Associate - Cyber Technology & Information Security Risk Oversight

Maryland City, MD, United States
Full Time
Main Location
New York City, NY, United States
Open jobs

Morgan Stanley 

Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm’s employees serve clients worldwide including corporations, governments and individuals from more than 1,200 offices in 43 countries.  

The talent and passion of our people is critical to our continued success as a firm. Together, we share four core values rooted in integrity, excellence and strong team ethic:


1.     Putting Clients First


2.     Doing the Right Thing


3.     Leading with Exceptional Ideas


4.     Giving Back  

Morgan Stanley is committed to helping its employees build meaningful careers and we strive to be a place for people to learn, achieve and grow. 

Firm Risk Management 

Firm Risk Management (FRM) enables Morgan Stanley to achieve its business goals by partnering with business units across the Firm to realize efficient risk-adjusted returns, acting as a strategic advisor to the Board and protecting the Firm from exposure to losses as a result of credit, market, liquidity, operational, model and other risks.   

Our mission is to serve as the follow roles:  


·    Independent agent to set consistent principles and disciplines for risk management


·    Strategic advisor to Firm management for setting risk appetite and allocating capital


·    Industry leader to influence and meet regulatory standards  

You will collaborate with colleagues across FRM and the Firm to protect the Firm’s capital base and franchise, advise businesses and clients on risk mitigating strategies, develop tools and methodologies to analyze and monitor risk, contribute to key regulatory initiatives and report on risk exposures and metrics to enable informed and strategic decision-making. Through thoughtful analysis and clear communication, we are best able to bring our ideas to the table and improve the Firm. 

Firm Risk Management values diversity and is committed to providing a supportive and inclusive workplace for all employees. 

Firm Risk Management’s unique franchise promotes:  

  • Flat, flexible and integrated global organization

  • Collaboration and teamwork

  • Credible, independent decision-making

  • Organizational influence

  • Creative and practical solutions

  • Meritocratic and diverse culture 


The Position 

Morgan Stanley has an opening for an Associate for the Cyber Technology & Information Security (CTIS) Risk Oversight team within ORD. CTIS Risk Oversight is the practice of monitoring risks related to the confidentiality, availability and integrity of the Firm’s systems and information including associated processes and controls. The successful candidate will be responsible for helping execute independent oversight and monitoring of risks and controls around the Firm’s technology and security.  


The Morgan Stanley Baltimore office is a critical component of the Firm`s Global footprint and has 1,400 employees that provide support and services to the Investment Banking, Securities, Investment Management and Wealth Management Businesses.    

Our office at Thames Street Wharf is located in the heart of Baltimore’s Inner Harbor.   Additionally, the Firm recently expanded downtown and occupies two floors at 100 South Charles in the new, up and coming neighborhood of Harbor Point, adjacent to historic Fells Point.   


 Primary Responsibilities 
  • Identify and evaluate risks related to the systems and information supporting Firm activities

  • Assess, through inspection, observation, or measurement whether controls are designed adequately and operate effectively so as to verify that risks are mitigated to targeted levels

  • Review completeness and execution of relevant procedures and assess assurance mechanisms for how effectively they identify weaknesses or failures of key controls

  • Work with 1st line of defense risk and control owners in assessing inherent and residual levels risks based on structured risk framework

  • Maintain and or oversee relevant policies and procedures related to technology and security processes executed by 1st line of defense

  • Review metrics and escalation reports to monitor risk and control-related developments, issues and trends

  • Review technology and security risk issues as well as internal and external incidents in order to help inform the 2nd line of defense independent view of the overall cyber, technology and info security risk posture of the Firm and its underlying legal entities

  • Provide monthly and quarterly risk reporting

  • Provide challenge to 1st line of defense assessments of their risks and controls

  • Provide guidance to 1st line of defense on evolving technology and security risk landscape

  • Coordinate with ORD colleagues who cover Business Units and Infrastructure Groups in discussing impact of cyber, technology and info security risks on business and support processes

  • Monitor industry developments in the management of cyber, technology and info security risk

  • Build and maintain strong positive relationships with the broader risk community in 1st line of defense

  • Work with key stakeholders to evaluate policy exception requests and prepare for senior management review


Skills Required:

  • Bachelor’s Degree minimum

  • 3-7 years’ worth of technology and or security risk related work experience, preferably in the financial services industry

  • Experience in Technology (IT) Risk Management and or Technology (IT) Audit including Information Security and or Cyber Security

  • Experience with relationship management

  • Strong interpersonal skills in order to work in a team oriented environment

  • Excellent communication skills, both verbal and written; ability to produce concise and effective presentations tailored to technical and non-technical audiences

  • Strong project management and organization skills

  • Ability to multitask and prioritize

  • Ability to work under pressure and to tight deadlines

  • Flexible and self-motivator

  • Strong analytical and problem-solving skills;

  • Proficiency in MS Office and related applications (e.g. Word, Excel, PowerPoint)

Help us maintain the quality of jobs posted on PowerToFly. Let us know if this job is closed.
We're a community of women leveraging our connections into top companies to help underrepresented women get the roles they've always deserved. Simultaneously, we work to build truly inclusive hiring processes and environments where women can thrive and not just survive.
Are you hiring? Join our platform for diversifiying your team