Technology, Vulnerability Mgmt (Application Security), Associate, Shanghai
Morgan Stanley seeks an Application Security Professional to further its Application Security program that promotes best practices in application development for code hardening and a consistent strategy for firm wide protection. The candidate will be responsible for executing the Application Security strategy including aligning security requirements with the SDLC process, partnering and consulting with development leads in IT and peers in Technology Information Risk (TIR) regarding information security risks and providing solutions to minimize those risks to ensure application security can meet the needs of the firm. Principle duties include:
- Ensuring security policy requirements are properly applied to applications throughout the entire development life cycle.
- Ensuring business units understand security policy requirements and factor them in to their activities.
- Create and maintain partnerships across software engineering, application infrastructure and TIR.
- Apply a risk based approach to address issues and vulnerabilities found in both production and pre-production applications.