Associate - Cyber/IT/Information Security (US Banks Operational Risk Coverage) Associate - Cyber/IT/Information Security (US  …

Morgan Stanley
in Baltimore, MD, United States
Permanent, Full time
Be the first to apply
Morgan Stanley
in Baltimore, MD, United States
Permanent, Full time
Be the first to apply
Associate - Cyber/IT/Information Security (US Banks Operational Risk Coverage)
Morgan Stanley

Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more than 1,200 offices in 43 countries
The talent and passion of our people is critical to our continued success as a firm. Together, we share five core values rooted in integrity, excellence and strong team ethic:
1. Putting Clients First
2. Doing the Right Thing
3. Leading with Exceptional Ideas
4. Giving Back
5. Committing to Diversity and Inclusion

Morgan Stanley is committed to helping its employees build meaningful careers and we strive to be a place for people to learn, achieve and grow.

Firm Risk Management

Firm Risk Management (FRM) enables Morgan Stanley to achieve its business goals by partnering with business units across the Firm to realize efficient risk-adjusted returns, acting as a strategic advisor to the Board and protecting the Firm from exposure to losses as a result of credit, market, liquidity, operational, model and other risks.

Our mission is to serve as the follow roles:
• Independent agent to set consistent principles and disciplines for risk management
• Strategic advisor to Firm management for setting risk appetite and allocating capital
• Industry leader to influence and meet regulatory standards

You will collaborate with colleagues across FRM and the Firm to protect the Firm's capital base and franchise, advise businesses and clients on risk mitigating strategies, develop tools and methodologies to analyze and monitor risk, contribute to key regulatory initiatives and report on risk exposures and metrics to enable informed and strategic decision-making. Through thoughtful analysis and clear communication we are best able to bring our ideas to the table and improve the Firm.

Firm Risk Management values diversity and is committed to providing a supportive and inclusive workplace for all employees.

Firm Risk Management's unique franchise promotes:
• Flat, flexible and integrated global organization
• Collaboration and teamwork
• Credible, independent decision-making
• Organizational influence
• Creative and practical solutions
• Meritocratic and diverse culture


The Morgan Stanley Baltimore office is a critical component of the Firm`s Global footprint and has 1,400 employees that provide support and services to the Investment Banking, Securities, Investment Management and Wealth Management Businesses.

Our office at Thames Street Wharf is located in the heart of Baltimore's Inner Harbor. Additionally, the Firm recently expanded downtown and occupies two floors at 100 South Charles in the new, up and coming neighborhood of Harbor Point, adjacent to historic Fells Point.

The Position

Morgan Stanley has an opening for an Associate for the Cyber Technology & Information Security (CTIS) Risk Oversight team within ORD. This role supports the independent, second line of defense function responsible for providing operational risk oversight for Cyber, IT and Information Security across both Morgan Stanley Private Bank, NA (MSPBNA) and Morgan Stanley Bank, NA (MSBNA).

Primary Responsibilities

Oversight Function - Provide independent assessment of the effectiveness of First Line risk management teams and Control Functions on an ongoing basis

Risk Identification - Identify and assess Cyber, IT and Information Security risks related to key systems supporting the US Banks? activities and products

Governance - Support US Banks ORD in relevant (or in scope) Cyber/IT/IS governance, steering, and working group committees and ensure that risk and control-related activities are in compliance with Regulatory requirements and remain in line with the Banks' risk appetite

Monitoring - Review metrics, industry developments, and escalation reports to monitor risk and control-related developments, issues and trends in the management of cybersecurity, technology and information security risk for the US Banks

Risk Assessments - Assess whether new/existing cybersecurity activities and technology controls utilized by the US Banks are designed and implemented effectively so as to verify that risks are mitigated to targeted levels

Relationship Management - Liaise and work closely with US Banks first line Control Function owners and Risk Managers in providing Operational Risk coverage for Cyber/IT/IS Risk

Advisory Services - Provide guidance on the evolving Cybersecurity and technology risk landscape

Policy & Procedures - Maintain and/or oversee relevant policies and procedures related to US Banks technology and security processes


Skills Required:
• Bachelor's Degree minimum

• 3-7 years' worth of technology and or security risk related work experience, preferably in the financial services industry

• Experience in Technology (IT) Risk Management and or Technology (IT) Audit including Information Security and or Cyber Security

• Experience with relationship management

• Strong interpersonal skills in order to work in a team oriented environment

• Excellent communication skills, both verbal and written; ability to produce concise and effective presentations tailored to technical and non-technical audiences

• Strong project management and organization skills

• Ability to multitask and prioritize

• Ability to work under pressure and to tight deadlines

• Flexible and self-motivator

• Strong analytical and problem-solving skills;

• Proficiency in MS Office and related applications (e.g. Word, Excel, PowerPoint)

• Industry Certifications (CISM/CISA/CRISC/CISSP) a plus

Morgan Stanley logo
More Jobs Like This
See more jobs