes and committees, including scenario analysis activities. Build and maintain strong positive relationships with the existing cyber and information security risk community in the respective business and control groups, becoming a trusted advisor. Work with relevant 1st line risk and control owners in assessing inherent and residual risk levels based on the non-financial risk framework and relative to business appetite, including developing and monitoring metrics for Top Operational Risks and Pathways. Review and challenge CTIS risk incidents, issues and actions, metrics, Risk and Control Assessments; facilitate Scenario Analysis workshops on CTIS risks relevant to the entity Provide valuable insights to assist 1st line stakeholders in articulating, managing and/or mitigating residual risks that remain beyond appetite. Build and maintain strong engagement with 2nd line colleagues who cover Business Units and Infrastructure Groups, assessing impact of cybersecurity risks on business and support processes to drive an integrated risk management response. Maintain an awareness of evolving and emerging technology, security risk issues as well as internal and external incidents. Support NFR management and 1st line stakeholders in the delivery of the Firm's regulatory obligations relating to CTIS risk management. Manage, coach and oversee local resources within the NFR CTIS team. Degree (Computer Science or Information Security, preferable but not essential) 10+ years' worth of technology and or security risk related work experience, preferably in the financial services industry Experience in Technology (IT) Risk Management and or Technology (IT) Audit including Information Security , Cyber Security or Resilience risk Relevant industry certifications e.g. CISA. CISM, an added advantage Excellent communication skills, both verbal and written; ability to tailor communication to technical and non-technical audiences Strong and interpersonal skills in order to work in a team oriented environment Strong leadership, stakeholder management and influencing skills Strong project management and organization skills Ability to multitask and prioritize, and, Strong analytical and problem-solving skills. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work. To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser. If this role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or the minimum qualifications to meet internal company benchmarks. Flexible work statement Interested in flexible working opportunities? Speak to our recruitment team to find out more. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.
Want more jobs like this?
Get jobs delivered to your inbox every week.
