Posted: Sunday, November 5, 2017 7:56 PM
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world with total assets of over $2.4 trillion (as ranked by SNL Financial, April 2016) and 140,000 colleagues in nearly 50 countries. In the US, we re 13,000 strong, working together to positively impact every customer, organization, and community we serve. We achieve this by delivering on our values, putting people first, fostering long-term relationships built on honesty and mutual understanding, and inspiring the best in each other. This is all part of our inclusive, high-performing culture supported by Total Rewards that include our cash balance pension plan. Join a team that s working to fulfill its vision to be the world s most trusted financial group. Summary: Information security is an integral part of the MUB corporate culture. It is essential to maintain our position as an industry leader in retail banking and it is the responsibility of each and every employee to safeguard information, protect it from unauthorized access, and ensure regulatory compliance. Information security has a significant effect on privacy, consumer confidence, external reputation, and/or the bottom line, and it is a priority on everyone's agenda. The successful candidate for the Senior Threat Intelligence and Vulnerability (TIV) Analysts position will be an experienced professional who will be responsible for producing authoritative intelligence assessments that define cyber threats. This team is responsible for the collection, analysis and reporting of actionable intelligence for the Cyber Security organization. The Role of the Senior Threat Intelligence and Vulnerability (TIV) Analysts will be part of a team that is responsible to manage, monitor, and communicate the information security risks associated with inherent and residual vulnerabilities that may result in harm or disruption to the Company. The analysts will be part of a team that will work closely with key stakeholders from IT, Business and Corporate Support Functions to gather requirements understand priorities and communicate impact and context of vulnerabilities in business speaking terms to the lines of business, and to upper management. The analysts will be part of a team that will develop metrics that will measure the effectiveness of practices and controls to mitigate threats and vulnerabilities on a periodic basis; and develop dashboards that illustrate the effectiveness of risk mitigation over time. Additionally, the analysts is part of a team that will work to resolve information security related incidents and events related security breaches in a manner that ensures the safety of information system assets and confidential customer, consumer, employee and corporate data. The analysts will also identify and manage the implementation of appropriate security controls, aligned with industry best practices to meet security objectives and standards while allowing flexibility for the businesses to manage their responsibilities. Major Responsibilities: Responsible for defining, ratifying and maintaining a formal Threat & Vulnerability Management Program; and framework that defines the vulnerability priorities aligned with business criticality. Responsible for providing governance, guidance, and setting priorities for risk-based vulnerability management, mitigation and remediation. Develop and present business cases to Management to improve security posture to effectively mitigate advanced threats Work with Information Security team and update Security Standards for all technologies ( Databases, Operating Systems & Network devices). Help identify metrics and KPIs that could be tracked in order to measure impact on multiple stakeholder groups. Apply a variety of analysis tools to interpret data and identify key learnings and patterns. Produce visualizations of data to monitor for developing trends/patterns and highlight areas of potential improvement. Work with technology owners to validate the policy compliance profiles. Review the policy compliance scan results with stake holders. Perform policy compliance scans and deliver reports to the technology owners. Help build/improve an exception process to manage policy compliance deviation. Partner with various stakeholders to define specific roles & responsibilities to support mitigation of threats and vulnerabilities, and incident response. Responsible for maintaining appropriate documentation that defines the Threat & Vulnerability Management Program, Policy and Procedures; and to manage the TVM Team to develop and update as appropriate. Be able to engage with, and manage vendor contracts related to external threat intelligence and threat mitigation services. Qualifications: Bachelor's Degree in Business, Management, Computer Sciences, or equivalent prior work experience in a related field. Two to Three years of experience in Qualys policy compliance and vulnerability management. Experience with analytical tools SAS or R or Python Experience with business intelligence and dashboard generation. Experience working with big data eg Hadoop/Hive/Spark/Splunk. Preferably Splunk. Expert at Excel Exposure to Qualys APIs. Knowledge of scripting languages like python and Perl Understanding of CIS-Benchmark and NIST framework. In-depth knowledge performing vulnerability management and policy compliance scan In-depth knowledge of databases security configuration (Oracle, DB2, Microsoft SQL, MySQL). Strong analytical skills (ie, technical and non-technical problem solving skills). Maintain certifications in an information security related field. The following are recommended: CISSP, CISM, GSEC, GIAC, GPEN. Outstanding oral and written communications skills. This includes the ability to make formal stand-up presentations to all levels of management, etc. Personal requirements: Results driven, with a strong sense of accountability A pro-active, motivated approach. The ability to operate with urgency and prioritize work accordingly A structured and logical approach to work Strong problem solving skills A creative and innovative approach to work Ability to work in a team environment The ability to manage large workloads and tight deadlines Excellent attention to detail and accuracy. Why Work for MUFG? We are a financially strong and stable bank. We value workplace diversity. We are committed to the training and development of our employees. Innovative vacation benefits. We offer a matching 401K, a Retirement Plan, and a variety of Flexible Health Benefits. The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified. To learn more about MUFG, review all current career opportunities, and apply please visit us online: We are proud to be an Equal Opportunity/Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.
• Location: Phoenix
• Post ID: 63721567 phoenix