More jobs:
Job Description & How to Apply Below
Your Team Responsibilities:
The Regulatory & Operational Controls (Reg Ops Con ) team is part of the Sustainability & Climate (S&C) organisation. The team is responsible for developing, implementing, and maintaining operational and regulatory control frameworks to support consistent, transparent, and well-governed processes across S&C. The function partners with business, Compliance, Risk, Technology, and Production teams to ensure controls are designed, executed, and monitored in accordance with MSCI standards and applicable regulatory and operational expectations.
Your
Key Responsibilities:
1. User Access Management (UAM) Manage onboarding and offboarding access requests for S&C systems, applications, and workflow tools.
Maintain role-based access control (RBAC) matrices to ensure alignment between system roles, job responsibilities, and data classifications.
Execute access reviews, certifications, and recertification cycles to validate least-privilege access.
Monitor access patterns to identify anomalies or policy exceptions, coordinating with Information Security and system owners when required.
Support standardisation and documentation of access workflows, approval logic, and escalation pathways.
Partner with Technology and Production teams to identify and support automation opportunities in access provisioning and governance.
Track and report access metrics, SLA performance, and compliance indicators.
2. First Line of Defense (1
LOD) Risk & Control Support the design, implementation, and maintenance of internal controls across data sourcing, ingestion, enrichment, quality assurance, and publishing processes.
Conduct periodic risk assessments and support identification of operational, data quality, and process-related risks.
Work with process owners to document workflows, establish control checkpoints, and ensure alignment with MSCI policies, regulatory requirements, and audit standards.
Assist in monitoring KPIs and KRIs to identify emerging risks and control performance issues.
Support incident management, root-cause analysis, and remediation tracking for operational issues.
Maintain governance artifacts including control logs, evidence repositories, risk registers, and SOPs.
Contribute to internal and external audit activities by preparing documentation and responses.
Promote consistent application of risk and control practices across S&C teams.
Your skills and experience that will help you excel: Required Bachelor's degree in Business, Data Management, Information Systems, or a related discipline.
1-3 years of experience in operational risk, business controls, governance, audit, access management, or related functions.
Ability to interpret process flows, identify control gaps, and produce accurate documentation and reports.
Strong analytical skills and attention to detail.
Ability to work with cross-functional stakeholders in a global environment.
Clear written and verbal communication skills.
Proficiency in Excel, workflow tooling, and basic data analysis.
Preferred Experience in financial services, ESG/sustainability data, or content operations.
Knowledge of control frameworks (e.g., SOC1/SOC2, COSO, ISO 27001).
Familiarity with Service Now, access management platforms, or data governance tools.
Experience with process automation, scripting, or dashboarding (e.g., SQL, Python, Power BI).
Understanding of First Line/Second Line of Defense risk management models.
About MSCI: What we offer you
Transparent compensation schemes and comprehensive employee benefits, tailored to your location, ensuring your financial security, health, and overall wellbeing.
Flexible working arrangements, advanced technology, and collaborative work spaces.
A culture of high performance and innovation where we experiment with new ideas and take responsibility for achieving results.
A global network of talented colleagues, who inspire, support, and share their expertise to innovate and deliver for our clients.
Global Orientation program to…
Position Requirements
10+ Years
work experience
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
Search for further Jobs Here:
×