Skip to main content
Back to jobs

Cyber Data Engineer, Associate

External
MORGAN STANLEY MANAGEMENT SERVICE (SINGAPORE) PTE. LTD. logoMorgan Stanley Management Service (singapore) · One Marina Boulevard, Singapore
S$97K–S$145K/yrFull-timeUnknownToday
AnsibleApacheAWSAzureCI/CDDNS
Cover LetterConnect

Prepare for this interview

Elite

AI-generated questions, company research, and talking points tailored to this role


Requirements

  • Certifications in Splunk, Elasticsearch, or cloud platforms.
  • Experience supporting detection engineering, threat hunting, or incident response.
  • Experience with field extraction and parsing using regex.
  • Familiarity with security telemetry and detection frameworks.
  • Experience improving observability, resilience, and performance tuning.
  • What you can expect from Morgan Stanley

Additional Information

Our globally distributed cyber data engineering squad is responsible for designing, engineering, and maintaining large-scale security analytics platforms using Splunk, Elasticsearch, and associated data pipeline technologies. These platforms underpin critical cyber capabilities across security response, threat hunting, investigations, insider threat, and wider technology risk functions. We are seeking a Cyber Data Engineer to strengthen APAC cyber engineering coverage from Singapore, with a focus on hands-on platform engineering, automation, data onboarding, troubleshooting, and operational resilience. The successful candidate will work on complex cyber data platforms that ingest, transform, store, and expose security event data for detection, investigation, and response use cases. Role Profile: > Engineering and maintaining large-scale cyber analytics platforms, including Splunk, Elasticsearch, and associated data ingestion and storage components. > Onboarding new cyber data sources, validating event quality, developing field extractions, and ensuring data is usable for detection, investigation, and response teams. > Designing, building, and supporting data pipelines that collect, transform, route, and transmit cyber event data from cloud and on-premises sources. > Developing automation tools that integrate with internal APIs, configuration management frameworks, CI/CD pipelines, and infrastructure services. > Improving platform reliability, scalability, monitoring, alerting, recovery, and operational resilience across APAC and global cyber engineering environments. > Investigating and resolving complex technical issues across application, infrastructure, network, operating system, data, and integration layers. > Acting as an escalation point for difficult platform, ingestion, search, performance, and data availability issues. > Identifying and implementing tuning opportunities to improve platform performance, reduce operational toil, and increase engineering efficiency. > Partnering with cyber stakeholders across threat hunting, detection engineering, incident response, investigations, insider threat, and technology risk to deliver fit-for-purpose engineering solutions. Candidate Profile: The ideal candidate is a hands-on cyber engineer who enjoys solving complex technical problems across data, platforms, infrastructure, and automation. They should be comfortable working across coding, troubleshooting, and stakeholder engagement. The candidate should be able to operate independently, learn quickly, and maintain reliable cyber platforms at scale in a fast-moving environment. Required Skills: > At least 4 years' relevant experience would generally be expected to find the skills required for this role > Experience engineering, deploying, supporting, or operating large-scale security analytics platforms such as Elasticsearch or Splunk. > Strong understanding of cyber event data, including log ingestion, parsing, field extraction, normalization, enrichment, routing, and data quality validation. > Experience with data pipeline or dataflow technologies such as Logstash, Cribl, Kafka, Apache NiFi, syslog, or equivalent enterprise data transport tooling. > Strong automation and integration experience, ideally using Python and tools such as Ansible, Terraform, or similar technologies. > Experience integrating cyber platforms with cloud and on-premises environments (AWS, Azure, Google Cloud). > Solid understanding of Linux/Unix, networking, HTTP, TLS, DNS, load balancing, authentication. > Good understanding of DevOps practices (Git, Jenkins, Jira, CI/CD). > Strong analytical and troubleshooting skills. > Excellent written and verbal communication skills.


Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at MORGAN STANLEY MANAGEMENT SERVICE (SINGAPORE) PTE. LTD.? Share your experience

Interested in this role?

Apply on the company's website.

Cover LetterConnect