Application & Infrastructure Security Associate

The Wealth Management (WM) Chief Data Office (CDO) sits within the WM Risk organization and strives to find the right balance between risk management and business enablement. WM CDO’s mission is to: prevent unauthorized access to or misuse of client sensitive data and assets; abide by relevant privacy laws and regulations; effectively retain, retrieve, and protect information and records at the Firm; and mitigate risks caused by inaccurate, untimely, or incomplete WM data.

The Application & Infrastructure Security Team within WM CDO works to ensure that our clients’ Personally Identifiable Information (PII) is stored securely and appropriate controls are applied across all technology assets handling sensitive data.

Role Description:

The WM CDO Application and Infrastructure Security Team seeks an Associate to support its efforts to ensure that sensitive WM data is protected at every point in its lifecycle. The team strives to make sure all applications bearing WM client PII apply appropriate controls to prevent unauthorized access.

The team achieves this goal by leveraging existing application telemetry (static code analysis, log analysis, existing architecture assessments, change management information, etc.) to efficiently identify potential risks. The Assistant Vice President will leverage these risk detection analytics and work with application owners to confirm any risks, develop remediation plans, and manage remediation efforts across ~2,000 WM applications. Further, this individual will help refine existing analytics (i.e., provide efficacy feedback), create new risk identification methods, and support application deep-dives as required.

Key responsibilities include, but are not limited to, the following:

• Review and prioritize potential risks identified in applications via an automated risk detection platform
• Validate findings through interview sessions, application demos, and remediation planning sessions
• Analyze architecture and security reports for applications, identifying conflicting information and risks that might lead to data loss
• Generate metrics for reporting to various governance forums
• Analyze the efficacy and performance of analytics for tuning and improvement
• Maintain risk assessment documentation and procedures

Qualifications

• 1-3 years of relevant application architecture, risk management, or cybersecurity experience
• Bachelor's degree or greater in related field
• Excellent problem-solving skills and willingness to solve open-ended problems
• Impeccable communication skills, both written and oral
• Strong organization and time-management skills, with the ability to swiftly transition between projects and tasks
• Intrinsic curiosity and an eagerness to learn new technologies and skills
• Experience conceiving and implementing novel solutions to problems

Preferred Qualifications:

• An analytical or technical (application development) background
• Proficiency in scripting languages such as Python, R, or JavaScript, with the ability to write and maintain simple scripts and automate routine tasks to improve the efficiency and accuracy of data-based processes
• Strong analytical skills with experience in data manipulation and analysis (i.e., capable of turning raw data into actionable insights)
• Knowledge of the financial services industry; preferably in wealth management, finance, operations, or technology
• Familiarity with visualization tools (e.g., Tableau, Dataiku, Power BI)

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.

#BPDBA #LI-NB1 #LI-hybrid

WHAT YOU CAN EXPECT FROM MORGAN STANLEY:

We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren’t just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There’s also ample opportunity to move about the business for those who show passion and grit in their work.

Certified Persons Regulatory Requirements:
If this role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or the minimum qualifications to meet internal company benchmarks.

Flexible work statement
Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more.

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.