Cybersecurity Engineer (Cryptography)

We're seeking someone to join our PKI and Secrets Management team as a Cybersecurity Engineer with a strong focus on both engineering and operations in Data Protection Services department to design, implement, and support enterprise cryptographic solutions, including Public Key Infrastructure (PKI), Hardware Security Modules (HSM), certificate lifecycle and secrets management tools.

In the Technology division, we leverage innovation to build the connections and capabilities that power our Firm, enabling our clients and colleagues to redefine markets and shape the future of our communities. This is an Cybersecurity Engineer position at Director level, which is part of the job family responsible for engineering and operations of cryptographic solutions.

Since 1935, Morgan Stanley is known as a global leader in financial services, always evolving and innovating to better serve our clients and our communities in more than 40 countries around the world.

What you'll do in the role:

• Communicate regularly with product leads across the organization and discuss opportunities for improvement to existing and future technology solutions.
• Design, implement, and maintain enterprise cryptographic infrastructure, including PKI, HSMs, and certificate management platforms.
• Manage the full certificate lifecycle (issuance, renewal, revocation, and deployment) to ensure security, availability, and compliance.
• Engineer and support secure key management solutions leveraging HSMs, including key generation, storage, rotation, and backup.
• Monitor and operate cryptographic services in a 24/7 environment (on call rotations), ensuring high availability, incident response, and performance optimization.
• Automate certificate and key management processes to reduce manual effort and minimize operational risk.
• Collaborate with application, infrastructure, and security teams to integrate cryptographic controls into enterprise systems and cloud environments.
• Support the evaluation, design, and adoption of Post-Quantum Cryptography (PQC) capabilities, including PQC.
• Enabled PKI environments, crypto-agility strategies and transition planning., Certified Persons Regulatory Requirements: If this role is deemed a Certified role and may require the role holder to hold mandatory regulatory qualifications or the minimum qualifications to meet internal company benchmarks.

Flexible work statement Interested in flexible working opportunities? Morgan Stanley empowers employees to have greater freedom of choice through flexible working arrangements. Speak to our recruitment team to find out more.

Morgan Stanley is an equal opportunity employer committed to building and maintaining a workforce that is diverse in experience and background. Our recruiting efforts reflect our strong commitment to a culture of inclusion, where individuals are hired, developed, and advanced based on their skills and talents.

Our workforce reflects a broad cross-section of the global communities in which we operate, bringing a variety of backgrounds, talents, perspectives, and experiences.

Do you have experience in Scripting?, Do you have a Bachelor's degree?, * Ability to effectively manage multiple functions and initiatives.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, a related field, or equivalent experience.
• 5+ years of hands-on experience in cybersecurity engineering or operations, with exposure to cryptographic services (PKI, HSMs, certificate management).
• Strong understanding of cryptographic principles, protocols, and standards (e.g., TLS, X.509, key exchange, encryption algorithms).
• Proven experience managing PKI environments and certificate lifecycle tools in enterprise and/or cloud environments.
• Hands-on experience with HSM technologies and key management practices, including secure key generation, storage, rotation, and backup.
• Familiarity with automation and scripting (e.g., Python, PowerShell, or similar) to streamline certificate and key management processes.
• Knowledge of emerging cryptographic trends, including Post-Quantum Cryptography (PQC) and crypto-agility concepts; relevant certifications such as CISSP, CISM, or vendor-specific PKI/HSM certifications are preferred.

At Morgan Stanley, we raise, manage and allocate capital for our clients - helping them reach their goals. We do it in a way that's differentiated - and we've done that for 90 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren't just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you'll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There's also ample opportunity to move about the business for those who show passion and grit in their work. To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser.