Job Description

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

EDUCATION
Degree or equivalent work experience equally preferable
Degree in computer science, information security, business, management, cybersecurity, engineering, math, information technology, statistics, operations research, data science, or related field
CERTIFICATIONS
• Certified Ethical Hacker (CEH)
• Certified in Governance, Risk and Compliance (CGRC; formerly Certified Authorization Professional [CAP])
• Certified Information System Auditor (CISA)
• Certified Information Systems Manager (CISM)
• Certified Information Systems Security Professional (CISSP)
• Certified Project Management Professional (CPMP)
• GIAC Certified Incident Handler (GCIH)
• GIAC Security Essentials Certification (GSEC)
• Global Information Assurance Certification (GIAC)
• Imperva Database Security Specialist (IDSS)
• Microsoft Certified Software Engineer (MCSE)
• Offensive Security Certified Professional (OSCP)
• Security+
• Six Sigma
• SysAdmin, Audit, Network and Security (SANS)
WORK EXPERIENCE
Strong technical experience in cybersecurity, insider threat, incident response, security operations, or related information security field
Experience working in database security, data loss prevention (DLP) engineering, data security engineering, encryption engineering, insider threats, network security, PKI engineering, security analytics, system security, systems and software security (SSS), technical security standards compliance, threat and vulnerability management (TVM), or related field
Experience in the banking or finance industries preferred
FUNCTIONAL SKILLS
Access control conformance, Act independently, Adaptation, Advanced Interactive eXecutive (AIX), Analytical (i.e. technical and non-technical problem-solving), Analytics for decision-making and measurement progress/performance, Analyze various methods controlling information security problems, Apache Cassandra, Apache Hadoop, Apache Spark, Apple MAC, Application security, Infrastructure security, Application software which effect the integrity, functionality, and reliability the Bank's network and systems, Application transaction, Apply information security theories and concepts to specific circumstances, Aptitude to lead complex efforts, Architecture diagrams, Articulate security risks and appropriate controls, Automation through scripting and/or programming, Amazon Web Services (AWS), Azure, Building and operating a data protection and compliance program, Business processes in the financial/government sector, Capdo data analytics and draw risk conclusions based on activities seen, CCPA/CPRA, Certificate management tool Venafi, Continuous Integration/Continuous Delivery (CI/CD), CIS-Benchmark, Cloud encryption solutions, Cloud PKI, Cloud technology solutions, COBIT, Common cybersecurity frameworks, Common OS operation, Communicate clearly and concisely with peers and all levels leadership., Communication and presentation, Complex project management, Conceptual processes and system characteristics in the security space, Convey complex concepts to a broad audience (technical and non-technical), Convey technical findings in simple language, Create a level security awareness throughout the Bank for accountability and responsibility, Create native productivity aids and command scripts, Creative problem solving, Cryptographic implementations at media, CVSS, Cybersecurity, DAM, Data analytics and draw risk conclusions based on activities seen, Data classification solutions, Data protection strategies, Databases security configuration, DB2, Demonstrate vulnerabilities, Determine the strengths and weaknesses each method and implement the best cost-justified solution, Development of insider Threat policies and standards, DevSecOps methodologies, Distributed Denial Service (DDoS) Protection, Documentation writing that present both a business and technical viewpoint, Domain Name System (DNS), Drive vulnerability management reporting, Email Security, Encryption Engineer, Encryption security products, Encryption solutions, Entrepreneurial mindset by applying frameworks for resource alignment on goals and objectives, Evaluate application software which impact the integrity, functionality, and reliability of the bank's network and systems, Evaluate business process which impact the integrity, functionality, and reliability of the bank's network and systems, Evaluate the impact to existing security systems, Exabeam, Excel (vlookup/pivot tables/charts), Explain risk, Extranet networks, Facilitate remediation coaching, Federal Financial Institutions Examination Council's (FFIEC), File Transfer Protocol (FTP) functionality, Firewalls, Formal stand-up presentations to all levels management, GLBA, Gramm-Leach-Bliley Act (GLBA), Hyper Text Transfer Protocol/Secure (HTTP/HTTPs), Identify weak links in information security products, Implement the best cost-justified solution, Implementation of insider Threat policies and standards, Industry trends and current security practices, Influence and communicate cross-functionally all levels management., Information security theories and concepts to specific circumstances, Insider risk management governance, Internet, Internet Relay Chat (IRC), Interpersonal communication, Intrusion Detection System (IDS), ISO 27001, Lead pro-active reviews and self-assessments the policies, Liaise business, Linux, Listener, Log management solutions, Mac, Maintenance of insider Threat policies and standards, Major database platforms, Manage and lead teams multiple individuals, Manage application and infrastructure security assessments, Manage complex projects, Manage information security control assessments, Managing initiatives such as assessments, Mechanics of OS exploits of preventive and detective controls, Methods of controlling information security problems, Microsoft SQL, Mitigate the control deficiencies, Mitigations