Vice President, Incident Response

Morgan Stanley Services Group, Inc. seeks a Vice President, Incident Response in Alpharetta, Georgia.

Develop the execution of functional and departmental strategies to achieve key business objectives. Partner with silos within Cyber Data Risk & Resilience on policy compliance efforts in accordance with industry regulations and guidelines set forth by federal and local laws as applicable. Report security metrics for Wealth Management to executives on monthly basis. Assist with security guild programs to accelerate cloud adoption through targeted education and technical consultation. Conduct risk assessments, identification, and mitigation activities for new mergers and acquisitions as well as divestitures. Assist the business and application teams throughout the SecDesign review process. Review risk register for wealth management risks and responsible for mitigation efforts for critical risks and high risks. Collect and analyze information pertaining to the threat landscape and any business disrupting events that may impact the Firm's operations.

Requirements:

Requires a Master's in Electrical Engineering, Computer Engineering, or related field of study and three (3) years of experience in the position offered or Three (3) years as Principal Software Engineer; Security Analyst; or related occupation in the technology field. The employer will accept a Bachelor's degree in Electrical Engineering, Computer Engineering, or related field of study and five (5) years of experience as a Principal Software Engineer; Security Analyst; or related occupation in the technology field in lieu of a Master's degree and three (3) years of experience. Requires three (3) years of experience with: assessing and mitigating risks and creating compliance metrics for reporting; industry standard compliance including NIST, SOC2, and PCI controls implementation or compliance framework audit; implementing cryptography solutions including Public Key Infrastructure and key management solutions; designing and implementing Security Information and Event Management (SIEM) or vulnerability management solutions; access management mechanisms including Privilege Access Management, Identity and Access Management, Single Sign On, and Network Access Controls; data center design, engineering, and networking; Application Security Testing, Threat Modeling and Secure Software Development Practices (S-SDLC); and Incident Management, Information Security, or Data Privacy.

Qualified Applicants:

To apply, visit us at https://ms.taleo.net/careersection/2/jobsearch.ftl?lang=en Scroll down and enter 3250753 as the "Job Number" and click "Search jobs." No calls please. EOE