Overview

Application Security Team Lead — Glasgow • JR018760. Morgan Stanley are seeking a Senior Technical Leader to lead our Application Security and Developer Enablement efforts. The director will be responsible for building and maintaining a robust security posture, partnering with cross-functional teams, and driving application security excellence across the firm. The role requires technical leadership and guidance to an application security team of 4+ engineers. As a technical expert, hands-on experience to design application security systems, perform technical analysis and offer solutions to keep developer engagement is key for success in this role. Contributing to improving standards and procedures and coordinating with stakeholders for implementing and maintaining integrated secure applications across the firm.

Responsibilities

• Provide technical leadership and hands-on guidance to an application security team of 4+ engineers.
• Design application security systems and perform technical analysis; propose solutions to maintain developer engagement.
• Institute and refine security standards and procedures; coordinate with stakeholders to implement and maintain secure, integrated applications across the firm.
• Collaborate with cross-department and cross-divisional teams, including executives, to shape strategies and partnerships for application security.
• Document Architecture and Engineering decisions; oversee all functions within the Application Security space.
• Ensure protection of applications from a range of security risks through design, reviews, and validation of security designs.

Qualifications

Required Skills

• 5+ years of IT experience, with 10+ years in the security domain, specifically in Application Security.
• Strong understanding of SDLC standards, vulnerabilities, cyber incidents, penetration testing tools, security frameworks and regulatory compliance requirements.
• Experience end-to-end in application security key areas from design, integration of SAST, SCA, DAST, container scanning tools with CI/CD to reporting key metrics to stakeholders.
• Strong understanding of security industry standards and regulatory requirements.
• Experience with design thinking, security reviews, and validating designs for security.
• Proven leadership and stakeholder management skills.
• Ability to build and track key metrics to measure security posture.
• Good understanding of cyber technologies and their integration in large environments.
• Strong analytical and problem-solving skills; confident in presenting and critiquing design and architecture.
• Ability to communicate well with other senior executives on risks, strategy, and solutions.
• Strong communication and partnership skills, with ability to work with cross-functional teams.

Skills Desired

• Knowledge on cyber domains: Data Protection, Cryptography, Network Security, Web application firewalls, Identity and access management.
• Good understanding of web protocols: TCP/IP, HTTP, SSL/TLS, etc.

Regulatory and Other Requirements

#LI-LM1 #LI-hybrid #TECH

What you can expect from Morgan Stanley

We are committed to maintaining the first-class service and high standard of excellence that have defined Morgan Stanley for over 89 years. Our values – putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back – guide the decisions we make every day to do what is best for our clients, communities, and more than 80,000 employees in 1,200 offices across 42 countries. We offer opportunities to work with top colleagues in an empowering environment, with strong training and development opportunities. There is ample opportunity to move within the business for those who show passion and grit.

To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser.

Regulatory and Other

Certified Persons Regulatory Requirements: If this role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or minimum qualifications to meet internal company benchmarks.

Flexible work

Flexible work statement — Morgan Stanley supports flexible working arrangements. Speak to our recruitment team to learn more.

Morgan Stanley is an equal opportunities employer. We provide a supportive and inclusive environment where all individuals can maximize their full potential. Our workforce reflects a broad cross-section of global communities, and our commitment to inclusion is evident through our focus on recruiting, developing, and advancing individuals based on skills and talents.