See job description for details
Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more than 747 offices in 42 countries.
In Morgan Stanley, Technology works as a strategic partner with Morgan Stanley business units and the world's leading technology companies to redefine how we do business in ever more global, complex, and dynamic financial markets. Morgan Stanley's sizeable investment in technology results in quantitative trading systems, cutting-edge modelling and simulation software, comprehensive risk and security systems, and robust client-relationship capabilities, plus the worldwide infrastructure that forms the backbone of these systems and tools. Our insights, our applications and infrastructure give a competitive edge to clients' businesses—and to our own.
Morgan Stanley Bank International China (MSBIC) and the Asia Technology Department is seeking an experienced Technology Risk professional to join the Bank in Zhuhai as Technology Risk Manager.
The MSBIC Technology Risk Manger will be responsible for all technology risk activities related to the Bank, including implementation of Technology Risk programs and oversight of technology risk items following the firm wide Technology Risk Management Framework. This role will also be responsible for leading regulatory and other audit activities related to Technology Risk.
The MSBIC Technology Risk Manager will report to the Bank?s General Manager and regional technology department to provide regular technology risk management status updates to the bank?s operational risk committees.
Responsibilities will include:
-Oversight of key aspects of technology risk management activities as an independent risk advisor according to the Technology Risk Management Framework and Legal Entity (?LE?) specific processes
-Monitoring of and acting as the second line of defense on the responses to regulatory inquiries/inspections/audits
-Supporting global technology risk assessment programs and defining local requirements.
-Assessment of IT risks. Conducting self-assessment and data analysis to help identify technology related risks, and subsequently monitor, track and manage them.
-Supporting the implementation and maintenance of Technology policy and procedures.
-Represent technology risk at the local industry wide technology risk forums.
-Provide technology risk update to the governance committee of the China Bank. Qualifications:
Skills / Experience Required:
-Technology Professional with 8+ years of experience in Technology Development, Project Management, Technology Risk, Information Security or similar subject-matter
-Proven track record in the financial services industry; in an investment bank with sales and trading, finance, operations, technology or internal audit background.
-Outstanding communication and interpersonal skills. Ability to work effectively with all levels of the organization. Excellent influencing and negotiation skills
-Ability to draft high quality written products that are comprehensive, accurate, and tailored to the audience
-Strong organizational skills and an ability to manage multiple demands and changing priorities. Detail oriented.
-Strong analytical skills required to enable independent research and accurate assessments of risk management process effectiveness and adherence to regulatory requirements.
-Willingness to travel domestically and occasionally internationally
-Ability to read, write, and speak Chinese language (Mandarin).
-Industry certifications such as CISA, CISSP, CISM, CRISC
-Working experience of risk assessment methodologies, internal controls and industry technology risk management frameworks such as ITIL, CobiT, and ISO 27001
-Knowledge and experience of the regulatory environments within Asia.
-Understanding of operational risk and associated regulations (e.g., Basel, SOX, CBIRC IT Risk Management Guideline, China Cyber Security Law, HK SFC Code of Conduct, MAS TRMG), and the associated application to a technology division within Financial Services.
-Hands-on technical background (eg. system developer, integrator, QA and /or support)