Fusion Cyber Event Management Strategy And Exercise Officer

Morgan Stanley New York , NY 10007

Posted 1 week ago

Company Profile

Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more than 1,200 offices in 43 countries.

As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence and strong team ethic. Morgan Stanley can provide a superior foundation for building a professional career - a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.

Department Profile

The mission of the Global Technology division is to provide a highly reliable and commercial technology platform, which supports the Firm's strategy, delivered by an innovative, world-class team of professionals. There are ten divisions within Technology.

Technology & Information Risk (TIR) is part of the Global Technology organization and manages operational and technology related risks on behalf of the Firm. TIR's mandate is to enable the Firm to manage its technology and data related risks through implementing proactive, comprehensive and consistent risk management practices across the Firm to protect the franchise while capturing business opportunities. The TIR team partners with the business by ensuring that Technology and Data understands how to manage, escalate, and monitor risk.

Team Profile

Morgan Stanley has a critical requirement for a Cyber Event Management Strategy and Exercise Officer in New York to work as part of our 24/7 global Fusion enterprise. Morgan Stanley's state-of-the-art Cybersecurity Fusion Center is charged with orchestrating prevention, detection, and response to cyber events that threaten the Firm's clients, assets, and reputation. Partnering with key stakeholders across Enterprise Technology & Risk and the Business Units, Fusion is also responsible for the management of cyber events from detection to response to resolution, and serves as the Firm's focal point for cyber communications and reporting.

Fusing together information received both externally from our partners and internally from our detection capabilities to enable rapid decision-making, Fusion is the Firm's cornerstone of an agile and adaptive cyber defense strategy, enabling the Firm to rapidly align our defensive capabilities to adapt to changing adversary tactics. Fusion's Cyber Event Management (CEM) team is responsible for orchestrating a rapid Firm-wide response to any cyber threat, vulnerability, or incident that introduces risk to the Firm, taking into consideration the nature and criticality of the cyber event; the Firm's assessed or potential exposure; the Firm's control posture; and the level of actual or potential business impact.

The CEM team is also responsible for proactively identifying the types of cyber events the Firm is likely to encounter; developing processes and partnerships necessary to mitigate the potential cyber risk to the Firm; and, in collaboration with our Cyber Exercise Program (CEP), design appropriate exercise scenarios that build resiliency and demonstrate readiness against this complex cyber threat landscape.

The global Fusion Center is a 24/7 operation with members in key geographic locations; this requires the role to cover shifts during weekday core hours, plus occasional evening and weekend on call for Cyber Event Management as required.

Primary Responsibilities

A successful CEM Strategy and Exercise Officer must have an appropriate mix of exercise planning and strategy development experience, communication skills, interpersonal skills, and cybersecurity knowledge. Fusion is the central node to coordinate Morgan Stanley's response to a cyber event. A successful candidate should ideally have a solid foundation of cybersecurity planning and strategy development experience and have a voracious appetite for learning new things. The exercise program reflects a cybersecurity landscape which is constantly changing and it is essential that the candidate be able to keep pace in this incredibly dynamic environment.

  • Refine Fusion plans, playbooks, and procedures to enable timely and precise cyber event response processes across the Firm

  • Lead Fusion's exercise facilitation effort in collaboration with the Cyber Exercise Program (CEP), to include planning, facilitation, and documentation development, and coordinate follow-up activities

  • Conduct cyber incident scenario preparation including scenario development with stakeholder teams, cyber playbook development and documentation, incident simulations and exercises, as well as post-incident reviews

  • Collaborate with the CEP program leadership to orchestrate CEP-led, vendor-facilitated, and sector-wide exercises that assess the accuracy and responsiveness of Cyber Event response processes

  • Assist the CEM and Deputy CEM in managing cyber events, both to provide depth within the CEM team and to help inform planning, playbook refinement, and exercise development

  • Facilitate and track remediation actions resulting from table top exercises related to Cyber Event Management and other Fusion activities as required

  • Manage exercise-related tasks to Fusion within the Firm's task management system

  • Conduct external engagement related to sector-wide and vendor-facilitated exercises

Skills required (essential)

  • 5 years of professional experience within security planning/strategy development roles, preferably within financial services, law enforcement, the military, and/or the intelligence community

  • Requires excellent writing, presentation, and communication skills for exercise and operational planning

