The Wealth Management (WM) Chief Data Office (CDO) sits within the WM Risk organization and strives to find the right balance between risk management and business enablement. WM CDO's mission is to: prevent unauthorized access to or misuse of client sensitive data and assets; ensure the highest level of availability for WM's critical business processes; effectively retain, retrieve and protect information and records at the Firm; and mitigate risks caused by inaccurate, untimely, or incomplete WM data.
Role Description:
The End User Security Team within the WM CDO team seeks a Vice President to serve as a Business Unit Information Management Officer (BUIMO) to implement processes for data classification, retention, preservation, and disposal as per the Firm's Global Information Management Policy. The team is responsible for contributing to WM's mission to provide policies, tools, processes and support services needed to effectively retain, retrieve, and protect information and records at the firm.
Key Responsibilities will include, but not limited to, the following:
Unstructured File Scanning
>Work with Technology counterparts to create Exact Data Match (EDM)-based scanning policies to identify sensitive WM client information
>Analyze and validate system scanning logs to identify end-user locations that contain client PII and their owners
>Coordinate efforts to engage repository owners to ensure proper security controls are in place and to label sensitive files with the appropriate sensitive label
>Create tooling to derive metrics on file scanning remediation and measure the residual risk to WM from unstructured files
Data Lifecycle Management
>Support WM system owners through the Data Lifecycle Management (DLM) process, to include: attending interview sessions, clarifying requirements, and providing overall Subject Matter Expertise
>Create materials that explain the Business Unit System Owner (BUSO)/Information Technology Security Officer (ITSO) responsibilities when reviewing/actioning DLM plans
>Escalating DLM plans in Wealth Management for approval
>Tracking pending DLM plan assessments and driving remediation through documented issues and action plans
>Design communication campaign to socialize DLM requirements and drive resolution of legacy DLM issues/action plans
Repository Ownership and inactivity
>Review reporting on shared folder ownership and access management records to drive remediation for orphaned or unactioned file repositories
>Create and implement a due diligence process to determine if repositories are eligible for archiving and decommissioning
>Provide requirements to Firm Information Management on tooling improvements to streamline oversight of repositories
General Responsibilities
>Create and analyze ad hoc and regular reporting for management and in support of various governance committee meetings
>Coordinate and communicate with Technology, Legal, Compliance and business partners to support the creation of risk-based solutions
>Maintain clear and consistent communication on status of projects and initiatives to ensure timely completion of deliverables and timely escalation of delays
>Report risk management issues and internal control deficiencies to ensure that issues and appropriate corrective action plans are in place.
Requirements:
>Bachelor's degree
>9- 12 years of relevant risk management experience
>Strong writing skills with an ability to summarize complex problems succinctly
>Strong organization and time management skills, with the ability to swiftly transition between projects and tasks
>Ability to work independently and possess a strong sense of accountability/ownership
>Attention to detail, strong analytical, quantitative, and investigative problem-solving abilities
Preferred Qualifications:
>Knowledge of the financial services industry; preferably in wealth management, finance, operations, or technology
>Experience working file scanning and labeling tools a plus (e.g. Varonis, Microsoft Compliance Portal, Symantec Network Discover, BigID etc.)
>Familiarity with visualization tools (e.g., Tableau, Dataiku)
Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.