Senior Insider Threat Security, Associate Vice President

Posted:
12/13/2024, 1:58:34 PM

Location(s):
New Jersey, United States ⋅ Tempe, Arizona, United States ⋅ Florida, United States ⋅ Arizona, United States ⋅ Tampa, Florida, United States ⋅ Jersey City, New Jersey, United States

Experience Level(s):
Expert or higher ⋅ Senior

Field(s):
Data & Analytics ⋅ IT & Security

Workplace Type:
Remote

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details.

Job Summary

MUFG is seeking an Insider Threat Security Engineer to utilize scientific methodologies using predictive analytics to help identify and convey insider risk and risk management activities to our business operations. Works closely with Data Loss Prevention and Global Security Operations teams and serves as the subject matter expert for the data analytics discipline. Provides recommendations and contributes to the overall strategic direction of the Insider Threat program. Will support the Insider Threat Operations Team and be responsible for maintaining systems to facilitate the analysis of insider threat alerts and events, integrating available data sources from a variety of internal and external sources into the Insider Threat Management workflow, cleaning data as necessary, and developing associated analytical models.

Major Responsibilities

  • This role requires a highly curious and skilled practitioner to identify and respond to high-risk activity and anomalous behaviors that may be indicative of harmful insider threat activity.  This includes intellectual property theft, espionage, fraud, sabotage, and unauthorized data disclosure
  • Must possess the ability to document findings including timelines, evidence and artifacts relating to each event
  • Ability to coordinate meetings with device owners, managers, and forensics teams as needed to verify evidence
  • Understand data loss prevention, data classification, SIEM a plus
  • Manages various analytical tools and information systems to identify and follow trends in order to provide actionable intelligence
  • Experience with server administration in both on-premises and cloud environments. Knowledge of contemporary SIEM/UEBA platforms and their application to cyber threat analysis
  • Experience with writing small bash, Splunk scripts, SQL queries and java programs
  • Knowledge of networking protocols, encryption, firewalls, host and network intrusion detection systems, data loss prevention systems, Windows and Linux
  • Understanding of latest security trends, especially those associated with insider threat detection, response, and mitigation Security and IT metrics experience a plus; report creation abilities strongly desired
  • Evaluate / Build SIEM queries, reports, and dashboards to make recommendations on changes of events being monitored
  • Exceptional ability to execute and drive change while never losing site of the basics
  • Produce documentation that will help to educate and socialize program updates to our key stakeholders
  • Zero tolerance for operational, design, and strategy-oriented gaps

Qualifications

  • Bachelor's degree in Information Security or a closely related discipline, or equivalent related experience
  • Ability to professionally handle confidential matters with appropriate judgment around escalation
  • Experience with data analytics tools used for insider threat information collection and knowledge of other insider threat risk scoring data analytics tools
  • Excellent verbal and written communication skills to translate the vision and strategy into clear priorities and direction, both internally and externally
  • Strong analytical and quantitative skills; ability to use data and metrics to drive recommendations
  • Strong knowledge of cyber risk and cybersecurity principles, including familiarity with relevant laws, regulations, and standards such as FISMA, CIS and NIST
  • Experience consulting with business and technology partners on general security requirements, network controls and best practices
  • Ability to demonstrate analytical expertise, attention to detail, excellent critical thinking, logic, and solution orientation to learn and adapt quickly
  • Practical knowledge of recent or emerging cyber threats
  • Knowledge in DLP and big data technology
  • Experience with investigations within security domain and tools
  • Experience with MS Office 365 (Word, Excel, PowerPoint, Outlook), Teams, SharePoint, Visio, QuickBase, Confluence and IBM Watson
  • Strong technical writing, research, analysis, and analytical/problem solving skills
  • Strong organizational skills, including the ability to drive adherence to cybersecurity processes and tools and to keep focus on multiple tracks of work and open issues in parallel
  • Ability to demonstrate analytical expertise, attention to detail, excellent critical thinking, logic, and solution orientation to learn and adapt quickly
  • A balance of technical understanding of threat detection technology and service delivery skills
  • Security and IT metrics experience a plus; report creation abilities strongly desired

The typical base pay range for this role is between $110K - $135K depending on job-related knowledge, skills, experience and location. This role may also be eligible for certain discretionary performance-based bonus and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package (in accordance with the eligibility requirements and respective terms of each) that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays. For more information on our Total Rewards package, please click the link below.

MUFG Benefits Summary

We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws (including (i) the San Francisco Fair Chance Ordinance, (ii) the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance, (iii) the Los Angeles County Fair Chance Ordinance, and (iv) the California Fair Chance Act) to the extent that (a) an applicant is not subject to a statutory disqualification pursuant to Section 3(a)(39) of the Securities and Exchange Act of 1934 or Section 8a(2) or 8a(3) of the Commodity Exchange Act, and (b) they do not conflict with the background screening requirements of the Financial Industry Regulatory Authority (FINRA) and the National Futures Association (NFA). The major responsibilities listed above are the material job duties of this role for which the Company reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of conditional offer of employment, if any.

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified.

We are proud to be an Equal Opportunity Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate on the basis of race, color, national origin, religion, gender expression, gender identity, sex, age, ancestry, marital status, protected veteran and military status, disability, medical condition, sexual orientation, genetic information, or any other status of an individual or that individual’s associates or relatives that is protected under applicable federal, state, or local law.