Fusion Cyber Event Management Strategy And Exercise Officer

Morgan Stanley New York , NY 10007

Posted 3 months ago

Company Profile

Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more than 1,200 offices in 43 countries.

As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence and strong team ethic. Morgan Stanley can provide a superior foundation for building a professional career - a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.

Department Profile

The mission of the Global Technology division is to provide a highly reliable and commercial technology platform, which supports the Firm's strategy, delivered by an innovative, world-class team of professionals. There are ten divisions within Technology.

Technology & Information Risk (TIR) is part of the Global Technology organization and manages operational and technology related risks on behalf of the Firm. TIR's mandate is to enable the Firm to manage its technology and data related risks through implementing proactive, comprehensive and consistent risk management practices across the Firm to protect the franchise while capturing business opportunities. The TIR team partners with the business by ensuring that Technology and Data understands how to manage, escalate, and monitor risk.

Team Profile

Morgan Stanley has a critical requirement for a Cyber Event Management Strategy and Exercise Officer in New York to work as part of our 24/7 global Fusion enterprise. Morgan Stanley's state-of-the-art Cybersecurity Fusion Center is charged with orchestrating prevention, detection, and response to cyber events that threaten the Firm's clients, assets, and reputation. Partnering with key stakeholders across Enterprise Technology & Risk and the Business Units, Fusion is also responsible for the management of cyber events from detection to response to resolution, and serves as the Firm's focal point for cyber communications and reporting.

Fusing together information received both externally from our partners and internally from our detection capabilities to enable rapid decision-making, Fusion is the Firm's cornerstone of an agile and adaptive cyber defense strategy, enabling the Firm to rapidly align our defensive capabilities to adapt to changing adversary tactics. Fusion's Cyber Event Management (CEM) team is responsible for orchestrating a rapid Firm-wide response to any cyber threat, vulnerability, or incident that introduces risk to the Firm, taking into consideration the nature and criticality of the cyber event; the Firm's assessed or potential exposure; the Firm's control posture; and the level of actual or potential business impact.

The CEM team is also responsible for proactively identifying the types of cyber events the Firm is likely to encounter; developing processes and partnerships necessary to mitigate the potential cyber risk to the Firm; and, in collaboration with our Cyber Exercise Program (CEP), design appropriate exercise scenarios that build resiliency and demonstrate readiness against this complex cyber threat landscape.

The global Fusion Center is a 24/7 operation with members in key geographic locations; this requires the role to cover shifts during weekday core hours, plus occasional evening and weekend on call for Cyber Event Management as required.

Primary Responsibilities

A successful CEM Strategy and Exercise Officer must have an appropriate mix of exercise planning and strategy development experience, communication skills, interpersonal skills, and cybersecurity knowledge. Fusion is the central node to coordinate Morgan Stanley's response to a cyber event. A successful candidate should ideally have a solid foundation of cybersecurity planning and strategy development experience and have a voracious appetite for learning new things. The exercise program reflects a cybersecurity landscape which is constantly changing and it is essential that the candidate be able to keep pace in this incredibly dynamic environment.

  • Refine Fusion plans, playbooks, and procedures to enable timely and precise cyber event response processes across the Firm

  • Lead Fusion's exercise facilitation effort in collaboration with the Cyber Exercise Program (CEP), to include planning, facilitation, and documentation development, and coordinate follow-up activities

  • Conduct cyber incident scenario preparation including scenario development with stakeholder teams, cyber playbook development and documentation, incident simulations and exercises, as well as post-incident reviews

  • Collaborate with the CEP program leadership to orchestrate CEP-led, vendor-facilitated, and sector-wide exercises that assess the accuracy and responsiveness of Cyber Event response processes

  • Assist the CEM and Deputy CEM in managing cyber events, both to provide depth within the CEM team and to help inform planning, playbook refinement, and exercise development

  • Facilitate and track remediation actions resulting from table top exercises related to Cyber Event Management and other Fusion activities as required

  • Manage exercise-related tasks to Fusion within the Firm's task management system

  • Conduct external engagement related to sector-wide and vendor-facilitated exercises

Skills required (essential)

  • 5 years of professional experience within security planning/strategy development roles, preferably within financial services, law enforcement, the military, and/or the intelligence community

  • Requires excellent writing, presentation, and communication skills for exercise and operational planning

  • Strong interpersonal and administrative skills

  • Experience designing and orchestrating cyber exercises

  • Experience with cyber security investigations and understanding of cyber threat landscape

  • Knowledge of information security threat type and their composition

  • Knowledge and experience of computer security incident investigations and response processes

  • Ability to distil technical and complex information into easy to understand business terms for management

Skills desired

  • Experience working for a globally distributed organization

  • Willingness to learn about the technology and cyber threat environment

  • Experience with the major financial information-sharing organizations (FSARC and FS-ISAC)

  • Major Incident Management

  • Experience of 24/7 operational environment

  • Certified Information Systems Security Professional (CISSP)

  • Certified Information Security Manager (CISM)

See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Manager / Senior Manager Product Strategy & Program Management

American Express

Posted Yesterday

VIEW JOBS 11/16/2018 12:00:00 AM 2019-02-14T00:00 Global Network Operations Global Network Operations (GNO) runs the American Express Network, processing $1 Trillion in annual spend and serving issuers and acquirers in over 90 markets worldwide. The GNO team manages and optimizes this core platform, defining its operations and creating innovative products that simultaneously leverage network assets and unlock new commerce for American Express. The Network Product Strategy team is responsible for developing & managing innovative new payment solutions, managing senior level forums and initiatives, and leading high impact strategy and competitive intelligence projects. We are looking for highly motivated, strategic thinkers with a passion for emerging payments & technologies to join our team. Key Responsibilities: Program management * Lead the management of high priority initiatives and executive leadership level forums that impact the broader organization (i.e. Secure Remote Commerce, Global Network Council) * Partner with cross-functional teams to drive results, including GNO Product Development & Deployment, GNO Policy, Digital Labs, Global Merchant Services, and Global Network Partnerships * Identify critical dependencies within a program and lead teams in effective problem solving * Engage senior leaders in strategic decision-making exercises and discussion * Create concise and compelling communication materials that distill complex, technical concepts into digestible formats for discussion Product strategy * Perform analysis and research to develop insights and solutions that tackle the highest strategic priorities for the Network Product & Operations team * Become an expert in the relevant competitive landscape, monitoring activity and quickly drawing insights that require action * Engage key stakeholders and provide thought partnership * Present informed findings and recommendations to senior leaders * Collaborate closely with high powered internal team * Passion for payments and fintech. You are excited about emerging payments and keep your finger on the pulse of industry developments across the technological and regulatory landscape (e.g., faster payments, biometrics, etc.). * Strategic thinker. You are intellectually curious and have superb problem-solving and analytical skills to help us stay at the forefront of innovation. * Excellent project manager. You have superior organizational skills and attention to detail with the ability to autonomously manage several objectives in parallel and drive results in a fast-paced, multi-partner environment. * Compelling communicator. You have a strong professional presence and effective written, verbal and presentation communication skills * Team player. You thrive in a collaborative, team-based environment. * Office proficiency. You are fluent in Microsoft Word, Excel and PowerPoint with a general understanding of data analysis techniques. * Relevant experience. You have at least 3-5 years of consulting, strategy and/or program management experience. MBA preferred. Employment eligibility to work with American Express in the U.S. is required as the company will not pursue visa sponsorship for these positions. American Express New York NY

Fusion Cyber Event Management Strategy And Exercise Officer

Morgan Stanley