Team Description:
The Wealth Management (WM) Chief Data Office (CDO) sits within the WM Risk organization and strives to find the right balance between risk management and business enablement. WM CDO's mission is to: prevent unauthorized access to or misuse of client sensitive data and assets; ensure the highest level of availability for WM's critical business processes; effectively retain, retrieve and protect information and records at the Firm; and mitigate risks caused by inaccurate, untimely, or incomplete WM data.
Role Description:
The End User Security Team within the WM CDO team seeks a Associate to serve as a Business Unit Information Management Officer (BUIMO) to implement processes for data classification, retention, preservation, and disposal as per the Firm's Global Information Management Policy. The team is responsible for contributing to WM's mission to provide policies, tools, processes and support services needed to effectively retain, retrieve, and protect information and records at the firm.
Key Responsibilities will include, but not limited to, the following:
Unstructured File Scanning
Create scanning policies to locate sensitive data in storage repositories, then validate results and implement commensurate security controls
Develop tooling to derive metrics on repository security and residual risk to WM from unstructured data
Data Lifecycle Management
·Support WM system owners through the Data Lifecycle Management (DLM) process, to include: attending interview sessions, clarifying requirements, and providing overall Subject Matter Expertise
·Escalating DLM plans in Wealth Management for Business Unit System Owner (BUSO)/Information Technology Security Officer (ITSO) approval
·Tracking pending DLM plan assessments and driving remediation through documented issues and action plans
·Implement communication campaign to socialize DLM requirements and drive resolution of legacy DLM issues/action plans
Repository Ownership and inactivity
Review reporting on shared folder ownership and access management records to drive remediation for orphaned or unactioned file repositories
Perform due diligence process to determine if repositories are eligible for archiving and decommissioning
Provide requirements to Firm Information Management on tooling improvements to streamline oversight of repositories
General Responsibilities
Maintain clear and consistent communication on status of projects and initiativesto ensure timely completion of deliverables and timely escalation of delays
Participate in various internal reviews and readiness examinations to ensure the business is adequately prepared for all audit, compliance and regulatory reviews
Perform data analysis and monitoring of various indicators by leveraging various data analytics tools/applications, the results of which will then be presented for senior management and utilized for firm wide reporting.
Report risk management issues and internal control deficiencies to ensure that issues and appropriate corrective action plans are in place.
Requirements:
Bachelor's degree
2+ years of relevant risk management experience
Strong writing skills with an ability to summarize complex problems succinctly
Strong organization and time management skills, with the ability to swiftly transition between projects and tasks
Attention to detail, strong analytical, quantitative, and investigative problem-solving abilities
Preferred Qualifications:
Knowledge of the financial services industry; preferably in wealth management, finance, operations, or technology
Experience working file scanning and labeling tools a plus (e.g. Varonis, Microsoft Compliance Portal, Symantec Network Discover, BigID etc.)
Familiarity with visualization tools (e.g., Tableau, Dataiku)
Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximise their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.