Cloud Security Engineer

We offer:

• To work with some of the best professionals in the business - for a firm that values individual intellect as much as teamwork
• State-of-the-art offices in the City Centre that are designed to maximize collaboration
• Flexible working arrangements (core hours and opportunity to work from home)
• Enriching challenges that provide opportunity for constant learning and advancement
• An environment which is leveraging technology to its highest potential

You will:

• Developing, testing, and deploying Azure/AWS/GCP Security Controls across the firm's cloud tenants through 3^rd part SaaS solutions
• Evaluating Firm cloud security requirements and assess how these can be implemented into Detective cloud controls, for all CSPs
• Working closely with vendors and partner squads to develop, deploy, and test Cloud security services
• Developing and generating compliance reports that showcase the cloud infrastructure's drift management status
• Working with resource owners to remediate configuration drifts
• Defining priorities, coordinating with peer teams, and leading continuous improvement efforts of security tools, systems and processes
• Research, investigate and implement newer technologies to continually evolve security capabilities
• Integrating, configuring, documenting, and deploying compliant infrastructure and supporting services in the Cloud platform
• Troubleshooting problems, analysing root cause, and (where possible) fixing bugs introduced by owned or managed security solutions
• Collaborating with Risk Management, Security Architecture, and Cyber Incident Response teams to ensure necessary controls to Cloud services are deployed and tested
• Working in a globally distributed team to provide innovative and robust Cloud-centric solutions

You have: #LI-RV1

• Deep knowledge of at least one of the 3 main Cloud Service Providers (Azure, AWS, GCP)
• Knowledge of the Shared Responsibility Model; keen understanding of the security risks inherent in hosting cloud-based applications and data
• Experience developing across the security assurance lifecycle (mainly detect & respond controls)
• Experience configuring native CSP security tooling and capabilities
• Deep understanding of DevOps processes and workflows.
• Working knowledge of the Secure SDLC process.
• Experience with Infrastructure as Code (IaC) tooling such as Terraform
• Strong in scripting languages such as PowerShell, Python and Bash.
• Experience creating technical architecture documentation.
• Excellent communication, written and interpersonal skills.
• Experience in IT Service Management.
• Ability to articulate complex technical concepts to non-technical stakeholders.

You might also have:  

• Experience with CSPM and SaaS 3^rd party solutions
• Understanding of OPA/REGO
• Knowledge of Agile best practices and methodologies
• Familiarity with Logging and data pipeline concepts and architectures in cloud.
• Experience with risk control frameworks and engagements with risk and regulatory functions
• Experience in the financial industry
• Azure, AWS and/or GCP Certifications
• Security certification such as CISSP, GIAC, CISM, OSCP or equivalent
• Configuration management and patch management using automated tools
• Experience with governance, risk and cybersecurity frameworks such NIST CSF, COBIT 5, ISO 27001/2, ITIL
• Familiarity with standard Azure/AWS/GCP security tooling such as Security Command Center, VPC Service Controls, Azure Monitor, Azure Policy, AWS SCP, AWS Config, AWS IAM Permission Boundary
• Practical experience in designing and configuring CICD pipelines.
• Practical experience in GitHub Actions and Jenkins.

Team Profile:

The Cloud Security team securely enables firm to leverage cloud-native and SaaS 3^rd party services at enterprise scale. This team designs the security requirements that must be adhered to in cloud as well as builds the tooling and automation needed to provide enterprise capabilities to protect the firm and make securing workloads easier for application teams.

About us: 
Morgan Stanley is a global financial services firm and a market leader in investment banking, securities, investment management and wealth management services. 
At Morgan Stanley Budapest, we are shaping the future of our global business and contributing to our local community. Our team works across numerous areas, including Technology, Mathematical Modelling, Finance, Risk Management, Operations and Data & Analytics from our new state-of-the-art offices near the Danube and our City Gate office in the heart of the city centre. 

Learn about our culture and the opportunities for professional growth at Morgan Stanley Budapest: 

 
Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more. 

 
Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximise their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing and advancing individuals based on their skills and talents.