Profile Description

We’re seeking someone to join our team as Director  in Cyber to advise secure design, provide security consulting and perform security assessments of technology systems and processes to identify business risks and recommend remedial action based on established security standards or security best practices.

CDRR_Technology

Cyber Data Risk and Resilience (CDRR) is part of the Global Technology organization and manages technology related risks on behalf of the Firm. CDRR's mandate is to enable the Firm to manage its technology and data related risks through implementing proactive, comprehensive and consistent risk management practices across the Firm to protect the franchise while capturing business opportunities.

Cyber

The Cybersecurity organization's mission is to create an agile, adaptable organization with the skills and expertise needed to defend against increasingly sophisticated adversaries. This will be achieved by maintaining sound capabilities to identify and protect our assets, proactively assessing threats and vulnerabilities and detecting events, ensuring resiliency through our ability to respond to and recover from incidents and building awareness and increase vigilance while continually developing our cyber workforce.

Cyber Security Engineering

This is Director position that provides specialist cyber expertise and creates solutions that protect the organization's systems and networks against actual and potential security threats and vulnerabilities.

Morgan Stanley is an industry leader in financial services, known for mobilizing capital to help governments, corporations, institutions, and individuals around the world achieve their financial goals.

At Morgan Stanley India, we support the Firm’s global businesses, with critical presence across Institutional Securities, Wealth Management, and Investment management, as well as in the Firm’s infrastructure functions of Technology, Operations, Finance, Risk Management, Legal and Corporate & Enterprise Services. Morgan Stanley has been rooted in India since 1993, with campuses in both Mumbai and Bengaluru. We empower our multi-faceted and talented teams to advance their careers and make a global impact on the business. For those who show passion and grit in their work, there’s ample opportunity to move across the businesses for those who show passion and grit in their work.

Interested in joining a team that’s eager to create, innovate and make an impact on the world? Read on…

What you’ll do in the role:

• Perform security assessment and identify cyber security issues, risks, and vulnerabilities on the design
• Partner with cross-functional teams to co-design architecture and solutions in solving complex security problems and challenges; work out security controls to remediate and reduce the risk to an     acceptable level ensure tracking.
• Collaborate with stakeholders to understand security requirements and drive security strategy.
• Define security control standards, guidelines, patterns, and best practices.
• Innovate, Architect, and Implement security review platform which adopts threat-modelling methodology
• Optimize and streamline review process, drive automation for performance and cost efficiency.
• Act as a subject matter expert in Infrastructure security and other security domains.
• Contribute to the development and enhancement of org's cyber security roadmap and vision.

What you’ll bring to the role:

• Preferably 6-8 years' relevant experience would generally be expected to find the skills required for this role.
• Bachelor's degree in computer science, IT, or a related field, or equivalent practical experience.
• Must Have acted and worked in the capacity of Domain SME on infrastructure security
• Must Have hands-on experience in system implementation/design with modern infrastructure technologies such as VMware, Hyper-V, Containers, Kubernetes.
• Must have hands-on experience in configuration of IPS, IDS, load balancers, proxies, firewalls, segmentation, access control models.
• Strong knowledge of networking fundamentals (TCP/IP, DNS, DHCP, VLANs, VPNs, firewalls) is added advantage.
• Must Have strong experience in Linux (RHEL/Ubuntu) and Windows servers.
• Experience with automation and scripting (e.g., Bash, Python, PowerShell) is added advantage.
• Must Have in Depth knowledge of Identity and Access Management principles like SSO, OIDC/OAuth, Kerberos and SAML as well as secret management.
• Must Have solid understanding or have implemented RBAC, ABAC, Just in Time access and least privilege enforcement.
• Must Have Strong Knowledge of Enterprise Storage solutions (SAN, NAS, GPFS) and backup tools
• Must have implemented system designs in heterogenous environments (on-prem, hybrid, multi-cloud) ensuring secure interoperability between compute , storage, networks and virtualization
• Working knowledge of with CI/CD pipelines and DevSecOps methodologies is advantageous.
• Knowledge in threat modelling, threat hunt & cyber security detection, offensive security (e.g.) penetration testing, purple team/red team is added advantage
• Good to have experience in conducting Information Security, IT Security, Audit assessments.
• Strong communication and stakeholder management skills is a must

What you can expect from Morgan Stanley

We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 85 years. At our foundation are five core values — putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back — that guide our more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find trusted colleagues, committed mentors and a culture that values diverse perspectives, individual intellect and cross-collaboration. Our Firm is differentiated by the caliber of our diverse team, while our company culture and commitment to inclusion define our legacy and shape our future, helping to strengthen our business and bring value to clients around the world. Learn more about how we put this commitment to action: morganstanley.com/diversity. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry.

WHAT YOU CAN EXPECT FROM MORGAN STANLEY:

We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren’t just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There’s also ample opportunity to move about the business for those who show passion and grit in their work.

To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices​ into your browser.

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.