changes and risks, MITRE ATT&CK framework, Modern security principles and its practical applications., MongoDB, MSSQL, Multifactor Authentication (MFA), MySQL, National Institute of Standards (NIST), Network, Network appliances, Network security, Network traffic analysis, Network/system forensic tools, Networking fundamentals (e.g. TCP/IP) and troubleshooting ., NIST CSF, NIST framework, Nnative productivity aids and command scripts., NoSQL, O365, Operating in hybrid-cloud environment, Operating system (OS) internals, Operating system changes evaluate the impact to existing security systems, Operating systems and their versions and security systems in use at the Bank, Operating systems security configuration, Operational auditing in the financial/government sector, Oracle, Oracle TDE, Oral communications, Organize and establish processes in need of improvement, Outstanding oral and written communications, Oversee workloads and support direct reports to success while meeting objectives senior management, OWASP, Passionate, PCI, Perimeter Network Security, Perl, Positive and driven attitude, PowerShell, Prepare detailed task plans outlining all requirements to complete the given assignment, Presentation, Prioritizing and organizing day to day tasks and needs as appropriate, Proactive mindset and actions, Procedures and systems, Program management, Programming language to automate tasks, Protection and monitoring, Provide leadership and guidance to IT teams in patching and solutions to mitigate security threats, Provide technical direction to other peer staff members, Proxy, Public Key Infrastructure (PKI), Python, Qualys, Rapid7, RegEx, Regulatory and risk partners to satisfy legal and regulatory requirements and avoid risk, Regulatory compliance, Regulatory requirements affecting data integrity, Reliable team management, Report creation, Risk assessments, Router & switches, Ruby, Safenet, Scripting languages, Security analytics toolsets, Security and IT metrics, Security event management tools, Security Information and Event Management (SIEM), Security risks and controls, Security tool sets, Servant leadership showing strength, Set direction, SIEM, SIEM/SOAR management solutions, Software development lifecycle, Software Security (SSS) Specific, Solaris, SOX, Splunk, Splunk Search Language, SQLSERVER, Strategic and operational initiatives, Strategic program development and improvement following current industry security trends and patterns and in alignment business vision and needs, Strengths and weaknesses of each method and implement the best cost-justified solution., Support audit, Support databases, Support MS certificate authority services, Symantec/DLP, Syslog-NG, System security, System vulnerabilities, Technical and non-technical problem-solving, Technical direction to other peer staff members, Technical Security Standards Compliance Specific, Techniques and procedures (TTPs) used by threat actors against endpoints, Technology and leadership partners, Thales, The mechanics OS exploits preventive and detective controls, Threat and vulnerability management (TVM) & Systems, Threat detection, Tooling integrations to support Agile, Tools used to execute a world class offensive Security program, Tools used to execute a world class Perimeter Network Security program, Train new staff on the security team, Transmission Control Protocol/Internet Protocol (TCP/IP), UEBA and related tools, Understand security risks and controls, Unix, Various methods of controlling information security problems, Verbal communication, Visionary, Voltage, Vormetric, Vulnerability scanning tools, Web Application Firewall (WAF), Windows servers and workstations, Wireless Local Area Network (WLAN) Security, Working centralized logging tools, Workload prioritization and organization, Written communication
FOUNDATIONAL SKILLS
Exceptional team member who will drive innovation while never losing site of the basics
- Exceptional ability to execute and drive change
- Strong drive to build a best in the world program
- Strategic, creative, and innovative mind
- Zero tolerance for operational, design, and strategy oriented gaps
- Absolute self-starter who will take the lead and initiative to find and solve problems
- Be able to communicate many examples of where you drove positive change
RESPONSIBILITIES
• Designing, developing, testing, documenting, monitoring, and implementing information and database security solutions to enforce security strategies and support to new/existing systems in accordance with policies, standards, guidelines and procedures.
• Serve as a trusted partner to business, operations, development, risk and compliance teams providing database security subject matter expert (SME) guidance and analysis.
• Managing a database activity monitoring (DAM) platform for security and audit compliance, including policy creation, event and trend analysis, performance monitoring and infrastructure maintenance.
• Developing and maintaining database security standards, guidelines and procedures for hardening database configurations, users and roles, profiles, etc.
• Refining and enhancing existing controls, policies, standards, procedures, and guidelines to prevent the unauthorized use, release, modification, or destruction of data.
• Evaluating updates to new/existing database security controls by determining the strengths/weaknesses and coordinate the testing and implementation of the new/enhanced controls with all business partners that are affected.
• Identifying weak links in information security products and determine how to mitigate the control deficiencies.
• Enhancing preventive systems used to stop and/or deter security breaches.
• Evaluating database security patches from vendors and assesses potential risk and work with stakeholders to address vulnerabilities.
• Respond to security Incidents and assist with Tier-1 and Tier-2 incident investigations.
