Associate

Year    Mumbai, Maharashtra, India

Job Description

b'


Associate - Specialized Technical Analytics (Legal and Compliance)

Job Number:3254699
POSTING DATE: Jun 25, 2024
PRIMARY LOCATION: Non-Japan Asia-India-Maharashtra-Mumbai (MSA)
JOB: Legal and Compliance
EMPLOYMENT TYPE: Full Time
JOB LEVEL: Associate

DESCRIPTION
Company Profile
Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments, and individuals from more than 1,200 offices in 43 countries.

As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence, and strong team ethic. Morgan Stanley can provide a superior foundation for building a professional career - a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.

Legal and Compliance Division Profile

Legal & Compliance Division (LCD) comprises of Legal, Compliance, Global Financial Crimes, Operational Risk and Regulatory Relations. Compliance, Global Financial Crimes and Operational Risk are together referred to as Non-Financial Risks (NFR)
  • The Legal Department provides guidance, requirements, and procedures for understanding and complying with the laws, regulations and Firm policies that apply to our businesses.
  • The Global Compliance Department identifies applicable Compliance Obligations and maintains a Firmwide Compliance Risk management program, including Compliance Risks that transcend business lines, legal entities and jurisdictions of operation.
  • Global Financial Crimes is responsible for the development and governance of the Firms financial crime prevention efforts across all regions and business units. Global Financial Crimes is comprised of the Anti-Money Laundering (AML), Sanctions, Anti-boycott, Anti-Corruption (ACG), Government, and Political Activities Compliance (GPAC) programs.
  • Operational Risk refers to the risk of financial or other loss, or potential damage to a firms reputation, resulting from inadequate or failed internal processes, people, systems, or from external events. Operational Risk Department (ORD) defines the framework, standards and governance for Operational Risk for the Firm, and implements and monitors the company-wide operational risk program. ORD works with the business units and control groups to help ensure Morgan Stanley has a transparent, consistent, and comprehensive program for managing operational risk, both within each area and across the firm globally.
  • The Global Regulatory Relations Group (GRRG) is responsible for strategic and centralized management of the supervisory activities of Morgan Stanleys regulators and related developments globally, with a focus on regulatory reviews and examinations and continuous monitoring activities. GRRG serves as the central point of contact for the regulatory staff responsible for supervisory activities at Morgan Stanley entities and for timely reporting to Firm management and other governance or management bodies, as appropriate, on those relationships and supervisory processes, including areas of significant regulatory focus or concern.


LCD Center of Excellence - Mumbai (LCDCoE) is a part of Morgan Stanleys Global In-house Center, which provides global support to LCD and is an integral part of Firm and LCD strategy.

Specialized Technical Analytics (STA) a function within Operational Risk has an opening for an Associate to support Cyber, Technology, and Information Security Risk Oversight team (CTIS) The successful candidate will be responsible for helping execute independent oversight, analysis, and monitoring of risks, controls and key metrics.


QUALIFICATIONS


The primary responsibilities of the role include:
  • Identify and evaluate cybersecurity risks related to the systems and information supporting Firm activities.
  • Work with technology risk and control owners in assessing inherent and residual levels risks based on structured risk framework.
  • Actively research emerging Indicators of Compromise/Attack, exploits and vulnerabilities with the intent of operationalizing findings to better protect the organization.
  • Provide subject-matter expertise in cybersecurity, technology, and information security to support overall risk management in the Firm, working closely with cybersecurity and technology personnel across the Firm.
  • Review CTIS related issues, internal and external incidents to help inform an independent view of the overall risk posture of the Firm and its underlying legal entities. Review metrics and escalation reports to monitor risk and control-related issues and trends.
  • Provide subject-matter expertise in CTIS area to support overall risk management in the Firm.
  • Provide monthly and quarterly risk reporting.
  • Coordinate with global colleagues in ORD who cover business units and infrastructure groups in discussing impact of CTIS risks on business and support processes.
  • Build and maintain strong relationships with the broader risk community and the technology and security operational and development teams.
  • Monitor industry developments in the management of CTIS risks and provide guidance on the evolving CTIS landscape.


Requirements

The ideal candidate would have:
  • Bachelors degree in information technology, computer science, cybersecurity, data science, finance, economics, business, or related fields. Advanced degree holders are also encouraged to apply.
  • 3 -6 years in handling technology, information security risk management, or related work experience.
  • Ability to carry out quantitative and qualitative data analysis, with particular emphasis on the ability to draw strategic insight from those analyses
  • An understanding of the MITRE ATT&CK Framework, stages of an attack and sub-techniques. Ability to identify tactics, techniques, and procedures (TTPs) of potential threats through the MITRE ATT&CK or similar frameworks.
  • Cyber security control testing, including but not limited to NIST, MITRE ATT&CK and similar frameworks.
  • Strong verbal and written communication
  • Excellent problem solving skills
  • Strong interpersonal skills to engage with multiple and global stakeholders
  • Ability to work under pressure and meet tight deadlines
  • Flexible and self-motivator
  • Highly proficient in MS Office Suite (e.g., Word, Excel, PowerPoint). Additional expertise in tools such as PowerBI, Tableau, and other data aggregation and reporting tools a plus

Coverage
Monday to Friday from 11.00PM to 8.00PM. Coverage is dependent on business needs so flexibility on required finish time or full days coverage may be required during some Indian holidays.

"Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents."

Beware of fraud agents! do not pay money to get a job

MNCJobsIndia.com will not be responsible for any payment made to a third-party. All Terms of Use are applicable.


Related Jobs

Job Detail

  • Job Id
    JD3347418
  • Industry
    Not mentioned
  • Total Positions
    1
  • Job Type:
    Full Time
  • Salary:
    Not mentioned
  • Employment Status
    Permanent
  • Job Location
    Mumbai, Maharashtra, India
  • Education
    Not mentioned
  • Experience
    Year