Morgan Stanley
Change Management Technology Risk Officer - VP
Morgan Stanley, Alpharetta, Georgia, United States, 30022
Change Management Technology Risk Officer
The position is for a Change Management Technology Risk Officer, focusing on support for Morgan Stanley's two U.S. Banks: Morgan Stanley Bank, National Association (MSBNA) and Morgan Stanley Private Bank, National Association (MSPBNA). These banks are independent national banks and wholly owned subsidiaries of Morgan Stanley. Because of their national bank charters and ability to attract stable insured deposits, the Banks represent valuable franchise-enhancing strategic assets to the Firm. The U.S. Banks Technology Risk and Governance team is responsible for supporting Bank business and growth by managing the provision of technology within a regulatory-compliant, risk-managed framework in a cost-effective manner. The team is seeking an experienced Technology Risk Officer to provide ongoing monitoring of the Banks' technology risk landscape for Change Management and Software Development Lifecycle (SDLC), including the identification, tracking, reporting, and oversight of risks and remediation activities, as well as participation in the evolution and execution of the Bank technology risk program. Job Functions/Duties and Responsibilities: Provide risk oversight and governance across the Change Management and SDLC technology domains Perform Risk Assessment and Risk Monitoring and Reporting related to regulatory compliance and established risk-management frameworks Contribute to key regulatory and risk initiatives in a cost effective and efficient manner Track Bank-impacting technology risks and support management in influencing the prioritization of remediation activities Conduct Risk Assessments and Risk Monitoring and Reporting related to Change Management Support key risk deliverables such as RSCA, Quarterly Risk Management Reporting and ongoing Risk Metric review Engage deeply with performance indicators that drive our business forward Assess existing workflows and propose and implement effective enhancements Skills Required: Seven plus years of experience in a similar role in financial or banking services, with practical knowledge of bank regulatory oversight Extensive experience in Change Management and SDLC Sound understanding of the full technology risk management lifecycle Familiarity with industry technology risk management frameworks Familiarity with OCC approach and methodologies such as Heightened Standards for Large Banks High level of attention to detail Ability to act independently and be accountable for risk oversight and governance for Change Management and SDLC Capacity to efficiently handle information through direct interaction with our databases and systems Strong analytical skills with competence to solve problems independently and drive tasks to completion Strong communication skills with the ability to summarize complex information clearly for technical and non-technical audiences An appropriate level of judgment and maturity Skills Desired: Prior experience working in a large bank CRISC (Certified in Risk and Information Systems Control) highly preferred. Alternatively, candidates with certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), or other relevant risk management and information security certifications will also be considered. Cloud certification Knowledge of the FFIEC IT Handbooks, and related laws and regulations including OCC Proficiency with Jira for project and task management Education: Bachelor's degree in Information Technology, Business, or Finance, or related field
The position is for a Change Management Technology Risk Officer, focusing on support for Morgan Stanley's two U.S. Banks: Morgan Stanley Bank, National Association (MSBNA) and Morgan Stanley Private Bank, National Association (MSPBNA). These banks are independent national banks and wholly owned subsidiaries of Morgan Stanley. Because of their national bank charters and ability to attract stable insured deposits, the Banks represent valuable franchise-enhancing strategic assets to the Firm. The U.S. Banks Technology Risk and Governance team is responsible for supporting Bank business and growth by managing the provision of technology within a regulatory-compliant, risk-managed framework in a cost-effective manner. The team is seeking an experienced Technology Risk Officer to provide ongoing monitoring of the Banks' technology risk landscape for Change Management and Software Development Lifecycle (SDLC), including the identification, tracking, reporting, and oversight of risks and remediation activities, as well as participation in the evolution and execution of the Bank technology risk program. Job Functions/Duties and Responsibilities: Provide risk oversight and governance across the Change Management and SDLC technology domains Perform Risk Assessment and Risk Monitoring and Reporting related to regulatory compliance and established risk-management frameworks Contribute to key regulatory and risk initiatives in a cost effective and efficient manner Track Bank-impacting technology risks and support management in influencing the prioritization of remediation activities Conduct Risk Assessments and Risk Monitoring and Reporting related to Change Management Support key risk deliverables such as RSCA, Quarterly Risk Management Reporting and ongoing Risk Metric review Engage deeply with performance indicators that drive our business forward Assess existing workflows and propose and implement effective enhancements Skills Required: Seven plus years of experience in a similar role in financial or banking services, with practical knowledge of bank regulatory oversight Extensive experience in Change Management and SDLC Sound understanding of the full technology risk management lifecycle Familiarity with industry technology risk management frameworks Familiarity with OCC approach and methodologies such as Heightened Standards for Large Banks High level of attention to detail Ability to act independently and be accountable for risk oversight and governance for Change Management and SDLC Capacity to efficiently handle information through direct interaction with our databases and systems Strong analytical skills with competence to solve problems independently and drive tasks to completion Strong communication skills with the ability to summarize complex information clearly for technical and non-technical audiences An appropriate level of judgment and maturity Skills Desired: Prior experience working in a large bank CRISC (Certified in Risk and Information Systems Control) highly preferred. Alternatively, candidates with certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), or other relevant risk management and information security certifications will also be considered. Cloud certification Knowledge of the FFIEC IT Handbooks, and related laws and regulations including OCC Proficiency with Jira for project and task management Education: Bachelor's degree in Information Technology, Business, or Finance, or related field