Information Security Manager-Vendor SecurityPosted: October 11, 2009
The candidate will manage the vendor/supplier security team within the Information Security Office and interface with members IT Security, Legal, Operations, Firm wide Sourcing, etc. Duties and responsibilities will include but are not limited to the following: ? Oversight of the Information Security Vendor/Supplier Security team and all of its related responsibilities ? Represent Information Security in the Security Architecture (SECARCH) review process ? Ensure vendor/supplier inventory is a current reflection of risk rating, schedule, contacts, etc. ? Streamline vendor/supplier related processes such as tracking of open issues/control gaps, keeping vendor/supplier inventory current, scheduling and performing assessments, etc. ? Perform vendor/supplier security assessments ? Provide status updates, metrics, etc. on Vendor/Supplier Security ? Presentations to Management on Vendor/Supplier Security topics ? Global coordination of Vendor/Supplier Security initiatives within Information Security ? Oversight of E&Y Consortium performing onsite and offsite vendor/supplier assessments ? Represent Information Security in Vendor/Supplier security related discussions with BCP, Firmwide Sourcing, Legal, etc. ? Determine how to best leverage Firm systems containing vendor/supplier related data such as Contract Management System (CMS), RADAR/SONAR, TAI, etc. ? Monitor completion of assessments against annual plan ? Monitor control gap remediation ? Provide training on the following types of topics: oversight of vendors/suppliers, responsibilities when interacting with vendors/suppliers, etc. Skills Required ? College graduate with at least 10 years related (Information Security, Technology or Security Audit, and or Vendor Management) work experience ? Strong Security background; Financial Services industry experience preferred ? MS Office business application experience (Excel, Word, Powerpoint, Access, Project) ? Self motivated individual with the ability to manage projects receiving minimal supervision ? Effective verbal and written communication skills and strong interpersonal skills ? Demonstrated understanding of risks and controls ? Analytical mindset with attention to detail and accuracy ? Good planning and time management skills ? Strong Project/Program and People management skills ? Ability to become quickly proficient in new technologies ? Ability to multi-task ? Extensive problem solving skills ? Goal Oriented Please refer to job code 229980 when responding to this ad.
| Category: | Trades |
| | | Location: | New York, NY | | County: | New York County | | ZIP Code: | 10001 | | Pay Rate: | Open | | Job Terms: | full time | | Company: | Morgan Stanley | | Phone: | email only please | | Fax: | email only please |
|
