VP , P4, Lead Cybersecurity Eng : Job Level - Vice President
We are seeking a highly experienced Cyber Data Engineer at Vice President level to act as a senior individual contributor and lead engineer within the squad. This role is suited to someone who can operate independently on complex technical problems, define robust platform architecture, lead engineering direction, and provide deep technical expertise across analytics platforms, automation, integration, and operational resilience.
This is a hands-on engineering role. The successful candidate will be expected to investigate unfamiliar technical areas, rapidly acquire new skills and evaluate emerging technologies to accelerate engineering delivery, automation, and troubleshooting.
Role Profile:
A successful applicant will operate as a senior technical leader within the squad, contributing to the design, delivery, and ongoing improvement of large-scale cyber analytics platforms.
Key responsibilities include:
> Defining and evolving platform architecture for large-scale security analytics platforms, including Splunk, Elasticsearch, and associated data ingestion, storage, automation, and integration components.
> Owning the investigation and resolution of complex technical issues, including performance problems, data ingestion failures, search issues, integration defects, infrastructure faults, and platform reliability concerns.
> Serving as a top-level escalation point for difficult troubleshooting scenarios, working with infrastructure, networking, cyber, cloud, and application teams to drive issues to resolution.
> Designing and implementing automation to improve platform deployment, configuration management, monitoring, recovery, and operational efficiency.
> Integrating security analytics platforms with internal APIs, configuration management frameworks, CI/CD pipelines, data pipelines, and enterprise infrastructure services.
> Leading technical discovery and deep research into new technologies, product capabilities, architectural patterns, and operational improvements.
> Assessing trade-offs across scalability, resilience, performance, maintainability, security, cost, and operational complexity.
> Providing consultancy and technical guidance to internal cyber teams and technology stakeholders.
> Identifying opportunities to tune platform performance, improve reliability, reduce operational toil, and simplify complex support processes.
> Leveraging agentic AI tools such as Claude Code, GitHub Copilot, and similar technologies to accelerate code development, infrastructure automation, troubleshooting, documentation, research, and platform task automation.
> Mentoring other engineers through design reviews, technical problem-solving, knowledge sharing, and hands-on collaboration.
Candidate Profile:
> The ideal candidate is a deeply technical engineer who enjoys solving difficult problems, learning new technologies, and improving complex platforms. They should be comfortable moving between architecture, coding, automation, debugging, operational support, and stakeholder engagement.
> This person should be able to operate with significant autonomy, identify the right technical direction, and bring others along through clear communication, documentation, and engineering leadership.
> They should be pragmatic, curious, hands-on, and comfortable working in a fast-moving cyber technology environment where priorities can change and new technical challenges regularly emerge. Required Skills:
The successful candidate should demonstrate strong experience across engineering, infrastructure, automation, troubleshooting, and platform architecture.
> Significant experience as a senior engineer, lead engineer, platform engineer, infrastructure engineer, data engineer, or similar hands-on technical role.
> Proven ability to define technical architecture and engineering direction for complex platforms or distributed systems.
> Strong experience operating, supporting, or engineering large-scale infrastructure or data analytics platforms.
> Excellent troubleshooting skills, with the ability to diagnose complex issues across application, infrastructure, network, operating system, data, and integration layers.
> Strong automation and integration experience, ideally using Python and tools such as Ansible, Terraform, or similar infrastructure-as-code/configuration-management technologies.
> Solid understanding of Linux/Unix system administration, networking, HTTP, TLS/encryption, authentication, DNS, load balancing, and common enterprise infrastructure patterns.
> Good understanding of software engineering practices including source control, code review, testing, CI/CD, deployment pipelines, and release management.
> Experience working with DevOps toolchains such as Git, Jenkins, Jira, artifact repositories, and automated build/deployment processes.
> Ability to research unfamiliar technical areas independently and develop practical recommendations or working solutions.
> Strong analytical skills, including the ability to reason from incomplete information, logs, metrics, traces, documentation, and system behaviour.
> Excellent verbal and written communication skills, with the ability to explain complex technical issues clearly to both engineering and non-engineering audiences.
> Experience working in Agile delivery environments, particularly Kanban or similar flow-based delivery models.
> Ability to influence technical decisions and engineering standards across a team without relying on formal management authority.
> Strong ownership mindset and ability to drive complex work from investigation through to implementation and operational handover.
Desired Skills:
> Prior experience deploying, scaling, tuning, or operating Splunk, Elasticsearch, OpenSearch, or similar large-scale analytics/search platforms.
> Administrator, architect, consultant, or power-user level experience with Splunk or Elasticsearch.
> Experience with cyber data sources, security telemetry, SIEM platforms, detection engineering, security monitoring, incident response, insider threat, or investigations use cases.
> Experience designing or supporting data ingestion pipelines, parsing logic, field extractions, schemas, enrichment processes, and data quality controls.
> Experience with cloud platforms such as AWS, Azure, or GCP, especially in relation to data pipelines, infrastructure automation, storage, networking, or analytics services.
> Experience integrating with internal or vendor APIs, including REST APIs, authentication mechanisms, service accounts, and automated workflows.
> Experience with observability practices, including logging, metrics, alerting, dashboards, SLOs, and operational health reporting.
> Experience using agentic AI tools such as Claude Code, GitHub Copilot, Cursor, or similar technologies to automate engineering tasks, accelerate development, support research, and improve operational workflows.
> Experience developing safe and repeatable AI-assisted engineering workflows, including prompt design, validation, testing, and review of AI-generated changes.
> Familiarity with cybersecurity concepts, common event types, detection requirements, and security operations workflows.
WHAT YOU CAN EXPECT FROM MORGAN STANLEY:
At Morgan Stanley, we raise, manage and allocate capital for our clients – helping them reach their goals. We do it in a way that’s differentiated – and we’ve done that for 90 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren’t just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There’s also ample opportunity to move about the business for those who show passion and grit in their work.
To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser.
Certified Persons Regulatory Requirements:
If this role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or the minimum qualifications to meet internal company benchmarks.
Flexible work statement
Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more.
Morgan Stanley is an equal opportunity employer committed to building and maintaining a workforce that is diverse in experience and background. Our recruiting efforts reflect our strong commitment to a culture of inclusion, where individuals are hired, developed, and advanced based on their skills and talents.
Our workforce reflects a broad cross-section of the global communities in which we operate, bringing a variety of backgrounds, talents, perspectives, and experiences.
For more information, please visit: https://www.morganstanley.com/people-opportunities/eeo.