DevOps Engineer - Associate- Cyber Security Engineering at Morgan Stanley

Profile Description

We’re seeking someone to join our CDRR Technology team as a DevOps Engineer, in Cyber to join our team. The role will see the design and build of APIs which allow developers to apply, re-configure, deploy and run multiple code scanning tools on their projects.

In the Technology division, we leverage innovation to build the connections and capabilities that power our Firm, enabling our clients and colleagues to redefine markets and shape the future of our communities.

This is Associate position that provides specialist cyber expertise and creates solutions that protect the organization's systems and networks against actual and potential security threats and vulnerabilities.

Since 1935, Morgan Stanley is known as a global leader in financial services, always evolving and innovating to better serve our clients and our communities in more than 40 countries around the world.

What you’ll do in the role:

• The role will see the design and build of APIs which allow developers to apply, re-configure, deploy and run multiple code scanning tools on their projects.
• In addition, the infrastructure will be able to process the results from these systems and calculate whether a project can proceed with a release based on the firm’s policies. 
• The role further extends to performing POCs on new tools and technologies to determine those that are suitable for adoption to assist keeping Morgan Stanley protected against an evolving threat landscape.
• They will have worked on building distributed systems and understand the complexities of building such systems. 
• They will be a pro-active, driven individual that loves to take on new problems and figure out ways to solve them. 
• In addition, they will have a mindset for automation and have experience in the SDLC and associated tooling right through from developing code, to writing automated tests, deploying it to production and providing subsequent production support.                                                                                                                   
• Hands-on engineering and integration will form the majority of this role, as part of a collaborative, agile squad. 
• This will include work at all stages of the SDLC across a broad range of activities within Application Security.
• Take an active part in the architecture, design, build and implementation of the solution, implementing software development lifecycle best practices through the adoption of standard tools/services for reliability.
• Implementing different types of automated testing for resilience and reliability, e.g. unit, integration and load testing.
• Monitor usage of products through monitoring products, open telemetry and by building dashboards, alerts, and optimized queries for observability of system reliability with a focus on SLOs, error budgets, and toil management.
• Building documentation for both tribal knowledge and SRE processes within the squad through documentation-as-code framework.
• Setting up and performing PoCs within lab environments as well as in non-prod environments to enable stakeholders to test/validate solutions and soliciting real world feedback to drive meaningful evaluation and subsequent adoption.
• Documenting findings/presenting recommendations back to stakeholders to enable the Firm to make informed and effective product choices.
• Automating manual operational processes and integrating automations into CI/CD pipelines, including developing configuration-as-code models that align to CI/CD pipelines and SRE best practices and implementing self-service tools to reduce toil both within the squad and for our customers

What you’ll bring to the role:

• The successful candidate will have around 2 years development experience (ideally in Python but we will consider other languages).
• A developer background/strong understanding of modern development practices, experience building usable APIs that others can consume.
• Strong research, analytical, and problem-solving skills.
• Ability to write robust, object-oriented and maintainable code in Python or similar language.
• Ability to write secure code, including an understanding of concepts such as authentication, authorisation and various web-based attacks such as XSS or CSRF/XSRF.
• Good knowledge of DevOps CI/CD workflows, tools (such as Jenkins/Circle/GitHub Actions) and their integration points.
• Experience with modern deployment tooling including Docker, Kubernetes, Helm, Ansible.
• Experience with distributed database/data storage systems, either SQL or No-SQL.
• Excellent verbal and written communication skills, including the ability to express and deliver technical ideas to a wide range of audiences, coupled with a collaborative approach

WHAT YOU CAN EXPECT FROM MORGAN STANLEY:

We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren’t just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There’s also ample opportunity to move about the business for those who show passion and grit in their work.

To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices​ into your browser.

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.