Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. We advise, originate, trade, manage and distribute capital for governments, institutions, and individuals. As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence, and strong team ethic. We provide you a superior foundation for building a professional career where you can learn, achieve, and grow.
Enterprise Technology & Services (ETS) delivers shared technology services for the Firm supporting all business applications and end users. ETS provides capabilities for all stages of the firm's software development lifecycle, enabling productive coding, functional and integration testing, application releases, and ongoing monitoring and support for over 3,000 production applications.
ETS also delivers all workplace technologies (desktop, mobile, voice, video, productivity, intranet/internet) in integrated configurations that boost the personal productivity of our employees. Application and end user services are delivered on a scalable, secure, and reliable infrastructure composed of seamlessly integrated datacenter, network, compute, cloud, storage, and database services.
This role is for a senior RACF engineer to join Mainframe Security team responsible for mainframe security tooling, and project execution. The ideal candidate should have advanced knowledge of RACF related products, and Mainframe infrastructure. The candidate should have a strong analytical, organizational and communication skills. The team works closely with the other mainframe infrastructure teams as well as other security platform owners and application developers. In addition to technical responsibility, the team is also responsible for training the security operations team with new process. The role may require working off-hours to implement and support project implementation.
Duties and responsibilities will include but are not limited to the following:
• Design / support Firm's mainframe initiatives related to authentication (such as Kerberos, Digital Certificates, encryption, MFA), authorization (such as role-based security, privileged access, sensitive data protection, etc.), automation (tooling, reports, utilities, and batch)
• Assist the mainframe Security Architecture and engineering in develop technical solutions, and testing.
• Work with Security Operations and Security Engineering in executing security solutions including deployment, process change, and training of security teams.
• Designing and assessing technical feasibility of proposals to achieve the security requirement utilizing various tooling and process.
• Work with various technology and security teams (such as application development, other security product owners, systems programming, DBA, CICS/MQ, business users, and auditors) on their requirements to design and implementation solutions.
• Create security monitoring, automation, and reporting as needed utilizing various tools (zSecure, Compliance manager, Admin Express, Multifactor Authentication, Key Management)
• Monitor and analyze key performance indicators and establish processes and methodologies for preventative actions.
• Participate address questions/issues related to mainframe security best practice.
#LI-CG2
Required:
• At least 4 years of related work experience as a RACF Engineer or Administrator
• Advanced experience with IBM RACF and IBM-ZSecure configuration/ internals (engineering focus)
• Ability to program in JCL, REXX and CarLa
• Experience with z/OS utilities and facilities (such as: TSO, ISPF, SDSF)
• Experience with database technology (such as: Sybase, DB2, SQL)
• Experience with implementing Digital Certificates, encryption, MFA
• Experience with and knowledge of common aspects of zOS installations (System Programming, Storage,
• Networks, Unix Services, CICS, DB2, Performance, Tooling
• Capable of working independently with limited oversight
• Capable of project planning, organization, time management skills and ability to multi-task
• MS Office business application experience (Excel, Word, Access, Power Point)
• Excellent verbal and written communication skills
• Must be a team player and foster a team first environment and inclusive culture
Desired:
• Experience with CA/Broadcom Top Secret Security
• Experience with distributed technology (such as: UNIX, USS file systems)
• Prior experience with Systems Programming, Mainframe Network engineering, Middleware (such as: MQ Series, etc.)
• Knowledge of PERL, shell scripting, OpenSSL, SSH
Morgan Stanley's goal is to build and maintain a workforce that is diverse in experience and background but uniform in reflecting our standards of integrity and excellence. Consequently, our recruiting efforts reflect our desire to attract and retain the best and brightest from all talent pools. We want to be the first choice for prospective employees.
It is the policy of the Firm to ensure equal employment opportunity without discrimination or harassment on the basis of race, color, religion, creed, age, sex, sex stereotype, gender, gender identity or expression, transgender, sexual orientation, national origin, citizenship, disability, marital and civil partnership/union status, pregnancy, veteran or military service status, genetic information, or any other characteristic protected by law.
Morgan Stanley is an equal opportunity employer committed to diversifying its workforce (M/F/Disability/Vet).
Expected base pay rates for the role will be between $150,000 and $205,000 per year at the commencement of employment. However, base pay if hired will be determined on an individualized basis and is only part of the total compensation package, which, depending on the position, may also include commission earnings, incentive compensation, discretionary bonuses, other short and long-term incentive packages, and other Morgan Stanley sponsored benefit programs.
#LI-CG2