Morgan Stanley

Technology GRC-Control Exceptions Lead - Vice President - Cyber Data Risk and Resilience (CDRR)

Profile Description

We’re seeking someone to join our team as Vice President, will lead the department's governance, risk, and compliance functions, ensuring strong control mechanisms, regulatory compliance, and mitigation of technology-related risks managed. This role reports into Chief Risk Officer (CRO)

Cyber Data Risk and Resilience (CDRR)

The Cybersecurity organization's mission is to create an agile, adaptable organization with the skills and expertise needed to defend against increasingly sophisticated adversaries. This will be achieved by maintaining sound capabilities to identify and protect our assets, proactively assessing threats and vulnerabilities and detecting events, ensuring resiliency through our ability to respond to and recover from incidents and building awareness and increase vigilance while continually developing our cyber workforce.

Tech Risk Gov & Controls (TRGC)

TRGC provides governance and oversight of Risk across Technology by engaging with internal and external clients, including regulators, to help better identify, manage, mitigate and communicate risk posture.

Risk, Regulatory & Resilience

This is a  Vice President position within Risk, Regulatory & Resilience, which performs various independent functions to ensure adequate controls are in place  We do this by providing an integrated risk and control framework to govern, assess, mitigate and manage financial and operational risk in Operations.

Morgan Stanley is an industry leader in financial services, known for mobilizing capital to help governments, corporations, institutions, and individuals around the world achieve their financial goals.

At Morgan Stanley India, we support the Firm’s global businesses, with critical presence across Institutional Securities, Wealth Management, and Investment management, as well as in the Firm’s infrastructure functions of Technology, Operations, Finance, Risk Management, Legal and Corporate & Enterprise Services. Morgan Stanley has been rooted in India since 1993, with campuses in both Mumbai and Bengaluru. We empower our multi-faceted and talented teams to advance their careers and make a global impact on the business. For those who show passion and grit in their work, there’s ample opportunity to move across the businesses for those who show passion and grit in their work.

Interested in joining a team that’s eager to create, innovate and make an impact on the world? Read on…

What you’ll do in the role:

• Define and manage every exception or exemption to control requirements or instances and report on risk and planned mitigation strategies co-ordinating with stakeholders.
• Analyse data from multiple sources of cyber platform and leverage AI to correlate and contextualise the incidents and identify the risk for the firm with control deviations.
• Collaborate with stakeholders to drive the use of exceptions data and propose solutions to improve the Firm's risk identification strategy.
• Understand the technology stack, cyber platform, security procedures, Risk governance defined by the firm.
• Explore new data sources and potential data sets to Perform data analysis (statistical and otherwise) and derive insightful and actionable business outcomes.
• Ensure data integrity through – Data quality, validation, Governance and Transparency
• Understand data visualization to create meaningful dashboards for end-users.
• Lead projects, analyze and prioritize workload based on business, risk and requirements.
• Manage operations team for all of technology risk and governance functions and follow-up actions and resolution of all technology control governance solutions.
• Establish effective working relationships with Engineering counterparts and other stakeholders.
• Develop automated metrics reporting capabilities on operational and exceptions management process.

• What you’ll bring to the role:

  • At least 4 years’ relevant experience would generally be expected to find the skills required for this role  including 10+ years of experience in risk management, governance, and compliance, preferably within a technology control environment
  • Bachelor’s or Masters professional graduation in InformatiLon Technology, Cyber Security, Risk Management, or a related field (Master's degree preferred).
  • GRC Expertise: Deep understanding and hands-on experience in defining and implementing governance, risk, and compliance (GRC) controls and procedures within a technology-focused environment.
  • Regulatory Compliance: In-depth knowledge of regulatory frameworks, including data protection, financial, and cybersecurity regulations, with experience in implementing compliance programs.
  • Cybersecurity & Risk Management: Proven experience in leading cyber risk management initiatives, implementing controls, and mitigating risks within large, complex technology environments.
  • Exception Management: Strong background in managing control deviations, exception handling, and developing remediation plans to address control gaps or weaknesses.
  • Incident Tracking and Reporting: Experience in tracking incidents and effectively presenting risk insights to senior management and stakeholders in different forums.
  • Operational Leadership: Ability to manage operational workloads, provide 24x7 support, and ensure continuous service availability of technology governance solutions.
  • Communication Skills: Exceptional verbal and written communication skills, with the ability to effectively negotiate, articulate complex risk concepts, and present clear solutions to senior management.
  • Team Management:  Proven experience in managing global teams, fostering collaboration across multiple regions, and resolving conflicts.
  • Conflict Resolution: Strong skills in conflict resolution, with the ability to lead teams through complex issues and align stakeholders on mitigation strategies.
  • Desirable: Relevant certifications (e.g., CISSP, CISM, CRISC) are highly desirable.

  What you can expect from Morgan Stanley

  We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 85 years. At our foundation are five core values — putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back — that guide our more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find trusted colleagues, committed mentors and a culture that values diverse perspectives, individual intellect and cross-collaboration. Our Firm is differentiated by the caliber of our diverse team, while our company culture and commitment to inclusion define our legacy and shape our future, helping to strengthen our business and bring value to clients around the world. Learn more about how we put this commitment to action: morganstanley.com/diversity. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry.

  Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximise their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing and advancing individuals based on their skills and talents.