Network Security Operations Engineer

  • Competitive
  • Glasgow, Ecosse, Royaume-Uni
  • CDI, Plein-temps
  • Morgan Stanley
  • 15 nov. 18

See job description for details



Company Profile

Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more than 1,200 offices in 43 countries.

As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence and strong team ethic. Morgan Stanley can provide a superior foundation for building a professional career - a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.

Department Profile

The mission of the Global Technology division is to provide a highly reliable and commercial technology platform, which supports the Firm’s strategy, delivered by an innovative, world-class team of professionals. Technology & Information Risk (TIR) is part of the Global Technology organization and manages operational and technology related risks on behalf of the Firm. TIR's mandate is to enable the Firm to manage its technology and data related risks through implementing proactive, comprehensive and consistent risk management practices across the Firm to protect the franchise while capturing business opportunities. The TIR team partners with the business by ensuring that Technology and Data understands how to manage, escalate and monitor risk.




Team Profile:
This is an opportunity for a highly motivated individual to join a high energy team of security administrators responsible for managing Morgan Stanley's global security infrastructure. The diversity of IT Security products & technologies under management provides for a learning experience that will satisfy even the ones with the most eager to learn. The position is fast paced, dynamic, challenging where a varied combination of technical skills and soft skills allows for the development of a well-rounded individual/professional. This position is to be part of a global team (New York, Montreal, India and Hong Kong) with global responsibilities reporting to the Security Operations Manager in New York.

Responsibilities:
- Level 3 operational support for Network Security Products & Services which primarily will be focused on major Firewall related projects (new deployments, hardware refresh/upgrades, and migrations) as well as (E-mail and Anti-Spam technologies, Intrusion Detection Systems, Denial of Service Protection, Network Access Control, and Vulnerability Scanning, etc.)
- Deployment and Administration of network security systems (Juniper/Fortinet Firewalls, Cisco ISE, Lancope, Proofpoint Email systems and Qualys Vulnerability scanning.)
- Security policy administration on various products that are under the teams support
- Systems, network and application troubleshooting
- Coordinating and leading the response to technology problems
- Customer service. Including off hour coverage via cell phone/pager (oncall system, ~every 8 weeks)
- Creation/supplementation of Operational Runbooks
- Aligning global strategies with regional needs and demands
- Training teammates
- Interacting with service members of the networking, e-business, UNIX, and PC groups in four major metropolitan regions across the globe.


Qualifications:

Skills Required:
- Advanced Knowledge on Firewall platforms (Juniper, Fortinet preferred) running routing protocols and next gen features sure as IPS and Application detection rules
- Experience managing Qualys Vulnerability scanning asset groups and scanning profiles
- Firewall deployment/configuration experience and troubleshooting application connectivity
- Strong understanding of general networking and design (Firewalls, Routing, Load Balancing, OSI Model, TCP/IP, Packet trace and analysis using Wireshark and TCPDUMP)
- Understanding of SMTP (RFC 821/5321), TLS, DNS and related standards email security standards
- Network Access Control techniques around 802.1x and MAC Authentication Bypass (MAB)
- Intermediate Linux Sysadmin experience.

Desired Skills:
- Scripting and development skills (Perl, Python, Shell)
- Interpersonal skills communication, flexibility, self-driven, team player
- Project Management skills and experience working on enterprise level projects
- Create, review, maintain operational documentation and provide training on new procedures to lower level support teams