MUFG Americas
Do you want your voice heard and your actions to count?
Read on to fully understand what this job requires in terms of skills and experience If you are a good match, make an application. Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world. With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details. Job Summary: This role is part of the CISO of America’s team, focusing primarily on the Enterprise Information System’s Governance, Risk, and Compliance team. The role involves managing complex areas such as Policy Management, Cybersecurity Controls and Reporting, and Cyber Risk Quantification in both Cloud and on-premise environments, with an emphasis on comprehensive risk management, including the identification, assessment, and management of inherent, control, and residual risks. Responsibilities: Cyber Risk Management: Support internal projects addressing cybersecurity threats, aiding stakeholders in assessing MUFG’s first line defenses. Review risk assessments, challenge scenarios, and oversee issues and escalations. Analyze risk trends proactively to mitigate potential issues. Evaluate emerging risks and operational trends impacting cloud security. Address root causes of risks to prevent operational losses or regulatory breaches. Cybersecurity Controls and Reporting: Represent EIS GRC in relevant working groups. Communicate complex cybersecurity concepts to non-technical stakeholders and senior management. Prepare detailed risk management reports for senior management. Cyber Risk Quantification: Collaborate on initiatives to improve enterprise cybersecurity programs. Update Cyber Risk Institute practices based on the threat landscape. Lead discussions on cloud security risk management at all organizational levels. Guide business units on assessments and translating technical questions into business language. Emerging Security Trends: Stay updated on security trends, technologies, and regulations affecting cloud environments. Ensure compliance with regulatory and internal policies. KRIs Metrics: Promote practices for identifying, measuring, monitoring, and managing information risks. Qualifications: 8-10+ years’ experience in risk management, cloud security, and IT roles; audit experience is a plus. Strong technical knowledge in cybersecurity domains such as IAM, Data Security, Incident Response, and secure software development. Knowledge of banking regulations (Reg W, Basel II, FFIEC, GDPR) and experience with regulatory examinations. Certifications in cloud security (AWS, Azure) and security auditing (CISA, CISM, CISSP). Ability to work independently and collaboratively across management levels. Excellent analytical, organizational, and communication skills. Bachelor’s degree in IT, Information Security, or related field. Education & Certifications: Bachelor’s degree or equivalent in Information Security or related discipline. The typical base salary range is $139K - $171K, depending on experience and location. This role may be eligible for bonuses and other benefits, including health, retirement, education, and paid leave. For more details, see our MUFG Benefits Summary. We consider all qualified applicants, including those with criminal histories, in accordance with applicable laws and regulations. We are an Equal Opportunity Employer committed to diversity and inclusion.
#J-18808-Ljbffr
Read on to fully understand what this job requires in terms of skills and experience If you are a good match, make an application. Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world. With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details. Job Summary: This role is part of the CISO of America’s team, focusing primarily on the Enterprise Information System’s Governance, Risk, and Compliance team. The role involves managing complex areas such as Policy Management, Cybersecurity Controls and Reporting, and Cyber Risk Quantification in both Cloud and on-premise environments, with an emphasis on comprehensive risk management, including the identification, assessment, and management of inherent, control, and residual risks. Responsibilities: Cyber Risk Management: Support internal projects addressing cybersecurity threats, aiding stakeholders in assessing MUFG’s first line defenses. Review risk assessments, challenge scenarios, and oversee issues and escalations. Analyze risk trends proactively to mitigate potential issues. Evaluate emerging risks and operational trends impacting cloud security. Address root causes of risks to prevent operational losses or regulatory breaches. Cybersecurity Controls and Reporting: Represent EIS GRC in relevant working groups. Communicate complex cybersecurity concepts to non-technical stakeholders and senior management. Prepare detailed risk management reports for senior management. Cyber Risk Quantification: Collaborate on initiatives to improve enterprise cybersecurity programs. Update Cyber Risk Institute practices based on the threat landscape. Lead discussions on cloud security risk management at all organizational levels. Guide business units on assessments and translating technical questions into business language. Emerging Security Trends: Stay updated on security trends, technologies, and regulations affecting cloud environments. Ensure compliance with regulatory and internal policies. KRIs Metrics: Promote practices for identifying, measuring, monitoring, and managing information risks. Qualifications: 8-10+ years’ experience in risk management, cloud security, and IT roles; audit experience is a plus. Strong technical knowledge in cybersecurity domains such as IAM, Data Security, Incident Response, and secure software development. Knowledge of banking regulations (Reg W, Basel II, FFIEC, GDPR) and experience with regulatory examinations. Certifications in cloud security (AWS, Azure) and security auditing (CISA, CISM, CISSP). Ability to work independently and collaboratively across management levels. Excellent analytical, organizational, and communication skills. Bachelor’s degree in IT, Information Security, or related field. Education & Certifications: Bachelor’s degree or equivalent in Information Security or related discipline. The typical base salary range is $139K - $171K, depending on experience and location. This role may be eligible for bonuses and other benefits, including health, retirement, education, and paid leave. For more details, see our MUFG Benefits Summary. We consider all qualified applicants, including those with criminal histories, in accordance with applicable laws and regulations. We are an Equal Opportunity Employer committed to diversity and inclusion.
#J-18808-Ljbffr