Lead Cybersecurity Engineer at Morgan Stanley

Glasgow, Scotland, United Kingdom -

Full Time

Start Date

Immediate

Expiry Date

08 Apr, 26

Salary

0.0

Posted On

08 Jan, 26

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Cryptographic Infrastructure, Hardware Security Modules, Key Management, Encryption Key Lifecycle, KMIP, PKCS#11, Cybersecurity, Risk Management, Compliance, Troubleshooting, Automation, Scripting, Linux, Observability Tools, Technical Leadership, Mentorship

Industry

Financial Services

Description

Communicate regularly with product leads across the technology organization and discuss opportunities for improvement to existing and future technology solutions. Design and maintain cryptographic infrastructure, including Hardware Security Modules (HSMs) and key management platforms. Implement and manage encryption key lifecycle processes (generation, rotation, archival, destruction) aligned with Firm security standards. Integrate cryptographic services with enterprise applications using protocols such as KMIP and PKCS#11. Collaborate with cybersecurity, risk, and compliance teams to ensure adherence to regulatory and internal control requirements. Troubleshoot and resolve complex issues related to cryptographic systems and secure credential vaults. Maintain documentation, assist customers through FAQ entries and similar Drive automation and process improvements for certificate and key management workflows. Provide technical leadership and mentorship to team members on cryptographic best practices and emerging technologies. Ability to effectively manage multiple functions or guide junior staff and initiatives. Advanced understanding of business line and discipline with some knowledge of competitive environment and other disciplines. Ability to design and implement cryptographic solutions that meet enterprise security and compliance standards. Understanding of encryption key lifecycle management, including generation, rotation, archival, and destruction. Experience in managing Hardware Security Modules (HSMs) and key management platforms such as CipherTrust Manager and Luna HSM. Ability to integrate cryptographic services with enterprise applications using protocols like KMIP and PKCS#11. Understanding of regulatory requirements and risk controls related to cryptographic infrastructure. Experience in automation and scripting (e.g., PowerShell, Python) for operational efficiency. Proficiency in Linux or other Unix variant. Experience/Knowledge with Observability tools such as Prometheus and Grafana. At least 6 years' relevant experience would generally be expected to find the skills required for this role. We do it in a way that's differentiated - and we've done that for 90 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work. To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser. If this role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or the minimum qualifications to meet internal company benchmarks. Flexible work statement Interested in flexible working opportunities? Speak to our recruitment team to find out more. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.

Responsibilities

The Lead Cybersecurity Engineer will communicate with product leads to improve technology solutions and design cryptographic infrastructure. They will also implement encryption key lifecycle processes and collaborate with various teams to ensure compliance with security standards.