Cyber Risk Officer Glasgow, Scotland
Morgan Stanley
Full Time
Glasgow, Scotland
32000 - 45000 GBP ANNUAL Today
Job description
Senior Cyber Risk Officer
Job Number:
3232231
POSTING DATE: Mar 15, 2023
PRIMARY LOCATION: Europe, Middle East, Africa-United Kingdom-United Kingdom-Glasgow
EDUCATION LEVEL: Bachelor's Degree
JOB: Risk Management
EMPLOYMENT TYPE: Full Time
JOB LEVEL: Vice President
DESCRIPTION
Cyber Risk Officer
Glasgow
Glasgow
3232231
Enterprise Technology Services (ETS) delivers firm-wide services and platforms including network infrastructure (ENS), core computing (EC), mainframe (MF), end user technologies (EUT), application infrastructure (AI) and workplace support services (WSS).
The EC Security and Cybersecurity Risk Officer is responsible for facilitating security and cybersecurity risk management practices across the EC Compute and Storage (CASE) fleet. The role will champion the security and cybersecurity risk agenda across multiple teams and ensures that risks are identified, controlled, managed, and reported. This role will have colleagues and stakeholders across the globe and be required to liaise with risk governance functions, senior technology leaders and executive management.
About Morgan Stanley
Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments, and individuals from more than 1,200 offices in 43 countries.
As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence, and strong team ethic. Morgan Stanley can provide a superior foundation for building a professional career – a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.
What will you be doing?
Specifically, the person will be responsible for the following:
Engagement with EC engineers, operations staff, product owners and security architecture reviewers as equal stakeholder for the security and cybersecurity risk agenda. Participate in agile design phases to deliver security and cybersecurity requirements.
Pro-active security and cybersecurity risk identification for both new and legacy EC systems.
Engagement with Firm wide risk and control groups, including first, second and third line of defense risk functions as appropriate.
Establish technology wide view of prioritized key security and cybersecurity threats.
Establish security and cybersecurity best practices and coordinate implementation across multiple squads.
Serve as key stakeholder and sponsor for a portfolio of risk remediation activities, including driving requirements and priorities to delivery teams.
Facilitates cross-disciplinary coordination for risk analysis, remediation scoping and reporting / engagement with stakeholders.#
#LI-KC1
QUALIFICATIONS
What we’re looking for:
Detailed knowledge of NIST or other security control frameworks
Detailed knowledge of security and cybersecurity threats and vulnerabilities
Previous experience in security and cybersecurity risk consulting in technology Infrastructure (in particular, Unix/Linux operating systems and storage) at an enterprise scale
Previous experience with technology controls programs and risk domains, (e.g. change management, SDLC, information security practices, risk management frameworks (e.g. COBT, ITIL)
Working knowledge of agile methodologies and organizational principles
Excellent verbal and written communication skills, including the ability to translate requirements effectively and lead group discussion
Must be extremely detail oriented, very organized and value the integrity of the data
Strong analytical and problem-solving ability and capability to switch context quickly and work on multiple streams of work concurrently
High proficiency with MS Office and related applications (Word, Excel, PowerPoint, Access, Visio, Project) with advanced skill in data manipulation using Excel.
Ability to build and sustain relationships with individuals at all levels of the organization and leverage this to achieve work-related objectives
Skills that will help you in the role:
Experience working in an Investment Banking environment
Experience of auditing within a technical environment
Working knowledge of OpenPages
Project Management experience (e.g. PMP)
Where will you be working?
This role is located at our Glasgow office based on Waterloo Street in the city center. This location has a wellness center, including gym and shower/changing facilities, GP, Prayer room, Canteen and onsite Starbucks.
Flexible work statement:
Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more.
Equal opportunities statement:
Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.
#LI-KC1
