Cyber/Technology Risk-Vice President

We're seeking someone to join our team as a Cyber/Technology Risk-Vice President.
The cornerstone of Morgan Stanley's risk management philosophy is the execution of risk-adjusted returns through prudent risk-taking that protects Morgan Stanley's capital base, liquidity and franchise. Non-Financial Risk (NFR) refers to the risk of actual or potential economic, reputational, regulatory, financial reporting and client impact, resulting from inadequate or failed internal processes, people, and systems, or from external events impacting the full scope of its business activities, including revenue-generating activities and infrastructure groups. NFR is part of the Second Line of Defence providing independent oversight and challenge to management across compliance and operational risks. Given the nature and breadth of operational risk, operational risks are managed at multiple levels e.g. Firmwide, as well as Regional, Business Unit, Infrastructure Group, Control Function and Legal Entity.
The NFR Cyber, Technology and Information Security (CTIS) Department is focused specifically on managing cyber, technology and information security risks. NFR CTIS brings together rules management, standard setting, assessing risk, process and controls by technology domains, advising the business, and an oversight and testing function to provide a comprehensive risk management decision for cyber, technology and information security related risks. Cybersecurity, Information Security and Technology risk management is critical to ensure the confidentiality, integrity and availability of Firm Information, Systems and Assets. Cybersecurity risk refers to managing and protecting the Firm's information assets and operations from cyber threats, e.g., cyber events or attacks resulting from inadvertent or intentional acts involving deception, falsification, destruction, etc. Information Security risk refers to protecting the confidentiality, integrity and availability of Firm's information and systems, e.g., internal and external threats that could result in unauthorized disclosure, misuse, alteration or destruction of confidential information and systems. Technology risk refers to ensuring and protecting the availability, stability, capacity and recovery capabilities of the Firm's key systems, e.g., loss, damage or business disruption resulting from inadequate or failed processes, people and systems or from external events.
Morgan Stanley is seeking a Risk professional to join the Cyber, Technology and Information Security (CTIS) Oversight Department within the Non-Financial Risk Organisation in Budapest at the Vice-President level. CTIS Risk Oversight is the practice of monitoring risks related to the confidentiality, availability and integrity of the Firm's systems and information including associated processes and controls. The successful candidate will be responsible for executing independent oversight and monitoring of risks and controls around the Firm's CTIS along with relevant thought leadership. The role will report to the Head of CTIS NFR for Morgan Stanley EMEA.
Since 1935, Morgan Stanley is known as a global leader in financial services, always evolving and innovating to better serve our
clients and our communities in more than 40 countries around the world.

What you'll do in the role: Framework Development and Leadership: Support the Head of EMEA NFR CTIS in establishing and maintaining a non-financial risk framework for managing CTIS risks, providing thought leadership to drive strategic and tactical improvements for effective risk management in EMEA Legal Entities.
Oversight and Monitoring: Provide independent oversight of technology, cyber, and security risks, informing the 2nd line response to the Firm's risk posture and preparing non-financial risk management reports and governance materials.
Regulatory Engagement and Governance: Participate in regulatory meeting preparations and responses, manage 2nd line cyber and information security risk governance processes, and facilitate scenario analysis activities.
Collaboration and Advisory: Build strong relationships with cyber and information security risk communities, work with 1st line risk owners to assess risk levels, and provide insights to manage residual risks beyond appetite.
Resource Management and Awareness: Manage local NFR CTIS team resources, maintain awareness of evolving technology and security risks, and support the delivery of the Firm's regulatory obligations related to CTIS risk management.

What you'll bring to the role: Educational Background: A degree in Computer Science or Information Security is preferable but not essential for the role.
Experience: Requires at least six years of relevant experience in technology or security risk-related work, preferably within the financial services industry, with a focus on IT Risk Management, IT Audit, Information Security, Cyber Security, or Resilience Risk.
Certifications: Holding relevant industry certifications such as CISA or CISM is considered an added advantage.
Communication and Interpersonal Skills: Excellent verbal and written communication skills are necessary, with the ability to tailor messages to both technical and non-technical audiences. Strong interpersonal skills are essential for working in a team-oriented environment.
Leadership and Management Skills: Strong leadership, stakeholder management, and influencing skills are required, along with strong project management, organizational skills, multitasking abilities, and analytical and problem-solving skills.

#BPGC

YOU CAN EXPECT FROM MORGAN STANLEY:

At Morgan Stanley, we raise, manage and allocate capital for our clients - helping them reach their goals. We do it in a way that's differentiated - and we've done that for 90 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you'll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work.
To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser.

Certified Persons Regulatory Requirements:

If t his role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or the minimum qualifications to meet internal company benchmarks.

Flexible work statement

Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more.
Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.