Information Security Incident Response Analyst Information Security Incident Response Analyst …

Morgan Stanley
in Glasgow, Scotland, United Kingdom
Permanent, Full time
Last application, 18 Feb 20
Morgan Stanley
in Glasgow, Scotland, United Kingdom
Permanent, Full time
Last application, 18 Feb 20
See job description for details

Morgan Stanley is looking for a talented individual to join a team of information security experts responsible for protecting Firm, client, and employee sensitive/confidential data. The Incident Response team is responsible for managing the detection and reporting of information security and insider threat incidents, supporting all Firm Business Units. The Team coordinates with the Business Units, Legal, Corporate Security and IT to gather incident details, assess risk and assist with remediation, ensuring compliance to regulatory and Firm standards.

This is a non-technical role and the selected candidate will be located in Glasgow, working with a global team of IT Security professionals.

? Conduct daily review, triage and escalation of detected, and user reported Insider Threat events
? Collect supporting information and relevant artifacts in support of Incident Response activities
? Utilize defined workflows to assess the severity of an incident, appropriate mitigation activities, communication across the organization, and ensure proper documentation is produced outlining the details of the incident
? Host calls with senior members of the Firm to develop quick response plans to information security incidents
? Work with relevant stakeholders to ensure that incident management is consistent across all parts of the business
? Proactively participate in the continuous review of information security incidents and root causes, in order to highlight control gaps across the organization or process gaps within the team
? Provide general Information Security advisory services to key stakeholders across the Firm as required
? Participate in various projects related to operational improvements and tooling
? Provide on call and out of hours support


Skills required
? Experience in a similar role or working knowledge of Incident Management, Information Security, or Data Privacy
? Bachelor Degree or Equivalent in a related field
? Ability to analyze data to look for anomalies or appropriately identify potential risk issues requiring further escalation
? Ability to handle sensitive situations with discretion and maintain confidentiality
? Very strong verbal and written English communications skills
? Ability to handle multiple competing priorities, while maintaining attention to detail
? Strong working knowledge of Microsoft Office (Excel, PowerPoint, and Visio)
? Excellent interpersonal skills
? Flexible and self-motivator

Skills Desired
? Working knowledge of incident tracking or case management solutions, and DLP detection products
? Knowledge or experience in supporting Insider Threat mitigation strategies
? Technical or Information Security Certifications (e.g. CISM, CRISC, CISSP)