Senior Information Security Engineer, AVP

Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. We are a global team of 120,000 colleagues committed to making a difference for clients, organizations, and communities. We value building long-term relationships, serving society, and fostering sustainable growth for a better world.

Our vision is to be the world’s most trusted financial group. We prioritize putting people first, embracing diverse ideas, and fostering innovation, speed, and agility. We invest in talent, technologies, and tools to empower your career development.

Join MUFG, where inspiration is encouraged and meaningful impact is recognized.

Work Arrangement: The selected candidate will work at an MUFG office or client sites four days a week and remotely one day. Further details will be provided by our recruitment team.

We are seeking a Sr. Information Security Engineer skilled in performing technical risk assessments, identifying risk indicators, and proposing process and technology controls in dynamic environments. The candidate should have in-depth knowledge of network switching, TCP/IP, IP addressing and routing, WAN technologies, and managing networked devices and environments.

• Develop guidelines for the usage, control, maintenance, and audit-readiness of information and computer resources.
• Analyze and address security gaps within the Bank’s infrastructure.
• Identify and coordinate resolution of distributed systems security issues.
• Conduct technical risk assessments for scoped environments.
• Report findings, resolve issues, and manage findings.
• Support FLOD/SLOD assessments, audits, and external exams.
• Provide accurate and timely reporting.
• Perform remote/table-top information security assessments.
• Identify high risks and lead their resolution.
• Analyze control deficiencies and root causes.
• Design and collaborate on security metrics and reports.
• Assist stakeholders in corrective actions.
• Document assessments and perform threat analysis.
• Communicate vendor security issues and ensure understanding of risks.
• Validate vendor evidence before closing remediation plans.

• Expertise in AD security features, including Group Policy, ACLs, and security groups.
• Knowledge of Active Directory monitoring, AD FS, AD CS, and Azure AD.
• 5+ years in cybersecurity assessment, IT audit, penetration testing, or vulnerability management.
• Experience in mid to large-scale IT environments.
• Experience with control areas such as Active Directory, Vulnerability Management, Configuration Management, and Cloud services.
• Proficiency in conducting security assessments and advising stakeholders.
• Technical knowledge of security and networking architecture, including routers, firewalls, SIEM, DLP, and encryption.
• Knowledge of operating systems, network protocols, web services, databases, scripting, and programming languages.

Certifications:

• CISSP, GIAC, CISA, CRISC, CISM, or other relevant security certifications.

Education:

• Degree in Computer Science or related field, or equivalent experience.

Additional Qualifications:

Must work onsite 4 days and remotely 1 day, preferably in Tampa, FL, Tempe, AZ, or Jersey City, NJ.

The base salary ranges from $110K to $142K, depending on experience and location. The role may include performance bonuses and a comprehensive benefits package, including health and wellness benefits, retirement plans, educational assistance, paid leave, and holidays. For more details, see our MUFG Benefits Summary.

We consider all qualified applicants, including those with criminal histories, in accordance with applicable laws and regulations. We are an Equal Opportunity Employer committed to diversity and inclusion.