This is a Lead Cyber Security Operations position at the Vice President Level, which is part of the job family responsible for monitoring, detecting, and responding to security incidents to ensure the organization's systems and data are protected from actual and potential threats or breaches.
What you'll do in the role:
Lead a team responsible for offensive security assessments, vulnerability validation, and remediation oversight.
Drive enterprise vulnerability management efforts, including risk prioritization, mitigation strategy, and control validation.
Provide technical leadership for security assessments involving cloud platforms, APIs, AI/LLM technologies, blockchain solutions, and critical business applications.
Partner with stakeholders to develop security strategies, metrics, and risk reporting.
Monitor emerging threats, technologies, and industry trends to strengthen security posture.
What you'll bring to the role:
8+ years of experience in offensive security, penetration testing, vulnerability management, or cybersecurity engineering.
4+ years of people leadership or program management experience.
Strong understanding of threat actor tactics, attack techniques, and enterprise security controls.
Experience with cloud security assessments (AWS, Azure), web application testing, API security, exploit development, attack simulation, and vulnerability management.
Hands-on experience securing and assessing AI/LLM platforms, GenAI applications, or AI governance programs.
Experience evaluating blockchain platforms, digital asset technologies, or distributed ledger environments.
Strong knowledge of Windows/Linux internals, system architecture, patch management, and secure design principles.
Excellent written, presentation, and stakeholder management skills.
Preferred Qualifications:
Experience with Python, PowerShell, Bash, or similar scripting languages.
Knowledge of Splunk, OWASP Top 10, MITRE ATT&CK, SOAR, and security automation.
Experience in financial services or other highly regulated industries.
Relevant certifications such as OSCP, OSWE, CISSP, CCSP, GIAC, cloud security, AI security, or blockchain security certifications.
Salary range for the position: $135,000 and 190,000 per year. The successful candidate may be eligible for an annual discretionary incentive compensation award. The successful candidate may be eligible to participate in the relevant business units incentive compensation plan, which also may include a discretionary bonus component. Morgan Stanley offers a full spectrum of benefits, including Medical, Prescription Drug, Dental, Vision, Health Savings Account, Dependent Day Care Savings Account, Life Insurance, Disability and Other Insurance Plans, Paid Time Off (including Sick Leave consistent with state and local law, Parental Leave and 20 Vacation Days annually), 10 Paid Holidays, 401(k), and Short/Long Term Disability, in addition to other special perks reserved for our employees. Please visit mybenefits.morganstanley.com to learn more about our benefit offerings.