We’re seeking multiple individuals to join our team as SecDesign Integrators within the Security Design and Controls Team (SecDesign) team, which is part of the Cyber Data Risk & Resilience organization. The roles span across experience and skill level, to fill multiple Associate & Vice President roles.

The mission of the team is to provide security architecture assessments of technology systems and processes to identify business risks and recommend remedial action based on established security standards or security best practices. SecDesign Integrators are internal advisors that work on multiple security architecture and design assessments spanning various classes of technologies. This is an opportunity to get involved in multiple business units and technologies inherent to the mission of SecDesign. The Integrator works with team members and stakeholders globally to perform SecDesign assessments. To be successful, the candidates must have broad technology experience coupled with risk management, communication, and time management skills. The candidate will also be working with a global team of experts on modernizing the Firm’s SDLC platform to enable deployment automation to private and public cloud endpoints and SaaS-based tooling.

These roles afford the opportunity to get in on the ground floor to help build the next generation of development and deployment tooling across a diverse set of tech stacks for the next decade.

Since 1935, Morgan Stanley is known as a global leader in financial services, always evolving and innovating to better serve our clients and our communities in more than 40 countries around the world.

Interested in joining a team that’s eager to create, innovate and make an impact on the world? Read on…

Role What you ' ll do in the role:

• Lead SecDesign security analysis of the architecture or solution with the requestor of the assessment.
• Prioritize identified risks and work with stakeholders on remediation deadlines. Also participate in various Operational and Technology Risk governance processes.
• Conduct assessments and provide technology risk/requirements to the requestor.
• Periodically review security reference architecture (security blueprints) and conduct updates/enhancements.
• Assist in identifying new areas and opportunities for technological investment for the firm.
• Provide peer review signoff on security analysis

What You'll Bring To The Role

• Excellent communication skills written, oral, presentation, listening.
• Ability to influence through factual reasoning.
• Time management: ability to handle multiple concurrent assessments, plan based deliverable management, strong follow up and tracking.
• Frameworks, protocols, and subsystems: J2EE, .NET, Spring, RPC, SOAP, MQSeries, JMS, RMI, JMX, Hibernate.
• Knowledge of JSP /Servlet/EJB or ASP.NET, HTTP/HTTPS, Cookies, AJAX, JavaScript, Flex / Silverlight.
• Database design and programming experience
• Experience of liaising with 3rd Party Entities (exchanges, suppliers, regulators)
• Experience in conducting and / or reviewing penetration tests, dynamic vulnerability assessments and static vulnerability assessments.
• Understanding of geographic regulations and their impact on Security assessments
• Desired for Vice President candidates - CISSP or other industry qualifications

Security Architecture Skills

• In depth knowledge of application, network, and platform security vulnerabilities.
• Experience in conducting Information Security, IT Security, Audit assessments, presenting the outcomes of the assessments and obtaining buy in.
• Strong focus on reviewing technical designs and functional requirements to identify areas of Security weaknesses.
• The candidate must have experience in at least three of the following application/network security domains:
• Authentication: SAML, SiteMinder, Kerberos, OpenID
• Entitlements and identity management
• Data protection, data leakage prevention and secure data transfer and storage
• App Security - validation checking, software attack methodologies.
• Cryptography – encryption and hashing
• Required for Vice President candidates: Knowledge of Cloud Service Providers (AWS/Google/Azure) cloud, DevOps and CI/CD

Development Experience

• While the SecDesign Integrator role is not a development role, the candidate must have previous background in programming, design, and application architecture.
• Required for Vice President candidates: To be a practical SecDesign Integrator, the candidates must have experience implementing complex applications in an enterprise environment.
• Required for Vice President candidates: Working knowledge of programming and scripting languages: Java, JavaScript, C#, C/C++, Perl, Python, Ruby

Educational Requirements

• Bachelor’s Degree (or equivalent) with relevant work experience in high-paced, enterprise environment. Associate level: minimum 3 years of experience; Vice President level: minimum 7 years of experience.

At Morgan Stanley Montreal, we support the Firm’s global businesses and infrastructure with cutting edge technology and innovation. The multi-faceted and highly technical Montreal team plays a critical role in building and maintaining our leading technology platform, including electronic trading, algorithm trading, cloud engineering, infrastructure, cybersecurity and AI/ML. Morgan Stanley has been rooted in the Montreal community since 2008 and is considered a leading employer among the area’s highly skilled technology talent. There’s ample opportunity to move across the businesses for those who show passion and grit in their work.

All our positions are located in Montreal, Quebec. We offer a hybrid work environment, combining remote work and attendance in the office.

Knowledge of French and English is required.

Build a career with impact. Visit morganstanley.com for more information.

What You Can Expect From Morgan Stanley We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren’t just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There’s also ample opportunity to move about the business for those who show passion and grit in their work.

To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser.

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential.