Web Security Engineer

apabilities Create, review, maintain and update documentation including Documenting & Publishing fixes in our central knowledge base Work with global colleagues to provide globally consistent processes and solutions Investigate & Troubleshoot root causes when escalated from operations Escalate and liaise with additional internal/external groups when required Input into Business Continuity Planning and Practices Integration and testing, and deployment of Web Proxy technologies with leading network DLP or Malware scanning solutions Collaborating with leads responsible for web and application servers, load-balancers and web authentication infrastructure Working with colleague subject matter experts in the wider organization who administer networks, logging, application architecture and other complementary technologies Drive determination and implementation of security best practice in our web platforms and infrastructure Research into vendor and open-source solutions in the web security space, and determination of their place in our overall solution Interfacing with technical contacts at external vendor providers and other internal teams to ensure a holistic solution is delivered and enhanced Training operations L2 personnel, application support groups in tools, technologies and procedures Moderate-Advance direct experience with Proxy technologies Netskope, Bluecoat, Fortinet, PaloAlto, ZScaler, ZPA, SSLi, Cloud DLP, Cloud Sandboxing Moderate-Advanced proxy experience required including engineering of flows via proxy and client access for troubleshooting; Netskope, Bluecoat ProxySG Appliance, Netskope or Zscaler experience preferred. Must know how to integrate external services with proxies via ICAP, proxy chaining, and service offloads. Moderate cloud security experience across at least a couple of the more cloud providers (Azure, O365, AWS, etc.) Excellent understanding and experience designing and implementing Web security solutions. Good understanding on Web Proxy infrastructure serving various application layer protocols such as HTTP/HTTPs/SOCKS/FTP/ICAP Scripting and Development Skills (Perl, Python or Shell). Moderate Linux Sys admin experience. Interpersonal Skills - Communication, flexibility, self-driven, team player Strong general networking background (Firewalls, Routing, Load Balancing, OSI Model, Packet trace and analysis, etc.) Good understanding of the protocols underpinning the web - TCP/IP, HTTP, SSL/TLS etc. Ideal candidate would be able to intelligently dissect all 7 layers of the OSI stack Experience working in DMZ environments with good understanding of hardware load-balancing, firewalls, multi-tiered architectures. Experience implementing or maintaining monitoring for network security infrastructure Hands-on experience with Fortinet/Fortimanager appliances Hands-on proxy knowledge: Netskope, Bluecoat, and/or Zscaler experience preferred Hands-on CASB design, architecture and deployment (SkyHigh, Symantec, etc.) Knowledge of Data Protection Practices (data at rest, in use, in motion, etc.) and their practical implementations Practical knowledge of web malware, its propagation and mitigation strategies CISSP or similar recognized cyber security qualifications Experience operating in large, siloed enterprise environments Project Management Skills with experience on enterprise projects Web and database development skills (HTML, JavaScript, SQL, ETL) Web Proxy Bluecoat/ZScaler or other major web proxy competitor Experience within the financial services industry is preferred Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work. To learn more about our offices across the globe, please copy and paste https://https://www.morganstanley.com/about-us/global-offices into your browser. Consequently, our recruiting efforts reflect our desire to attract and retain the best and brightest from all talent pools. We want to be the first choice for prospective employees. It is the policy of the Firm to ensure equal employment opportunity without discrimination or harassment on the basis of race, color, religion, creed, age, sex, sex stereotype, gender, gender identity or expression, transgender, sexual orientation, national origin, citizenship, disability, marital and civil partnership/union status, pregnancy, veteran or military service status, genetic information, or any other characteristic protected by law.