Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 150,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

Authentication and Directory Services Engineer - Assistant Vice President

MUFG, one of the world’s most respected financial groups, is seeking an Authentication and Directory Services Engineer AVP to join their IT Security team in London. This role offers you the chance to work within a global network that values integrity, responsibility, and transparency, while supporting critical authentication and directory services across EMEA. MUFG’s commitment to nurturing talent means you’ll benefit from flexible working opportunities, generous pension contributions, and ongoing training to support your professional growth. If you are passionate about cyber security, identity management, and thrive in a collaborative environment where your expertise is valued, this is your opportunity to make a meaningful impact at a leading financial institution.

• Join a globally renowned financial group with over 150,000 employees and a strong presence in more than 50 countries, offering unparalleled opportunities for personal and professional development.

• Work within a supportive IT Security team focused on delivering secure authentication services using cutting-edge technologies such as Microsoft Active Directory, Azure AD, Single Sign-On (SSO), Multi-Factor Authentication (MFA), and automation scripting.

• Enjoy flexible working arrangements, generous pension contributions, and continuous training opportunities designed to help you grow your skills and advance your career within a culture built on integrity, fairness, and transparency.

What you'll do:

As an Authentication and Directory Services Engineer AVP at MUFG in London, you will play a pivotal role in supporting the bank’s authentication infrastructure across EMEA. Your day-to-day responsibilities will involve managing Microsoft Active Directory platforms both on-premise and in Azure cloud environments. You will implement robust security protocols such as SSO, MFA, and Conditional Access policies to ensure secure access for thousands of users. By handling application onboarding/offboarding processes for authentication services, you will facilitate smooth integration with SSO solutions. You will act as the go-to expert for resolving complex authentication issues through detailed troubleshooting while supporting strategic initiatives aimed at improving platform standards. Your ability to create clear technical documentation will help foster knowledge sharing within the team. Additionally, you will monitor platform health metrics daily to ensure optimal service availability. Automation will be central to your role as you develop scripts that streamline user account management tasks. Your guidance during incident investigations will be crucial in balancing technical requirements with business needs. Ultimately, your efforts will contribute directly to maintaining MUFG’s reputation for secure operations while promoting teamwork and co-operation throughout the department.

• Act as the senior analyst responsible for technical engineering of Microsoft Active Directory (AD) and Entra ID (Azure AD) services across EMEA.

• Implement and maintain advanced security protocols including Single Sign-On (SSO), Multi-Factor Authentication (MFA), Conditional Access policies, ensuring compliance with regulatory frameworks such as SOX and GDPR.

• Manage onboarding and offboarding of applications to authentication services, facilitating seamless integration with SSO solutions.

• Serve as the primary escalation point for complex issues related to authentication failures, directory synchronisation, and access management; resolve BAU incidents through thorough troubleshooting and analysis.

• Support the development of strategic direction for Authentication & Directory Services by contributing technical insights and collaborating with other teams within MUFG.

• Create and maintain comprehensive technical guides that communicate complex information clearly to both peers and less experienced colleagues.

• Oversee daily management of authentication platforms by monitoring service availability, health metrics, performance alerts, and maintaining operational documentation.

• Balance technical guidance against business risk to provide well-considered advice during incident investigations, problem resolution, and project decision-making processes.

• Initiate proactive improvements for standard operating procedures using available tools to evidence issues and escalate them appropriately.

• Develop scripts in PowerShell or Python to automate user account management tasks, reducing manual errors and enhancing efficiency.

What you bring:

To excel as an Authentication and Directory Services Engineer AVP at MUFG you should bring extensive hands-on experience managing Microsoft Active Directory platforms both on-premise and cloud-based Azure AD environments.

Your capacity for clear communication is essential when translating complex concepts into actionable guidance for colleagues at all levels. A structured approach coupled with meticulous attention to detail will help you manage high workloads under pressure while maintaining accuracy. Experience in Identity Threat Detection & Response methodologies further strengthens your suitability for this role. A relevant degree enhances your profile but practical expertise remains paramount; above all else your commitment to teamwork ensures success within MUFG’s inclusive culture.

• Deep knowledge of directory structures, authentication protocols (including SAML, OAuth, Kerberos), hybrid identity scenarios, and Microsoft Active Directory both on-premise and Azure AD environments.

• Proven experience with Quest AD management tools such as Quest Change Auditor and Quest Recovery Manager for effective auditing and recovery operations.

• Expertise in configuring Single Sign-On methods/protocols alongside Active Directory Federated Services (ADFS) and Certificate Services (ADCS).

• Advanced scripting abilities using PowerShell or Kusto Query Language (KQL) for automating user account management tasks.

• Ability to articulate complex technical instructions clearly in plain English for diverse audiences including senior stakeholders.

• Experience supporting large-scale global organisations with over 10,000 users; familiarity with financial regulations such as SOX compliance is highly desirable.

• Strong understanding of Identity Threat Detection & Response (ITDR) methodologies; capable of auditing access rights and monitoring suspicious activity effectively.

• Excellent communication skills combined with results-driven accountability; able to operate with urgency while prioritising workload efficiently.

• Structured approach to work with exceptional attention to detail; adept at managing tight deadlines without compromising accuracy.

• Degree in technology-related discipline preferred; Financial Services experience considered advantageous.

What sets this company apart:

MUFG stands out as one of the world’s largest financial groups with a rich history spanning nearly 350 years. Headquartered in Tokyo but truly global in reach, with offices across Europe, Asia-Pacific, Americas. The organisation offers its employees unique opportunities for growth within an environment built on trustworthiness, integrity, fairness, transparency, honesty, and responsibility. The size of MUFG’s business means you can stretch yourself professionally while benefiting from supportive leadership committed to nurturing talent at every stage of your career journey. Flexible working arrangements allow you to balance life outside work while generous pension contributions provide long-term security. Training opportunities abound so you can continually expand your skillset alongside knowledgeable colleagues who value collaboration above all else. MUFG’s vision is not just about serving clients, it’s about fostering shared sustainable growth for society at large; joining this team means becoming part of something bigger where your contributions matter every day.

What's next:

If you are ready to take your expertise in authentication services to new heights within a globally respected financial institution—apply now!

We are open to considering flexible working requests in line with organisational requirements.

MUFG is committed to embracing diversity and building an inclusive culture where all employees are valued, respected and their opinions count. We support the principles of equality, diversity and inclusion in recruitment and employment, and oppose all forms of discrimination on the grounds of age, sex, gender, sexual orientation, disability, pregnancy and maternity, race, gender reassignment, religion or belief and marriage or civil partnership.

We make our recruitment decisions in a non-discriminatory manner in accordance with our commitment to identifying the right skills for the right role and our obligations under the law.