Cloud Security Engineer (Azure)

Cloud Security Engineer (Azure)

Job Number:

3255058

POSTING DATE: Jul 3, 2024 PRIMARY LOCATION: Europe, Middle East, Africa-Hungary-Budapest-Budapest EDUCATION LEVEL: Refer to Position Description JOB: Threat Management EMPLOYMENT TYPE: Full Time JOB LEVEL: Associate

DESCRIPTION

We offer:

• To work with some of the best professionals in the business - for a firm that values individual intellect as much as teamwork
• State-of-the-art offices in the City Centre that are designed to maximize collaboration
• Flexible working arrangements (core hours and opportunity to work from home)
• Enriching challenges that provide opportunity for constant learning and advancement
• An environment which is leveraging technology to its highest potential

You will:

• Developing, testing, and deploying Azure Security Controls across the firm’s Azure tenants
• Providing security recommendations and solutions for migrating and new applications in the Morgan Stanley environment to Azure
• Working closely with vendors and partner squads to develop, deploy, and test Cloud security services
• Responding to Azure Cloud security drifts in timely manner and working with the stakeholders to remediate the drifts.
• Integrating, configuring, documenting, and deploying compliant infrastructure and supporting services in the Cloud platform
• Troubleshooting problems, analysing root cause, and (where possible) fixing bugs introduced by owned or managed security solutions
• Collaborating with Risk Management, Security Architecture, and Cyber Incident Response teams to ensure necessary controls to Cloud services are deployed and tested
• Working in a globally distributed team to provide innovative and robust Cloud-centric solutions #LI-FT1

QUALIFICATIONS

You have:

• Deep understanding of DevOps processes and workflows.
• Knowledge of Cloud Shared Responsibility Model; keen understanding of the security risks inherent in hosting cloud-based applications and data.
• Familiarity with standard Azure security tooling such as Microsoft Defender Suite, Sentinel.
• Familiarity with Logging and data pipeline concepts and architectures in cloud.
• Working knowledge of the Secure SDLC process.
• Experience with Infrastructure as Code (IaC) tooling such as Terraform and ARM templates.
• Excellent communication, written and interpersonal skills.
• Experience in ITSM.
• Ability to articulate complex technical concepts to non-technical stakeholders.
• Experience with risk control frameworks and engagements with risk and regulatory functions

You might also have:

• Experience developing across the security assurance lifecycle (including prevent, detect, respond, and remediate controls).
• Experience solutioning and configuring event-driven serverless-based security controls in Azure, including but not limited to technologies such as Azure Function, Automation Runbook, Logic App.
• Experience configuring Azure native security tooling and capabilities such as Azure Policy, Azure Monitor, etc.
• Strong in scripting languages including at least PowerShell, Python or Bash.
• Practical experience in designing and configuring CICD pipelines.
• Practical experience in Azure DevOps, GitHub Action, and Jenkins.
• Experience writing queries and analytics in Kusto Query Language (KQL)
• Experience in the financial industry would be a plus.
• Azure Certifications would be a plus.

Team Profile:
The Cloud Security team is responsible for securely enabling the use of cloud technologies to support the firms desire to leverage cloud-native services at enterprise scale. The Cloud Security team designs the security requirements that must be adhered to in cloud as well as builds the tooling and automation needed to provide enterprise capabilities to protect the firm and make securing workloads easier for application teams.

The team works with multiple cloud providers and is currently looking for an experienced Azure Security Engineer familiar with multiple cloud concepts, cloud services, and programming languages. The team this engineer will join implements security controls into our cloud platforms (detective, preventative, and corrective) and owns platforms used to further secure our cloud footprint. This team also works to enable the Security Operations teams to extend their enterprise security functions to the cloud environments. BPTECH

About us:
Morgan Stanley is a global financial services firm and a market leader in investment banking, securities, investment management and wealth management services.
At Morgan Stanley Budapest, we are shaping the future of our global business and contributing to our local community. Our team works across numerous areas, including Technology, Mathematical Modelling, Finance, Risk Management, Operations and Data & Analytics from our new state-of-the-art offices near the Danube and our City Gate office in the heart of the city centre.

Learn about our culture and the opportunities for professional growth at Morgan Stanley Budapest:

Build a career with impact. Visit morganstanley.hu or LinkedIn for more information.

Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more.

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing and advancing individuals based on their skills and talents.