Position Profile:
As a key component of the firm's Technology organisation, the Cyber Data Risk and Resiliency (CDRR) department's mandate is to enable the Firm to manage technology risk through modern, cloud-aligned and AI-informed security practices. CDRR executes first line of defence technology risk management capabilities and implements proactive, comprehensive, and consistent risk management across on-premises and Azure-hosted services.
CDRR protects the Firm's information, endpoints, and infrastructure from cyber and insider threats by delivering operational capabilities and a suite of advanced detection, monitoring, analytics, and automation. The department is driving the implementation and operationalization of AI-assisted investigation and response capabilities (including Microsoft Security Copilot)-covering onboarding, integration with the Microsoft security stack, governance/controls, and measurable improvements to triage speed and response quality. CDRR provides expert advice on secure design, development, and control effectiveness across enterprise endpoints and the Azure platform.
The Team:
The Endpoint Security Team mandate is to implement the Firm's Cybersecurity Strategy by architecting, engineering, deploying, and operating technical security controls and capabilities for the Enterprise across on-premises and the Azure platform. The team designs, develops, and operates solutions that protect desktops, laptops, servers, and cloud resources from malicious internal and external threats by implementing preventative and hardening controls, enabling real-time endpoint detection and response, and leading the implementation of AI-enabled security operations capabilities (including Microsoft Security Copilot)-from solution design and integration through governance, rollout, and ongoing optimization.
Role Profile & Expectations:
- You will be part of a Global (North America, Europe, Asia) cross-disciplined Agile team working with DevOps practices within the firm's Endpoint Security team, partnering closely with Azure platform and security operations stakeholders.
- You will have strong Windows Desktop/Infrastructure/Security knowledge and experience operating at very-large enterprise scale across on-premises and Azure environments, including identity, endpoint, and cloud security controls.
- You will have strong analytical and problem-solving abilities, with experience using security telemetry and analytics to drive decisions, and the communication skills to translate findings into clear actions-including helping implement Microsoft Security Copilot by defining high-value use cases, creating prompt/runbook patterns, validating outputs, and partnering with security operations to drive adoption.
- You will be responsible for continuously improving the quality of our technology solutions through peer review, retrospectives, refactoring and automation, and by building, operationalizing, and maintaining repeatable AI-assisted runbooks and workflows (including Microsoft Security Copilot) to increase consistency, improve auditability, and reduce mean time to detect/respond.
Required Skills:
- 10+ years hands-on Enterprise-class Information Technology experience, including security engineering for Windows and cloud platforms (Azure).
- Strong knowledge of Windows operating system and endpoint internals at 50,000+ endpoint scale, including modern security telemetry and endpoint protection capabilities.
- Ability to troubleshoot complex Windows OS environments across hybrid architectures (on-premises and Azure), including identity, networking, and security control interactions.
- Advanced Infrastructure as Code and automation (e.g. Ansible) with Generative AI to streamline playbook creation and infrastructure workflows for efficient operations.
- Competency with scripting/automation languages such as PowerShell, Python, Perl etc., and the ability to codify operational runbooks (including integrating AI-assisted workflows where appropriate).
- Experience in designing/engineering/architecting new security solutions from proof of concept to production, including Azure-aligned architectures and operational readiness.
- Dedication and passion for cybersecurity technologies, with an AI-first and continuous-learning mindset, including a drive to evaluate, implement, and mature emerging capabilities like Microsoft Security Copilot in an enterprise environment.
Desired Skills:
- Experience with Enterprise-class endpoint and cloud security technologies, especially within the Microsoft security stack (e.g., Microsoft Defender for Endpoint, Microsoft Defender for Cloud, BitLocker, and related capabilities), including experience implementing and operationalizing Microsoft Security Copilot (e.g., integrations, governance/controls, use-case development, rollout, and continuous tuning).
- Experience with Disk Encryption (e.g. BitLocker) and hardening operating systems.
- Experience with Microsoft Defender for Cloud Apps (and broader Microsoft security ecosystem integrations). Experience with SCCM/Intune for software deployment and endpoint management, and security logging/analytics platforms such as Splunk and/or Microsoft Sentinel/Azure Monitor for dashboards, reporting, and investigation.
