Vice President, Lead Cybersecurity Engineer

Morgan Stanley•Arlington, VA

7d•Onsite

About The Position

Morgan Stanley Services Group, Inc. is seeking a Vice President, Lead Cybersecurity Engineer in Arlington, VA to act as a cloud security subject matter expert in one or more cloud service providers. Act as a trusted advisor to stakeholders, influencing adoption of secure design patterns and risk remediation strategies across cloud programs. Make autonomous security architecture decisions that enable business initiatives to progress without delays, balancing risk with agility. Interpret and apply Firm security policies in scenarios where direct alignment is lacking, ensuring compliant yet practical solutions for unique business requirements. Drive the adoption of security best practices and ensure team compliance with security policies. Collaborate with other technology and business leaders to ensure a cohesive security posture. Execute cloud security architecture assessments, driving alignment with Firm security policies by actively coordinating with stakeholders across business unit application teams, application vendors, business partners and technology platform teams. Identify potential risks and recommending mitigation strategies to strengthen the Firm`s overall security posture.

Requirements

Requires a Bachelor’s degree in Computer Engineering, Information Technology, or a related field of study
Requires five (5) years of experience in the position offered or five (5) years as a Security Architect, Test Engineer, or a closely related occupation
Requires five (5) years of experience with designing and implementing security architectures for at least two of the following three public cloud environments: Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP)
Requires five (5) years of experience with identity architecture, network segmentation, secure workload design, and application-level security controls
Requires five (5) years of experience with applying secure design principles including zero-trust, least privilege, secure-by-default configurations, and the enforcement of deployment-time guardrails across multi-cloud environments
Requires five (5) years of experience with identifying cloud security risks in compute, network, storage, and identity layers
Requires five (5) years of experience with conducting cloud architecture assessments and recommending mitigation strategies aligned to organizational security policies
Requires five (5) years of experience with interpreting enterprise security policies, regulatory requirements, and industry standards, and applying them to cloud deployment scenarios including situations without direct policy alignment.

Responsibilities

Act as a cloud security subject matter expert in one or more cloud service providers.
Act as a trusted advisor to stakeholders, influencing adoption of secure design patterns and risk remediation strategies across cloud programs.
Make autonomous security architecture decisions that enable business initiatives to progress without delays, balancing risk with agility.
Interpret and apply Firm security policies in scenarios where direct alignment is lacking, ensuring compliant yet practical solutions for unique business requirements.
Drive the adoption of security best practices and ensure team compliance with security policies.
Collaborate with other technology and business leaders to ensure a cohesive security posture.
Execute cloud security architecture assessments, driving alignment with Firm security policies by actively coordinating with stakeholders across business unit application teams, application vendors, business partners and technology platform teams.
Identify potential risks and recommending mitigation strategies to strengthen the Firm`s overall security posture.