The mission of the TIR PARR is to support technology organizations in their efforts to meet regulatory requirements and respond to requests for information about our technology risk management processes from regulators, auditors, and Morgan Stanley customers adequately and efficiently The Policy, Audit and Regulatory Risk Specialist accountability: To buffer T&D from Regulatory and Audit requests, mapping challenges and themes, and challenging status quo where the firm operates inefficiently To drive process changes, ensuring that clients focus on broader intent of issues surfaced rather than on one-off closures To leverage Coverage subgroup as primary care physicians so that PARR can serve as specialist To willing to share our intellectual property selectively to advance industry convergence around RCF type approach To develop and implement Technology and Data related Policies and Standards across the firm Primary Responsibilities: Advisory Function: Serve as subject matter expert on US regulatory standards and expectations around technology and information risk Assist in understanding potential regulatory concerns whether or not these have resulted in findings Coordinate key interactions with Federal Reserve and OCC (including but not limited to monthly meeting) Activity Management: Plan for events based upon previous review cycle and awareness of market events Respond to external regulatory and internal audit requests regarding our control environment Issues Management: Support issue and action plan owners in successful completion of activities designed to address findings identified by regulatory exams and audits (other than SOX) Track appropriate metrics regarding issues and action plans related to regulatory findings associated with technology related action plans (whether or not the underlying issue is technology related) and audit findings associated with technology related issues Analyses Function: Map regulatory, audit, and client inquiries against RCF Compare and contrast RCF focal points of different constituencies Identify themes within RCF mapping to help focus proactive risk management activity AND owner for remediating theme Leverage themes to identify gaps in existing risk identification process (i.e., holes in ARA) Regional Support: Provide a regulatory response and engagement framework which supports the firms operation and business strategy. Initial interface and primary point of contact for regional RAE efforts or inbound inquiries Ensure that T&D response is complete, consistent and transparent Partner with the regional CIO to address regulatory issues, concerns and requirements in the region. Policy: Interact with all levels of personnel across division Responsible for managing specific project/programs in relation to development, roll-out and adoption of new Policies & Standards Develop and implement management reporting processes to track initial implementation of Policies and Standards Working with management teams within Technology owning Divisions across the enterprise to develop and implement strategies for implementation of Policies & Standards. Skills Required:Aptitude for IT and strong understanding of technology concepts and terminology Operational Risk Knowledge: Understanding of relevant regulations to the financial services business, understanding of operational risk constructs and conceptsAnalytical thinking, strong Analytical skills, ability to read Regulatory requirements related to Technology and translate to technical terms.
Conduct independent research on regulatory requirements.Methodical / organised approach to analysis and documentationStrong communication / interpersonal skills to be able to interact at all levels & be effective as part of a broader team. The ability to communicate globally is essential ie. (conference calls, e-mails)Experienced at developing and sustaining relationships, building collaborative partnerships, and liaising with a variety of constituents and stakeholders at a variety of organizational levelsStrong organizational skills the ability to manage multiple tasks simultaneously.Strong project management skillsGood use of initiative, judgement and decision makingA proven track record in global and cross team projectsExcellent working knowledge of MS Office, particularly Excel and PowerpointSelf-starter able to complete role with minimal supervision, paying close attention to detailPro-active: identifies other ?value-add? areas.
Identifies areas for improvement and suggests solutionsAwareness of industry standards and best practices Skills Desired:Keen to multi-task - flexible and adaptive to change and willing to learn and manage a broad range of tasksStrong understanding of Morgan Stanleys businesses and how they leverage technologyExperience in technology, technology risk, technical writing, or policy development a plusStrong knowledge of IT Project management methodology Morgan Stanley is an equal opportunities employer and is committed to fair treatment, regardless of background (including criminal record). eFinancialCareers SC - 9 months ago