Incident Response (Cyber)

Incident Response (Cyber) Glasgow, Scotland

Morgan Stanley
Full Time Glasgow, Scotland 88000 - 89590 GBP ANNUAL Today
Job description

Incident Response (Cyber)

Job Number:

3239413

POSTING DATE: Aug 14, 2023
PRIMARY LOCATION: Europe, Middle East, Africa-United Kingdom-United Kingdom-Glasgow
EDUCATION LEVEL: Bachelor's Degree
JOB: Threat Management
EMPLOYMENT TYPE: Full Time
JOB LEVEL: Associate

DESCRIPTION

Incident Response (Cyber)
Glasgow
3239413

Morgan Stanley is looking for a Security Analyst to join the firm's Cyber Incident Response Team (CIRT). The global CIRT is a 24/7 operation with members in key geographical locations; performing incident response and remediation, campaign assessments, network and host-based forensics. Security Analysts work core hours in their region with an on-call rotation for critical incidents.

Candidates should have a genuine interest in cyber security and a good understanding of the tactics, techniques, and procedures of attackers. This role requires a detail oriented, critical thinker who can anticipate issues, and solve problems. Candidates should be able to analyze large datasets to detect underlying patterns and drive to a root cause analysis.

About Morgan Stanley

Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments, and individuals from more than 1,200 offices in 43 countries.

As a market leader, the talent and passion of our people is critical to our success. Together, we share a common set of values rooted in integrity, excellence, and strong team ethic. Morgan Stanley can provide a superior foundation for building a professional career – a place for people to learn, to achieve and grow. A philosophy that balances personal lifestyles, perspectives and needs is an important part of our culture.

What will you be doing?

  • Investigate cyber security incidents and threats.
  • Interact with stakeholders and leadership teams as part of the response and remediation efforts.
  • Improve the detection, escalation, containment, and resolution of incidents.
  • Enhance existing incident response methods, tools, and processes.
  • Maintain knowledge of technologies and the threat landscape.
  • Assist during non-core business hours during an emergency, critical, or large-scale incidents.

QUALIFICATIONS

  • What we’re looking for:
  • 2+ years experiences (or equivalent) with Security Analysis and Incident Response (i.e., working in SOC/CIRT/CSIRT/CERT).
  • Subject matter expert in one or multiple areas such as Windows, Unix, firewalls, intrusion detection, network- and host-based forensics.
  • Understand the totality of a threat across multiple technologies and think like an adversary.
  • Sound understanding of TCP/IP and networking concepts, security alerts, and incidents.
  • Excellent writing and presentation skills are required to communicate findings, recommendations, and status of investigations.
  • Experience with investigating common types of attacks, network packet analysis, log analysis, and reviewing security events.
  • Ability to build mitigations to defend against network-based threats.
  • Knowledge on Windows processes and Active Directory.
  • Able to work on extended working hours during incidents.
  • Experience with developing response workflow for security event.

Skills that will help you in the role:

  • Security product assessments.
  • Scripting (Python, BASH, Perl, or PowerShell), coding, or other development experience.
  • In-depth knowledge of security event management, network security monitoring, log collection, and correlation.
  • Experience in Splunk usage or administration.
  • Experience of tearing apart a piece of malware to understand attack vector and purpose.
  • Experience in Security Orchestration and Automated Response (SOAR) usage.
  • Industry certifications: GCIH, GNFA, GREM, or other related certifications.
  • Experience in the financial industry.
  • Understanding of Cloud Security.
  • Knowledge on OWASP Top 10.

Where will you be working?

This role is based at our Glasgow office on Waterloo Street in the city centre. On call requirement, approx. one weekend per quarter.

Flexible work statement:

Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more.

Equal opportunities statement:

Morgan Stanley is an equal opportunities employer. We work to provide a supportive and inclusive environment where all individuals can maximize their full potential. Our skilled and creative workforce is comprised of individuals drawn from a broad cross section of the global communities in which we operate and who reflect a variety of backgrounds, talents, perspectives, and experiences. Our strong commitment to a culture of inclusion is evident through our constant focus on recruiting, developing, and advancing individuals based on their skills and talents.

Incident Response (Cyber)
Morgan Stanley

www.morganstanley.com
New York, United States
James P. Gorman
$10+ billion (USD)
10000+ Employees
Company - Public
Investment & Asset Management
Finance
1935
Related Jobs

All Related Listed jobs

BOS - Customer Service Assistant - Edinburgh
Lloyds Banking Group Edinburgh, Scotland 19292 - 19330 GBP ANNUAL Today

Acting with care and integrity - taking time to resolve queries and giving our customers confidence in the service you're providing.

Barista - Edinburgh, Castle Street - Full Time
Pret A Manger Edinburgh, Scotland 12.65 - 13.05 GBP HOURLY Today

Earn up to 200 cash when you successfully refer a friend**. 11.40-11.80 to 12.65-13.05 per hour (Inclusive of weekly mystery shopper bonus of 1.25 per

Tesco Colleague - Gainsborough Superstore
Tesco Gainsborough, England 11.02 GBP HOURLY Today

Making decisions that are right for customers, delivering routines in store that meet the needs of customers at the right time. Click here to read more.

Merchandising Analyst Assistant
Poundland Watford, East of England, England 34501 GBP ANNUAL Today

PEP&CO, launched in 2015 as a standalone brand, offers customers a full range of womens, mens and kids fashion and is now bringing new style to Poundland

Software Engineer C# .Net
Preservica Abingdon, England 40000 - 75000 GBP ANNUAL Today

NET/MS365 software product development. Degree level education in an engineering/software/system related subject or equivalent through relevant training and/or