  • Strong interpersonal and administrative skills

  • Experience designing and orchestrating cyber exercises

  • Experience with cyber security investigations and understanding of cyber threat landscape

  • Knowledge of information security threat type and their composition

  • Knowledge and experience of computer security incident investigations and response processes

  • Ability to distil technical and complex information into easy to understand business terms for management

Skills desired

  • Experience working for a globally distributed organization

  • Willingness to learn about the technology and cyber threat environment

  • Experience with the major financial information-sharing organizations (FSARC and FS-ISAC)

  • Major Incident Management

  • Experience of 24/7 operational environment

  • Certified Information Systems Security Professional (CISSP)

  • Certified Information Security Manager (CISM)

See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Cyber Resiliency Associate

Federal Reserve Bank

Posted 3 days ago

VIEW JOBS 9/23/2018 12:00:00 AM 2018-12-22T00:00 What we do: The Wholesale Product Office (WPO) has oversight responsibilities for the Fedwire Funds, Fedwire Securities, and National Settlement Services. The activities of the product office are done on behalf of all twelve Reserve Banks. In this oversight role, the WPO sets the strategic direction for these services, coordinates projects impacting the services and their customers, and ensures that operating sites meet service level agreements for resiliency and performance. Our goal in offering these services is to foster the integrity, efficiency, and accessibility of U.S. wholesale payments and settlement systems in support of domestic financial stability and economic growth in a global context. As a member of this critical team, you will work from a unique vantage point that provides exposure to senior leaders within the New York Fed, the Board of Governors, other Reserve Banks, and the Treasury's Bureau of Fiscal Service. You will support the efforts to minimize impact to wholesale customers and financial markets in the case of a contingency event such as natural disasters, terrorism, cybercrime, and computer or human error. The Cyber Resilience Associate will continuously focus on developing strategies and plans to strengthen the existing resiliency and security posture of the wholesale services. Your role as a Cyber Resilience Associate: * Assist in creating, standardizing, documenting, and executing strategic plans related to the CPMI-IOSCO guidance for cyber resilience; * Develop process maps for resiliency management activities that reflect the WPO's efforts to identify, protect, detect, respond and recover from potential cyber threats and maintain situational awareness; * Develop and deliver written and verbal communications, including proposals, reports, presentations, and procedures, including recommendations for all levels of management; * Develop and maintain detailed metrics on cyber resiliency, readiness, crisis and incident reporting; * Assist with conducting cyber resilience table-top exercises with business leaders to ensure soundness of business continuity plans; * Develop comprehensive reports including the scheduling, tracking, and reporting on resiliency and test deficiencies and development of follow-up action plans; * Research and remain current on the latest cyber resilience trends and assess applicability to wholesale services. Provide recommendations for incorporating industry success practices for wholesale services; * Perform gap analysis as need in the evaluation of frameworks, or controls assurance program reviews as necessary in areas critical to maintaining resiliency. What we are looking for: * Bachelor's degree and approximately 5 years in a related role, a background in information security and CISSP certification strongly desired; * Ability to obtain U.S. Top Secret Security Clearance, which includes verification of U.S. Citizenship is required; * Ability to understand and synthesize technical issues in discussions with technical and non-technical representatives; * Excellent consultative, communication, writing and project management skills; * Demonstrated experience in the operational aspects of building a cyber-resiliency program including a background establishing a National Institute Standards in Technology (NIST) Cyber Security Framework preferred; * Knowledge of NIST protection controls is highly desirable, * Experience with contingency planning guide, business impact analysis and developing resiliency scorecards for senior leaders; * An understanding of the U.S. Financial System would be an asset for this role; experience with critical infrastructure is preferred; * Able to travel occasionally and to work weekends for business continuity tests. Please note that that resume attachments made from a mobile device may not attach properly. We kindly request that you apply via a laptop or desktop computer. This position has additional screening requirements due to the information accessed while performing the job. These additional screenings would be initiated at the time of offer acceptance. The screening is in areas such as education/employment verification, criminal history, credit history, and outreach to personal and professional references that you have provided during the pre-employment process. The Federal Reserve Bank of New York is committed to a diverse workforce and to providing equal employment opportunity to all persons without regard to race, color, religion, national origin, sex, sexual orientation, gender identity, age, genetic information, disability, or military service. Federal Reserve Bank New York City NY

Fusion Cyber Event Management Strategy And Exercise Officer

Morgan Stanley