- Experience working in a DevOps/SRE aligned team.
- Effective troubleshooting skills across hardware, OS, network, and storage.
- Experience of platform design, build and deployment, with a focus on continual service improvement (CI/CD).
- Experience of working in an Agile environment.
- Experience with Unix/Linux, and MacOS sysadmin a benefit.
- Experience with API implementations and key management, including HSM-backed designs and/or Azure Key Vault.
- Enterprise security industry certifications (CISSP, SANS, GSEC etc).
- Solutions Architect Certifications in either AWS and Azure.
WHAT YOU CAN EXPECT FROM MORGAN STANLEY:
At Morgan Stanley, we raise, manage and allocate capital for our clients – helping them reach their goals. We do it in a way that’s differentiated – and we’ve done that for 90 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren’t just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There’s also ample opportunity to move about the business for those who show passion and grit in their work.
To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser.
Morgan Stanley is an equal opportunity employer committed to building and maintaining a workforce that is diverse in experience and background. Our recruiting efforts reflect our strong commitment to a culture of inclusion, where individuals are hired, developed, and advanced based on their skills and talents.
Our workforce reflects a broad cross-section of the global communities in which we operate, bringing a variety of backgrounds, talents, perspectives, and experiences.
For more information, please visit: https://www.morganstanley.com/people-opportunities/eeo.
Skills Required
- 10+ years hands-on enterprise IT experience including Windows and cloud (Azure) security engineering
- Strong knowledge of Windows operating system and endpoint internals at 50,000+ endpoint scale
- Ability to troubleshoot complex Windows OS environments across hybrid on-premises and Azure architectures
- Advanced Infrastructure as Code and automation (e.g., Ansible) with Generative AI to streamline playbooks and workflows
- Competency with scripting/automation languages (PowerShell, Python, Perl) and codifying operational runbooks
- Experience designing, engineering, and architecting security solutions from proof-of-concept to production, including Azure-aligned architectures
- Experience implementing and operationalizing AI-assisted security capabilities (e.g., Microsoft Security Copilot) including use-case definition and validation
- Dedication to cybersecurity and an AI-first continuous learning mindset
- Experience with enterprise endpoint and cloud security technologies (Microsoft security stack, Defender products, BitLocker)
- Experience with SCCM/Intune for endpoint management and Splunk or Microsoft Sentinel/Azure Monitor for logging and analytics
- Experience working in DevOps/SRE teams, Agile environments, and CI/CD platform design and deployment
- Familiarity with Unix/Linux and MacOS system administration
- Experience with API implementations and key management (HSM-backed designs, Azure Key Vault)
- Enterprise security certifications (CISSP, SANS, GSEC) and/or Solutions Architect certifications (AWS or Azure)
Morgan Stanley Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Morgan Stanley and has not been reviewed or approved by Morgan Stanley.
-
Parental & Family Support — Family support is extensive, with paid parental leave for all parents, adoption and fertility assistance, backup childcare, and eldercare resources. Feedback suggests these programs meaningfully enhance the overall package and help with retention.
-
Healthcare Strength — Health coverage spans medical, dental, vision, mental‑health access, care navigation, and expert second opinions. Convenient primary care access and condition‑specific support reinforce the depth of healthcare coverage.
-
Equity Value & Accessibility — Equity compensation and stock ownership are positioned as core motivators that encourage commitment and retention. Feedback suggests education and support are provided to help participants manage equity and related financial benefits.
Morgan Stanley Insights
What We Do
Morgan Stanley mobilizes capital to help governments, corporations, institutions and individuals around the world achieve their financial goals. For over 85 years, the firm’s reputation for using innovative thinking to solve complex problems has been well earned and rarely matched. A consistent industry leader throughout decades of dramatic change in modern finance, Morgan Stanley will continue to break new ground in advising, serving and providing new opportunities for its clients. Morgan Stanley is committed to maintaining the first-class service and high standard of excellence that have always defined the firm. At its foundation are five core values — putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back — that guide its more than 60,000 employees in 1,200 offices across 41 countries.







