Infrastructure security Engineer - Director - Cyber Security Engineering at Morgan Stanley

Mumbai, maharashtra, India -

Full Time

Start Date

Immediate

Expiry Date

16 Jan, 26

Salary

0.0

Posted On

18 Oct, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Infrastructure Security, Cyber Security, System Implementation, Networking Fundamentals, Linux, Windows Servers, Automation, Scripting, Identity and Access Management, RBAC, ABAC, Enterprise Storage Solutions, CI/CD Pipelines, DevSecOps, Threat Modelling, Penetration Testing, Stakeholder Management

Industry

Financial Services

Description

Perform security assessment and identify cyber security issues, risks, and vulnerabilities on the design Partner with cross-functional teams to co-design architecture and solutions in solving complex security problems and challenges; work out security controls to remediate and reduce the risk to an acceptable level ensure tracking. Collaborate with stakeholders to understand security requirements and drive security strategy. Define security control standards, guidelines, patterns, and best practices. Innovate, Architect, and Implement security review platform which adopts threat-modelling methodology Optimize and streamline review process, drive automation for performance and cost efficiency. Act as a subject matter expert in Infrastructure security and other security domains. Contribute to the development and enhancement of org's cyber security roadmap and vision. Preferably 6-8 years' relevant experience would generally be expected to find the skills required for this role. Bachelor's degree in computer science, IT, or a related field, or equivalent practical experience. Must Have acted and worked in the capacity of Domain SME on infrastructure security Must Have hands-on experience in system implementation/design with modern infrastructure technologies such as VMware, Hyper-V, Containers, Kubernetes. Must have hands-on experience in configuration of IPS, IDS, load balancers, proxies, firewalls, segmentation, access control models. Strong knowledge of networking fundamentals (TCP/IP, DNS, DHCP, VLANs, VPNs, firewalls) is added advantage. Must Have strong experience in Linux (RHEL/Ubuntu) and Windows servers. Experience with automation and scripting (e.g., Bash, Python, PowerShell) is added advantage. Must Have in Depth knowledge of Identity and Access Management principles like SSO, OIDC/OAuth, Kerberos and SAML as well as secret management. Must Have solid understanding or have implemented RBAC, ABAC, Just in Time access and least privilege enforcement. Must Have Strong Knowledge of Enterprise Storage solutions (SAN, NAS, GPFS) and backup tools Must have implemented system designs in heterogenous environments (on-prem, hybrid, multi-cloud) ensuring secure interoperability between compute , storage, networks and virtualization Working knowledge of with CI/CD pipelines and DevSecOps methodologies is advantageous. Knowledge in threat modelling, threat hunt & cyber security detection, offensive security (e.g.) penetration testing, purple team/red team is added advantage Good to have experience in conducting Information Security, IT Security, Audit assessments. Strong communication and stakeholder management skills is a must At our foundation are five core values — putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back — that guide our more than 80,000 employees in 1,200 offices across 42 countries. Our Firm is differentiated by the caliber of our diverse team, while our company culture and commitment to inclusion define our legacy and shape our future, helping to strengthen our business and bring value to clients around the world. Learn more about how we put this commitment to action: morganstanley.com/diversity. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work. To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.

Responsibilities

Perform security assessments to identify cyber security issues and collaborate with cross-functional teams to design solutions. Define security control standards and innovate security review platforms while optimizing processes for efficiency.