APAC Risk Officer, Cyber, Data, Risk & Resiliency Management, VP

Job Description

Job Number:

3261949

Posting Date

Primary Location

Education Level: Bachelor's Degree

Job

Other

Employment Type: Full Time

Job Level: Vice President

Description

We’re seeking someone to join our risk function of enterprise technology & risk divisions team as an APAC Risk Officer in Tech Risk Gov & Controls to support Asia regional risk and control self-assessment programs and governance programs, provide a direct support and liaison for senior Asia ETR regional management.

In the Technology division, we leverage innovation to build the connections and capabilities that power our Firm, enabling our clients and colleagues to redefine markets and shape the future of our communities. This is a Cyber, Data, Risk & Resiliency Management Manager position at Vice President level, which is part of the job family responsible for identifying, assessing, and mitigating risks to ensure operational continuity and resilience in the face of potential threats or disruptions that could impact the organization, plus management of ongoing incidents.

Morgan Stanley is an industry leader in financial services, known for mobilizing capital to help governments, corporations, institutions, and individuals around the world achieve their financial goals.

Interested in joining a team that's eager to create, innovate and make an impact on the world? Read on.

What you'll do in the role:

1. Staff, develop and lead one or more teams which is part of a department.
2. Analyze multiple sets of information to create summaries for various stakeholders.
3. Manage the overall engagement of the Division with Firmwide risk and control groups as appropriate. This includes CDRR(Technology Risk department) Identity and Access Management, Resiliency, Network Security, entitlements, Cyber, data, ORD(Operational Risk Department) and Internal Audit.
4. Manage the engagement with Technology Risk teams and SME in support of agreed controls to monitor and coordinate the implementation and adoption of all applicable processes and tools. Determine the scope and manage the execution of any necessary remediation work to achieve the agreed level of adoption in the Division.
5. Manage the engagement with Technology Risk to collaborate on the design of new controls or control process for use across Technology.
6. Monitor the completeness and appropriateness of key risk and control related data and raise concerns with data owners and escalate to Divisional management if required.
7. Review and approve certain control related reference data in TAI.
8. Ensure management awareness and governance around progress on risk responses from across the risk and control agenda through regular reporting to management.

Qualifications

What you'll bring to the role:

1. Experience in effectively executing IT strategy, delivery and complex initiatives.
2. Ability to present information in a clear and concise manner to technology and business leadership.
3. Advanced understanding of functional area and competent understanding of competitive environment.
4. At least 8 years' relevant experience in technology risk management in the financial services or other regulated industry would generally be expected to find the skills required for this role.
5. Familiarity with the Technology risk management framework and control self-assessment process.
6. Experience of team management / relationship management in a matrix management structure.
7. Proven leadership skills with excellent track record in delivering high performance.
8. Experience of risk reporting / dashboard generation / KRIs.
9. Familiar with regulatory technology requirements, Experience of regulatory and audit engagements local industry forums.
10. Strong understanding of Asia financial industry business and how technology being leveraged.
11. Ability to influence and engage with senior management and stakeholders.
12. Ability to manage expectations and handle high-pressure situations with tight deadlines.
13. Ability to quickly adapt to changing priorities and demands.
14. Excellent communication / interpersonal skills and able to interact at all levels of the organization and with local regulators as well as be effective as part of a broader team, additional fluency in regional language highly desired.
15. Knowledge and understanding of infrastructure technologies and / or security technologies.
16. Self-starter able to complete role with minimal supervision, paying close attention to detail.
17. Certifications in the IT Risk area such as CISA, CISSP / CISSM (or equivalent) would be an advantage.
18. Strong project management skills; proven ability to prioritize business objectives and effectively manage regulatory agenda in a dynamic environment.

What you can expect from Morgan Stanley

We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 85 years. At our foundation are five core values — putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back — that guide our more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find trusted colleagues, committed mentors and a culture that values diverse perspectives, individual intellect and cross-collaboration.

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential.