China Bank Technology Risk Officer

  • Competitive
  • Zhuhai, Guangdong Sheng, China
  • Permanent, Full time
  • Morgan Stanley
  • 13 Dec 17 2017-12-13

See job description for details

The Morgan Stanley Bank International China and the Asia Technology Department is seeking an experienced Technology Risk professional to join the Bank in Zhuhai as the Technology Risk Manager
The Technology Risk Manger will be responsible for all technology risk related activities related to the Bank including implementation of Technology Risk programs and oversight of technology risk items following the firm wide Technology Risk Management Framework. This role will also be responsible for leading any regulatory and other audit activities related to Technology Risk.
The MSBIC Technology Risk Manager will report to the Bank?s general manager and provide regular technology risk management status updates to the bank?s Operation risk committees.

This positions responsibilities will include:

* Oversees key aspects of these technology risk management activities as an independent risk advisor by enforcing the Farmwife IT Risk Management Framework (?ITRMF?) and Legal Entity (?LE?) specific processes
*Monitor and act as the second line of defense on the responses to regulatory inquiries/inspections/audits
* Work on supporting global technology risk assessment programs and help define local requirements.
* Assessment of IT risk exposures. Conduct self-assessment and data analysis to help identify technology related risks and exceptions, and subsequently monitor, track and manage them. Areas and examples for these analyses include vendor and supplier related risks, stability and incidents etc.
* Supporting the implementation and maintenance of T&D policies and standard. Enforcing compliance with Firm-standard technology risk posture in the China Bank.
* Represent technology risk at the local industry wide technology risk forums.
* Provide technology risk update to the governance committee of the China Bank.

Skills / Experience Required:

* Strong understanding of financial industry businesses and technology risk concept and China regulatory environment and/or experience as technology auditor.
* Working experience of risk assessment methodologies, internal controls and industry technology risk management frameworks such as ITIL, CobiT, and ISO 27001
* Outstanding communication and interpersonal skills. Ability to work effectively with all levels of the organization. Excellent influencing and negotiation skills
* Ability to draft high quality written products that are comprehensive, accurate, and tailored to the audience
* Strong organizational skills and an ability to manage multiple demands and changing priorities. Detail oriented.
* A proven track record in global and cross team projects. Strong project management skills
* Strong analytical skills required to enable independent research and accurate assessments of risk management process effectiveness and adherence to regulatory requirements.
* Willingness to travel domestically and occasionally internationally
*5-10 years of relevant Technology Risk, IT Security and Information Security experience

Skills Desired:
* Industry certifications such as CISA, CISSP, CISM, CRISC

Qualifications:

Skills Desired:
* Industry certifications such as CISA, CISSP, CISM, CRISC