VP – Cyber and Infrastructure Audit Job Vacancy in Morgan Stanley Mumbai, Maharashtra – Updated today
Are you looking for a New Job or Looking for better opportunities?
We got a New Job Opening for
Full Details :
Company Name : Morgan Stanley
Location : Mumbai, Maharashtra
Position :
Job Description : VP – Cyber and Infrastructure Audit
Job Number: 3204550
POSTING DATE: Mar 3, 2022
PRIMARY LOCATION: Non-Japan Asia-India-Maharashtra-Mumbai (MSA)
EDUCATION LEVEL: Bachelor’s Degree
JOB: Audit
EMPLOYMENT TYPE: Full Time
JOB LEVEL: Vice President
DESCRIPTION
Morgan Stanley
Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm?s employees serve clients worldwide including corporations, governments and individuals from more than 1,200 offices in 43 countries.
The talent and passion of our people is critical to our continued success as a firm. Together, we share four core values rooted in integrity, excellence and strong team ethic:
1. Putting Clients First
2. Doing the Right Thing
3. Leading with Exceptional Ideas
4. Giving Back
5. Commit to Diversity and Inclusion
Morgan Stanley is committed to helping its employees build meaningful careers and we strive to be a place for people to learn, achieve and grow.
Department Profile
Internal Audit is responsible for validating whether the firm operates in a controlled environment with appropriate risk management processes. Auditors evaluate the adequacy and effectiveness of the firm?s internal controls using a risk-based methodology developed from professional auditing standards. Internal Audit assists in monitoring the firm?s compliance with internal guidelines set for risk management and risk monitoring, as well as external rules and regulations governing the industry.
The department reports directly to the Board Audit Committee and helps verify whether the firm meets all of its fiduciary responsibilities to shareholders, while adhering to corporate governance standards and legal and regulatory requirements. Internal Audit is comprised of Business and Technology auditors. Business auditors focus on understanding the risks that the businesses face and the controls to mitigate those risks. Technology auditors focus on the application controls supporting the business processes, including systems development, application security and entitlements, production management, and technology governance. Both groups are responsible for understanding, analyzing and testing the controls to protect the franchise.
Background on the Position
Morgan Stanley is seeking a strong Vice President to cover Cyber and Enterprise Infrastructure audits. The candidate will be responsible for partnering with business and Application Technology auditors to develop and execute an assurance strategy for the coverage areas. This candidate will cover assigned areas through relationship management and continuous monitoring, manage the audit process from initiation to completion, and develop talent. Other responsibilities include helping to define the audit plan, managing the audit team, and reporting to management.
Primary Responsibilities
Partner with global cyber and infrastructure teams to manage and supervise assurance activities (audits, continuous monitoring, closure verification, continuous auditing).Drive discussions with Senior technology management to understand risk drivers, key controls, and impact to form a point of view on the control environmentExecute on assurance activities to provide a perspective on risk and controlsPerform risk assessments by leveraging business and technology knowledge, industry insights, and understanding of the Firm.Work with the Audit Directors to build and maintain a strong, credible relationship with senior management, the Board Audit Committee, and regulatorsDevelop and manage a team of cyber and infrastructure auditorsPresent issues and other reports to senior management and regulatorsManage audit activities within established budgets and timelinesProactively monitor and address key metrics associated with assurance activities and resources
QUALIFICATIONS
Educational & Professional Credentials
? Bachelor?s Degree (Computer Science or IT related preferred)
? Industry relevant certifications like CISA, CISSP, CEH, OSCP etc. will be an added advantage.
Skills Required
Interpersonal Skills
1. Strong verbal and written communication skills
2. Able to present to various levels of management
3. Lead and motivate people to achieve results
4. Ability to multi-task between several projects
5. Team player with ability to work independently in a fast-paced environment and within a small team setting.
Technical Skills
6. 10 or more years IT Audit experience with a Financial Services, Brokerage, or a Public Accounting Firm with emphasis on the Financial Services industry
7. Strong knowledge of audit processes and ability to review and manage the quality of assurance activities
8. Strong understanding of industry standards such as the NIST Cybersecurity Framework, NIST 800-53, PCI-DSS, CSA, ISO 27001/02, CIS Top 20 Critical Security Controls (formerly SANS), FFIEC guidelines etc.
9. Technical knowledge of IT systems, including:
? Databases
? Operating Systems (UNIX, Linux, Windows, z/OS)
? Networking, including VPN, LAN, WAN, WLAN
? Firewalls and associated hardware
? Backup and Recovery system
? Middleware
? Virtualization Technologies
? Data Loss Prevention tools, Intrusion Detection and Intrusion Prevention tools
? Penetration Testing Tools
? Tools such as Splunk, ArcSight, WatchTower
10. Good understanding of threats, vulnerabilities, risk, confidentiality, integrity, availability, cryptography, network security, web-based applications architecture and security, network protocols
11. Experience with Data Analysis using data mining tools
12. Familiarity analyzing results from Penetration testing
13. Practical IT work experience is a plus
14. Scripting and programming experience is beneficial
This post is listed Under Software Development
Disclaimer : Hugeshout works to publish latest job info only and is no where responsible for any errors. Users must Research on their own before joining any company