• Performing root cause analysis of security violations to determine if they are the result of misconfiguration or malfunction or if they are malicious, and taking appropriate action depending on circumstances.
• Evaluating new database releases/updates to ensure they are appropriately integrated into the security program and existing controls are effective with the updates.
• Working with database custodians at different levels of the organization to understand their respective security needs and assist with implementing practices and procedures consistent with the bank information security policy.
• Conducting and identifying database security compliance issues and ensure that any non-compliance to security baseline configurations are identified, tracked and assigned to stakeholders for remediation.
• Working with internal and external auditors to demonstrate and provide evidence of security controls are adherence to regulatory compliance.
• Executing and enhancing monitoring systems used to detect and report security violations.
• Administering the DLP system and policies to enforce on endpoint sensors and refining DLP security standards
• Developing actionable detections for latest data leakage methods
• Developing and maintaining the security guidelines and procedures for DLP
• Evaluating and enhancing new/existing security controls to ensure relevance and effectiveness.
• Creating and managing process for identifying, prioritizing and remediating security gaps and weakness.
• Conducting analyzing and following up with key stakeholders for forensic investigation and remediation.
• Investigating DLP incidents to reduce the risk imposed to the Bank.
• Providing configurations and process enhancement proposals supported by Use Case scenarios.
• Developing regular data leakage trending and performance metrics on DLP activities.
• Working with vendors on providing product updates, bug fixes and managing relations.• Provide administration and operationally support adopted endpoint security technology covering EDR (Endpoint Detection and Response) and Next-Gen Anti-virus solution.
• Execute entire change and release management process for deployments, enhancements, upgrades, and hotfixes across all feature sets to include communications, planning, testing, deployment, and monitoring.
• Provide Subject Matter Expertise and demonstrate in-depth understanding of the TTPs (Tactics, Techniques and Procedures) used by threat actors against endpoints. Leverage EDR, Next-Gen AV and other security controls to protect systems against internal and external threats.
• Closely work with Security operations center and other security groups during investigation of any security breach.
• Be able to triage security logs, recommend containment controls and lead remediation steps.
• Demonstrate mastery in log file analysis, fault isolation and diagnostic/assessment actions including root cause analysis, followed by the determination and self-directed execution of corrective actions.
• Stay current on endpoint security best practices, active threats and mitigation strategies.
• Drive continuous innovation with new ideas on improving and maturing endpoint security posture.
• Maintain metrics and supporting analytics on System and endpoint Security.
• Design, build, operate and maintain network security infrastructure (e.g. Firewalls, VPNs) with focus on AWS Cloud Services.
• Assess risk and implement solutions.
• Respond and resolve production issues.
• Develop network security controls and standards.
• Collaborate with various teams in the bank to successfully develop critical security controls across the enterprise.
• Documentation of control states and performing gap analysis
• Design, review and improve process flows
• Assisting stakeholders in identifying, initiating, and tracking corrective actions to address anomalies
• Works with 2nd line to enforce security and acceptable use polices through web, email, and other content filtering
• Collaborate with various teams in the bank to successfully develop critical security controls across the enterprise.
• Documentation of control states and performing gap analysis
• Design, review and improve process flows
• Assisting stakeholders in identifying, initiating, and tracking corrective actions to address anomalies
• Works with 2nd line to enforce security and acceptable use polices through web, email, and other content filtering
• Inspects outbound traffic to prevent traffic from specific computers and filtering to prevent sensitive data leakage
• Enforces security policies which move data between networks using secure, authenticated, and encrypted mechanisms
• Performs an assessment of data to identify sensitive information that requires the application of encryption and integrity controls
• Deploys approved hard drive encryption software to mobile devices and systems that hold sensitive data
• Verifies that cryptographic devices and software are configured to use publicly vetted algorithms
• Regularly reviews use of certificates to confirm only Certificate Authorities (CAs) are used
• Performs a regular review of algorithms and key lengths in use for protection of sensitive data
• Defines roles and responsibilities related to management of encryption keys within the enterprise; define processes for key management
• Analyzes and develops policies and solutions to support SSL Certificates/email security on an enterprise scale
• Designs, implements and collaborates on a range of information security policies, metrics and performance reports
• Assists with project efforts to design security controls and processes that solve business problems
• Identifies control deficiencies by analyzing and identifying underlying root causes
• Assists stakeholders in identifying, initiating, and tracking corrective actions to address anomalies
• Provides input into new security strategies and trends as well as measure and report on the processes that affect the integrity, functionality, and reliability of the bank’s security control framework.
• Stays current with information security program developments, industry frameworks, and changes in the Bank that may impact reporting

Mitsubishi UFJ Financial Group (MUFG) is an equal opportunity employer. We view our employees as our key assets as they are fundamental to our long-term growth and success. MUFG is committed to hiring based on merit and organsational fit, regardless of race, religion or gender.