Technology, IT Security Administrator, Associate, Shanghai

  • Competitive
  • Shanghai, Shanghai Shi, China Shanghai Shanghai Shi CN
  • Permanent, Full time
  • Morgan Stanley
  • 17 Jun 18 2018-06-17

See job description for details

Morgan Stanley is a leading global financial services firm providing a wide range of investment banking, securities, investment management and wealth management services. The Firm's employees serve clients worldwide including corporations, governments and individuals from more than 747 offices in 42 countries.

In Morgan Stanley, Technology works as a strategic partner with Morgan Stanley business units and the world's leading technology companies to redefine how we do business in ever more global, complex, and dynamic financial markets. Morgan Stanley's sizeable investment in technology results in quantitative trading systems, cutting-edge modelling and simulation software, comprehensive risk and security systems, and robust client-relationship capabilities, plus the worldwide infrastructure that forms the backbone of these systems and tools. Our insights, our applications and infrastructure give a competitive edge to clients' businesses—and to our own.

This role is to be part of the global Security Administration team which performs and improves Security Administration functions by automating process and developing tools under the "least-privilege" principal. Security Administration team covers Firmwide control function for Privileged Access, business entitlements and system entitlements.

The candidate would be responsible for the following:

- Assist project owner in working out project plan, which includes defining scope and allocating resources. Lead and drive all project related deliverables. Coordinate activities across teams and organizations to execute the project plan, monitor progress and resolve any project issues with the responsible teams
- Address audit findings raised in the 2017 Technology Entitlements and Privileged Access Audit
- Handle L3 escalations for Privileged Access Management i.e. troubleshoot access issues, root cause analysis of unexpected revokes, responding to tiering questions, recommend approaches to reduce the Tier Level, etc.
- Assist with the clean-up of Privileged Access entitlements and enforce least privilege
- Enhance existing controls for 3rd party payment systems (e.g. SAML), and onboard 3rd party applications (e.g. Chinatrust)
- Identify and implement solutions to improve the efficiency and enhance the controls for privileged access and business/system entitlement management
- Serve as an escalation point for Entitlements related operational activities being handled by the Level 1 Managed Services. This includes audit requests, provisioning / revocation issues, explaining access management polies and procedures, etc.
- Liaise with the business and technology stakeholders on entitlement management activities
- Assist with data requests for audit and regulatory exams


- Background on IT security, access management area preferred
- Experience in project management, planning, tracking, and status reporting
- Good knowledge on DB (e.g. Sybase).
- Excellent people skills to interacts with all levels of resources across the organization
- Excellent written and verbal communication skills
- Strong organizing, problem solving and analytical abilities
- Good understanding of current technology and business process
- Understanding of the principle of least privilege
- Scripting knowledge (e.g. Perl, Python, Powershell) and Business intelligence experiences (e.g. QlikView) will be a good plus