morganstanley16h ago
New
New
z/OS UNIX System Services (USS) Security Engineer – Vice President
executive
EngineeringSecurity Engineer
0 views0 saves0 applied
Quick Summary
Key Responsibilities
Responsibilities: * Administer and manage USS identities, including UIDs, GIDs, OMVS segments, and service/shared IDs based on policy. * Enforce naming standards, ownership traceability,
Technical Tools
EngineeringSecurity Engineer
z/OS UNIX System Services (USS) Security Engineer – Vice President
Profile Description
We’re seeking someone to join our ETS team as the USS Security Engineer who is responsible for securing and administering z/OS UNIX System Services (USS) environments on the mainframe. This role focuses on enforcing least privilege, protecting privileged access, and ensuring alignment between UNIX permissions, ESM controls (RACF/TSS), and enterprise security standards. The engineer will partner closely with Enterprise Z security architect, system programmers, middleware teams, and audit/compliance stakeholders to maintain a secure and compliant USS platform.
About Enterprise Technology & Services (ETS)
Enterprise Technology & Services (ETS) delivers shared technology services that support all business applications and over 3,000 production systems globally. ETS enables the full software development lifecycle—from development and testing to release engineering, monitoring, and operational support.
In the Technology division, we leverage innovation to build the connections and capabilities that power our Firm, enabling our clients and colleagues to redefine markets and shape the future of our communities. This is a Lead Infra Prod Management & Reliability Engineering position at Vice President Level, which is part of the job family responsible for developing and maintaining software solutions that support business needs.
Since 1935, Morgan Stanley is known as a global leader in financial services, always evolving and innovating to better serve our clients and our communities in more than 40 countries around the world.
What you’ll do in the role:
Responsibilities:
* Administer and manage USS identities, including UIDs, GIDs, OMVS segments, and service/shared IDs based on policy.
* Enforce naming standards, ownership traceability, and lifecycle controls for USS users and services.
* Manage and audit POSIX permissions, ownership, and execution rights across critical USS file systems.
* Control and monitor privileged access, including UID(0), setuid/setgid programs, and elevated authorities.
* Administer USS‑related ESM controls (RACF/TSS), including UNIXPRIV, FACILITY resources, and STARTED task identities.
* Secure USS configuration files, shell environments, PATH settings, and file system mount options.
* Monitor USS security events, logs, and audit records.
* Support production issues, security incidents, and access‑related investigations.
* Develop and maintain USS security standards, procedures, and documentation.
What you’ll bring to the role:
Required Skills:
* Bachelor’s degree and 10+ years of experience with mainframe and z/OS UNIX System Services.
* At least 6 years' relevant experience would generally be expected to find the skills required for this role.
* Strong hands‑on experience securing USS environments.
* Proven experience administering RACF or equivalent ESM for USS.
* Solid understanding of:
* UIDs, GIDs, OMVS segments, and service IDs
* POSIX permissions, ownership, and execution controls
* Experience with USS‑related security controls, including:
* UNIXPRIV class
* FACILITY class resources impacting OMVS
* STARTED task identities for USS services
* Working knowledge of zFS/HFS file systems, mount options, and USS SMF/audit logging.
* Strong understanding of least‑privilege and separation‑of‑duties principles.
Desired
* Experience with PKI, digital certificates, Kerberos, SSL/TLS, SSH, or OpenSSL.
* Exposure to systems programming concepts (e.g., SMP/E, SYS1 datasets, Assembler).
* Understanding of mainframe networking concepts.
* Experience supporting or securing middleware technologies (e.g., MQ).
WHAT YOU CAN EXPECT FROM MORGAN STANLEY:
At Morgan Stanley, we raise, manage and allocate capital for our clients – helping them reach their goals. We do it in a way that’s differentiated – and we’ve done that for 90 years. Our values - putting clients first, doing the right thing, leading with exceptional ideas, committing to diversity and inclusion, and giving back - aren’t just beliefs, they guide the decisions we make every day to do what's best for our clients, communities and more than 80,000 employees in 1,200 offices across 42 countries. At Morgan Stanley, you’ll find an opportunity to work alongside the best and the brightest, in an environment where you are supported and empowered. Our teams are relentless collaborators and creative thinkers, fueled by their diverse backgrounds and experiences. We are proud to support our employees and their families at every point along their work-life journey, offering some of the most attractive and comprehensive employee benefits and perks in the industry. There’s also ample opportunity to move about the business for those who show passion and grit in their work.
To learn more about our offices across the globe, please copy and paste https://www.morganstanley.com/about-us/global-offices into your browser.
Morgan Stanley is an equal opportunity employer committed to building and maintaining a workforce that is diverse in experience and background. Our recruiting efforts reflect our strong commitment to a culture of inclusion, where individuals are hired, developed, and advanced based on their skills and talents.
Our workforce reflects a broad cross-section of the global communities in which we operate, bringing a variety of backgrounds, talents, perspectives, and experiences.
For more information, please visit: https://www.morganstanley.com/people-opportunities/eeo.
Location & Eligibility
Where is the job
—
Location terms not specified
Listing Details
- Posted
- July 7, 2026
- First seen
- July 7, 2026
- Last seen
- July 7, 2026
Posting Health
- Days active
- 0
- Repost count
- 0
- Trust Level
- 51%
- Scored at
- July 7, 2026
Signal breakdown
freshnesssource trustcontent trustemployer trust
External application · ~5 min on morganstanley's site
Please let morganstanley know you found this job on Jobera.
4 other jobs at morganstanley
View all →Explore open roles at morganstanley.
Similar Security Engineer jobs
View all →Application Security Engineer
SECURITY ENGINEER
Information Assurance / Security Engineer, Staff Principal
USD 167000/yr
Security Engineer – AIDR
R
RealchemistryRemoteSecurity Engineer — Application Security & Identity
$60k–$80k/yr
Remote
Principal Security Engineer
USD 319000-478600
Browse Similar Jobs
Devops Engineer2.4kDevOps & Infrastructure2.1kSecurity1.6kEngineering Manager1.3kFullstack Developer1.2kSoftware Architect1.1kBackend Developer1.1kQa Engineer992Mechanical Engineer944Backend Engineering905Data Engineering843Mobile Developer797Frontend Developer738Electrical Engineer734Project Engineer578Design Engineer572Frontend Engineering477IT & Administration320Automation Engineer310Process Engineer298
Newsletter
Stay ahead of the market
Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.
A
B
C
D
No spam. Unsubscribe at any time.