Cloud Security Controls Specialist

  • Company:
    Morgan Stanley
  • Location:
  • Salary:
    negotiable / month
  • Job type:
  • Posted:
    2 hours ago
  • Category:

Job Level:AssociateDescriptionCompany Profile Morgan Stanley is a global financial services firm and a market leader in investment banking, securities, investment management and wealth management services. With offices in more than 43 countries, the people of Morgan Stanley are dedicated to providing our clients the finest thinking, products and services to help them achieve even the most challenging goals. As a market leader, the talent and passion of our people is critical to our success. We embrace integrity, excellence, team work and giving back. Technology The Technology division partners with our business units and leading technology companies to redefine how we do business in ever more global and dynamic financial markets. Our sizeable investment in technology results in leading-edge tools, software, and systems. Our insights, applications, and infrastructure give a competitive edge to clients’ businesses—and to our own. Enterprise Technology & Services (ETS) delivers shared technology services for the Firm supporting all business applications and end users. ETS provides capabilities for all stages of the Firm’s software development lifecycle, enabling productive coding, functional and integration testing, application releases, and ongoing monitoring and support for over 3,000 production applications. ETS also delivers all workplace technologies (desktop, mobile, voice, video, productivity, intranet/internet) in integrated configurations that boost the personal productivity of our employees. Application and end user services are delivered on a scalable, secure, and reliable infrastructure composed of seamlessly integrated datacenter, network, compute, cloud, storage, and database services. Position Description: The Public Cloud Transformation Services (PCTS) team is responsible for enabling the public cloud to become a preferred platform across Morgan Stanley IT. This is a global, multi-discipline team responsible for architecting and delivering secure, robust, and innovative solutions which would enable the development teams to build and deploy new applications as well as migrate selected existing applications into the public cloud. The team works with multiple public cloud providers and are presently looking for an experienced cloud-engineering specialist familiar with various cloud concepts, services, and tools, preferably from multiple public cloud providers but primarily in the cloud security space. The candidate will be involved in multiple aspects of the team’s work including designing cloud security infrastructure, evaluation of new cloud security products and services, and integrating these into standard Morgan Stanley Cloud solutions. Primary Responsibilities: – Providing security recommendations and solutions for migrating and new applications in the Morgan Stanley environment across multiple Cloud providers including, but not limited to, Azure and AWS- Selecting and/or designing appropriate Cloud controls for applications and data storage- Working closely with vendors to develop, deploy, and test Cloud security services- Integrating, configuring, documenting, and deploying compliant infrastructure and supporting services in the Cloud platform- Troubleshooting problems, analyzing root cause, and (where possible) fixing bugs introduced by owned or managed security solutions- Collaborating with Risk Management, Security Architecture, and Cyber Incident Response teams to ensure necessary controls to Cloud services are deployed and tested- Working in a globally distributed team to provide innovative and robust Cloud-centric solutionsOrganizationRequired Skills: – Solid understanding of the Shared Responsibility Model; keen understanding of the security risks inherent in hosting cloud-based applications and data- Experience providing requirements for securing cloud workloads and applications- Familiarity with standard cloud security tooling such as Amazon Guardduty, Security Hub, Azure Security Center, and Microsoft Cloud App Security (MCAS)- Experience configuring Azure and AWS Policy- Experience administering Security Information and Event Management (SIEM) and Security Orchestration, Automation and Response (SOAR) products for integrated log management and analysis of security signals- Experience creating technical architecture documentation- Strong communication and written skills Nice to have: – Experience writing queries and analytics in Kusto Query Language (KQL)- Familiarity with Vulnerability Management concepts and related experience using compliance tooling (such as Prisma Cloud)- Experience with scripting and automation using PowerShell and/or Python- Experience with risk control frameworks and engagements with risk and regulatory functions- Experience in the financial industry Knowledge of French and English is required.