DevOps Engineer Associate- Cyber Security Engineering

Profile Description

Were seeking someone to join our CDRR Technology team as a DevOps Engineer in Cyber to join our team. The role will see the design and build of APIs which allow developers to apply re-configure deploy and run multiple code scanning tools on their projects.

In the Technology division we leverage innovation to build the connections and capabilities that power our Firm enabling our clients and colleagues to redefine markets and shape the future of our communities.

This is Associate position that provides specialist cyber expertise and creates solutions that protect the organizations systems and networks against actual and potential security threats and vulnerabilities.

Since 1935 Morgan Stanley is known as a global leader in financial services always evolving and innovating to better serve our clients and our communities in more than 40 countries around the world.

What youll do in the role:

• The role will see the design and build of APIs which allow developers to apply re-configure deploy and run multiple code scanning tools on their projects.
• In addition the infrastructure will be able to process the results from these systems and calculate whether a project can proceed with a release based on the firms policies.
• The role further extends to performing POCs on new tools and technologies to determine those that are suitable for adoption to assist keeping Morgan Stanley protected against an evolving threat landscape.
• They will have worked on building distributed systems and understand the complexities of building such systems.
• They will be a pro-active driven individual that loves to take on new problems and figure out ways to solve them.
• In addition they will have a mindset for automation and have experience in the SDLC and associated tooling right through from developing code to writing automated tests deploying it to production and providing subsequent production support.
• Hands-on engineering and integration will form the majority of this role as part of a collaborative agile squad.
• This will include work at all stages of the SDLC across a broad range of activities within Application Security.
• Take an active part in the architecture design build and implementation of the solution implementing software development lifecycle best practices through the adoption of standard tools/services for reliability.
• Implementing different types of automated testing for resilience and reliability e.g. unit integration and load testing.
• Monitor usage of products through monitoring products open telemetry and by building dashboards alerts and optimized queries for observability of system reliability with a focus on SLOs error budgets and toil management.
• Building documentation for both tribal knowledge and SRE processes within the squad through documentation-as-code framework.
• Setting up and performing PoCs within lab environments as well as in non-prod environments to enable stakeholders to test/validate solutions and soliciting real world feedback to drive meaningful evaluation and subsequent adoption.
• Documenting findings/presenting recommendations back to stakeholders to enable the Firm to make informed and effective product choices.
• Automating manual operational processes and integrating automations into CI/CD pipelines including developing configuration-as-code models that align to CI/CD pipelines and SRE best practices and implementing self-service tools to reduce toil both within the squad and for our customers

What youll bring to the role:

• The successful candidate will have around 2 years development experience (ideally in Python but we will consider other languages).
• A developer background/strong understanding of modern development practices experience building usable APIs that others can consume.
• Strong research analytical and problem-solving skills.
• Ability to write robust object-oriented and maintainable code in Python or similar language.
• Ability to write secure code including an understanding of concepts such as authentication authorisation and various web-based attacks such as XSS or CSRF/XSRF.
• Good knowledge of DevOps CI/CD workflows tools (such as Jenkins/Circle/GitHub Actions) and their integration points.
• Experience with modern deployment tooling including Docker Kubernetes Helm Ansible.
• Experience with distributed database/data storage systems either SQL or No-SQL.
• Excellent verbal and written communication skills including the ability to express and deliver technical ideas to a wide range of audiences coupled with a collaborative approach

WHAT YOU CAN EXPECT FROM MORGAN STANLEY:

We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first doing the right thing leading with exceptional ideas committing to diversity and inclusion and giving back - arent just beliefs they guide the decisions we make every day to do whats best for our clients communities and more than 80000 employees in 1200 offices across 42 countries. At Morgan Stanley youll find an opportunity to work alongside the best and the brightest in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey offering some of the most attractive and comprehensive employee benefits and perks in the industry. Theres also ample opportunity to move about the business for those who show passion and grit in their work.

To learn more about our offices across the globe please copy and paste into your browser.

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds talents perspectives and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting developing and advancing individuals based on their skills and talents.