Third Party Risk Management, Director
2 days ago
In the Corporate Services division, we empower our businesses by creating collaborative workplace solutions and commercial services that enhance the employee and client experience, while optimizing the value of our sourcing and third-party lifecycle to enable the Firm to do-and-win business. This is a Director level position within the Third Party Risk Management, which specializes in identifying, analyzing, and managing risks presented to a company as a result of working with external parties / vendors .
Since 1935, Morgan Stanley is known as a global leader in financial services, always evolving and innovating to better serve our clients and our communities in more than 40 countries around the world.
What you'll do in the role:
- Ensuring assessments are conducted in a timely manner and in accordance with firm policy, standards, and procedures. Collaborating with Technology, Business Units, Suppliers, and Sourcing to evaluate the supplier's controls policies and implementation covering (but not limited to) responses received, evidence provided, compliance demonstrated.
- Providing oversight and managing pipeline of reviews performed by the external consultant team.
- Interpreting and providing guidance on risk and controls.
- Presenting findings to management as required including responses to compliance and regulatory requests.
- Dealing with escalations and managing proactive stakeholder engagement.
- Reviewing and updating of key process documentation.
- Supporting change management and further enhancement and streamlining of the assessment process.
- Leading and contributing to continuous improvements to the program
- Review of completed Infosec, Cybersecurity and BCM questionnaires as well as review of supporting documentation provided by the third party service provider.
- Analysis and potential challenge of supplier responses via email or phone calls with the vendor
- Ability to articulate the associated risk and relevance of the third party's control environment.
- Identifying gaps if any as per methodology and clearly documenting the finding and observation
- Provide guidance around the appropriate remediation of identified gaps
- Proactively manage the assessment pipeline and escalate as needed where assessment responses are not received in a timely and satisfactory manner.
- Lead and support continuous improvement initiatives within the program. {D Part 2: Scope of Role What you'll bring}
- Financial industry experience especially focused on Technology and Information Security Controls, Risk methodologies, cyber security
- Experience and a clear understanding of relevant Industry Standards (NIST, CCM etc.)
- Knowledge of Best practices and certifications (e.g. CRI, ISO certifications, SSAE/SOC reports etc.).
- Motivated self-starter, with the ability to be pro-active and work well as part of a team
- Dynamic individual with the ability to switch context quickly and work on multiple workstreams concurrently with attention to detail
- Bachelor's degree required. Master's degree will be a plus
- A minimum of 7 years of experience in Information Security, Cybersecurity and / or risk and control assessments in the financial services industry
- Experience with use of GRC tools such as Archer and Process Unity
- Professional qualifications from industry standard institutions such as ISACA
We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you'll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work.
To learn more about our offices across the globe, please copy and paste into your browser.
Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.
-
Third Party Risk Management, Director
2 days ago
Bengaluru, Karnataka, India Morgan Stanley Full time ₹ 12,00,000 - ₹ 36,00,000 per yearWe are seeking an experienced Director to support our Third-Party Due Diligence Assessment program in Bangalore. This individual will be responsible for leading and managing the delivery of Cybersecurity and Information Security Third Party Risk Assessments.In the Corporate Services division, we empower our businesses by creating collaborative workplace...
-
Third Party Risk Manager
1 week ago
Bengaluru, Karnataka, India beBeeRisk Full time ₹ 8,00,000 - ₹ 13,00,000Senior Risk ConsultantWe are seeking an experienced Senior Risk Consultant to join our Third Party Risk Management team. The successful candidate will perform risk assessments and monitor third-party vendors for compliance with cybersecurity and regulatory standards.Main Responsibilities:Conduct thorough risk assessments of third-party vendors focusing on...
-
Third Party Risk Management
2 weeks ago
Bengaluru, Karnataka, India State Street Full timeThird-Party Risk Management Due Diligence - Tech Lead Role Summary State Street uses third parties to support internal processes and in the delivery of certain products and services to clients These third parties are evaluated and risk assessed through our Third-Party Risk Management TPRM Program The Due Diligence Onboarding Senior Associate is...
-
Third Party Risk Management Specialist
1 week ago
Bengaluru, Karnataka, India beBeeRiskManagement Full time ₹ 15,00,000 - ₹ 28,00,000We are seeking a seasoned professional to join our team as a Third Party Risk Management Specialist. As a key member of our organization, you will be responsible for identifying and mitigating risks associated with third-party vendors.This role requires a deep understanding of risk management principles and practices. You should have excellent analytical and...
-
Third Party Risk Management Professional
2 weeks ago
Bengaluru, Karnataka, India beBeeSecurity Full time US$ 90,000 - US$ 1,20,000Job DescriptionEvaluate third-party engagement requests and conduct initial assessments to ensure alignment with industry best practices.Collaborate with business requestors, procurement, legal, and security teams to complete questionnaires timely and ensure understanding of security controls.Review responses to security questionnaires and assessment reports...
-
Third-Party Risk Management Lead
2 weeks ago
Bengaluru, Karnataka, India beBeeRiskManagement Full time ₹ 2,00,00,000 - ₹ 2,50,00,000Job Title: Third-Party Risk Management LeadWe are seeking an experienced professional to lead our third-party risk management initiatives and develop customized solutions for large and mid-sized organizations.Key Responsibilities:Lead the development of comprehensive third-party risk management frameworks in accordance with client objectives and regulatory...
-
Third Party Risk Analyst
2 weeks ago
Bengaluru, Karnataka, India Stripe Full time ₹ 1,04,000 - ₹ 1,30,878 per yearAbout StripeStripe is a financial infrastructure platform for businesses. Millions of companies—from the world's largest enterprises to the most ambitious startups—use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead....
-
Senior Third-Party Risk Manager
1 week ago
Bengaluru, Karnataka, India beBeeRisk Full time ₹ 20,00,000 - ₹ 25,00,000Job DescriptionWe are seeking a seasoned Third-Party Risk Management Leader to spearhead our sales efforts and develop bespoke risk management solutions for large and mid-sized organizations. In this role, you will forge strong relationships with clients to thoroughly understand their unique risk management needs and align our solutions with their...
-
Third Party Risk Management Manager
2 weeks ago
Bengaluru, Karnataka, India beBeeRiskManagement Full time ₹ 14,00,000 - ₹ 30,50,000Job SummaryWe are seeking a skilled Manager: Risk Governance to join our team. In this role, you will be responsible for implementing and deploying robust control frameworks for third-party services.Key Responsibilities:Develop and deploy end-state recommended processes for third-party engagement.Monitor and report key risk indicators (KRIs) and key...
-
Third Party Security Risk Analyst
1 week ago
Bengaluru, Karnataka, India Broadridge Full timeJob DescriptionKey Responsibilities:- Vendor Security Documentation Review- Evaluate third-party security artifacts including SOC 2 Type II reports, ISO/IEC 27001 certificates (with Statement of Applicability), vulnerability assessments and penetration testing (VAPT) results, and security policy documentation. Identify gaps or weaknesses in vendor controls...
