We're seeking someone to join our Cloud and Platform Security team in Cyber Data Risk & Resilience as a Security Requirement Lead.In the Technology division, we leverage innovation to build the connections and capabilities that power our Firm, enabling our clients and colleagues to redefine markets and shape the future of our communities. This is a Cybersecurity Engineer position at Director level, which is part of the job family responsible for developing and maintaining software solutions that support business needs.Since 1935, Morgan Stanley is known as a global leader in financial services, always evolving and innovating to better serve our clients and our communities in more than 40 countries around the world.What you'll do in the role: * Carry out in-depth security research and testing of cloud services across Microsoft Azure, AWS and GCP. * Develop firm-wide security requirements that enable the secure use of cloud services at massive scale. * Define and publish firm-wide security requirements that enable the secure use of cloud services at massive scale. * Provide security expertise to engineering and development teams. * Identify areas of risk on projects where security requirements cannot be fully addressed in the required time frame of the project. Identify and propose mitigating controls as necessary. * Document and present those risks to senior business, IT and Security team members. * Help identify areas of security the firm might want to invest in to improve IT security.What you'll bring to the role: * Bachelor's degree in computer science, Information Security, or a related field, or equivalent 5-7 years of practical experience. * Strong Information Security background with extensive experience in risk assessments and security architecture designs and reviews. * Experience hardening cloud resource configurations to comply with internal and external regulations and controls. * Detailed knowledge of cloud architectures and related security technologies (IAM, DLP, configuration assurance, security automation, GRC, etc.) * In-depth knowledge of cybersecurity threat types, their composition and mitigation techniques. * > Strong critical thinking ability and cybersecurity mindset. * Excellent communication / interpersonal skills to be able to interact at all levels & be effective as part of a broader team, capable of taking broad objectives and create and execute a concrete plan. * Experience in an information security role in an enterprise environment. * Ability to write documentation for all types of audiences, from very specific technical guides to higher level research on technologies and vendors. * Ability to manage expectations and handle high-pressure situations with tight deadlines * Ability to quickly adapt to changing priorities and demands. * Ability to work independently and self-motivate.You might also have: * Demonstrated cloud security experience with at least one of the major Cloud Service Providers (GCP, AWS, Azure) * Experience with modern authentication technologies such as OAuth2, OpenID Connect and SAML 2.0. * Familiarity with logging and data pipeline concepts and architectures in cloud. * Experience in pen-testing, reverse engineering, incident response or forensic analysis is an asset. * Experience with cloud technologies for protecting data at rest and in transit along with key proper management practices. * Experience with infrastructure as code tools, such as Terraform, and CI/CD pipelines. * Experience with Kubernetes or similar workload orchestrations. * Knowledge of traditional network technologies, such as firewalls, NAT, Load balancers, and web proxies. * Experience in the financial industry### #LI-FT1 #BPTECH #LI-hybridWHAT YOU CAN EXPECT FROM MORGAN STANLEY:We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you'll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work.To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser.Certified Persons Regulatory Requirements: If this role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or the minimum qualifications to meet internal company benchmarks. Flexible work statement Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more. Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.
Want more jobs like this?
Get jobs delivered to your inbox every week.