Senior Vulnerability Operations Analyst (Hybrid)

at  Morgan Stanley

Senior Vulnerability Operations Analyst (Hybrid)
Job Number:

3260349
POSTING DATE: Oct 17, 2024
PRIMARY LOCATION: Americas-Canada-Quebec-Montreal
EDUCATION LEVEL: Bachelor’s Degree
JOB: Other
EMPLOYMENT TYPE: Full Time
JOB LEVEL: Vice President

DESCRIPTION

We’re seeking someone to join our Vulnerability Management team as a Vulnerability Operations Analyst in Cyber to support the firm’s vulnerability management processes for the cloud environment.
In the Technology division, we leverage innovation to build the connections and capabilities that power our Firm, enabling our clients and colleagues to redefine markets and shape the future of our communities.This is a Lead Cybersecurity Ops position at Vice President level, which is part of the job family responsible for monitoring, detecting, and responding to security incidents to ensure the organization’s systems and data are protected from actual and potential threats or breaches.
Morgan Stanley is an industry leader in financial services, known for mobilizing capital to help governments, corporations, institutions and individuals around the world achieve their financial goals.
Interested in joining a team that’s eager to create, innovate and make an impact on the world? Read on…

What you’ll do in the role:

• Senior individual contributor on the team responsible for managing vulnerabilities in the firm’s cloud environment.
• Notifying, tracking, and reporting on the status of identified vulnerabilities.
• Briefing vulnerability remediation reports to senior management and committees.

QUALIFICATIONS

What you’ll bring to the role:

• At least 6 years’ relevant cybersecurity experience.
• Bachelor’s degree or greater in Computer Science or related field
• Proficiency in cloud platforms such as AWS, Azure, or Google Cloud.
• Understanding of different compute services and shared responsibility model for cloud environments.
• Experience with vulnerability management tools such as Wiz and Prisma Cloud Compute (previously called Twistlock) for identifying vulnerabilities in cloud and Kubernetes environments.
• Knowledge of container security for systems such as Docker and Kubernetes, including scanning for vulnerabilities in images and managing container runtimes securely.
• Experience using Security Information and Event Management (SIEM) tools such as Splunk.
• Understanding of security frameworks and regulations such as CIS benchmarks and NIST.

What you can expect from Morgan Stanley:
We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 85 years. At our foundation are five core values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - that guide our more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find trusted colleagues, committed mentors and a culture that values diverse perspectives, individual intellect and cross-collaboration. Our Firm is differentiated by the caliber of our diverse team, while our company culture and commitment to inclusion define our legacy and shape our future, helping to strengthen our business and bring value to clients around the world. Learn more about how we put this commitment to action: morganstanley.com/diversity. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry.
At Morgan Stanley Montreal, we support the Firm’s global businesses and infrastructure with cutting edge technology and innovation. The multi-faceted and highly technical Montreal team plays a critical role in building and maintaining our leading technology platform, including electronic trading, algorithm trading, cloud engineering, infrastructure, cybersecurity and AI/ML. Morgan Stanley has been rooted in the Montreal community since 2008 and is considered a leading employer among the area’s highly skilled technology talent. There’s ample opportunity to move across the businesses for those who show passion and grit in their work.
Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential.
All our positions are located in Montreal, Quebec. We offer a hybrid work environment, combining remote work and attendance in the office.
Knowledge of French and English is required.
Build a career with impact. Visit morganstanley.com for more information

What you’ll do in the role:

• Senior individual contributor on the team responsible for managing vulnerabilities in the firm’s cloud environment.
• Notifying, tracking, and reporting on the status of identified vulnerabilities.
• Briefing vulnerability remediation reports to senior management and committees

What you’ll bring to the role:

• At least 6 years’ relevant cybersecurity experience.
• Bachelor’s degree or greater in Computer Science or related field
• Proficiency in cloud platforms such as AWS, Azure, or Google Cloud.
• Understanding of different compute services and shared responsibility model for cloud environments.
• Experience with vulnerability management tools such as Wiz and Prisma Cloud Compute (previously called Twistlock) for identifying vulnerabilities in cloud and Kubernetes environments.
• Knowledge of container security for systems such as Docker and Kubernetes, including scanning for vulnerabilities in images and managing container runtimes securely.
• Experience using Security Information and Event Management (SIEM) tools such as Splunk.
• Understanding of security frameworks and regulations such as CIS benchmarks and NIST