Do you want your voice heard and your actions to count?

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world’s leading financial groups. Across the globe, we’re 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world.

With a vision to be the world’s most trusted financial group, it’s part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career.

Join MUFG, where being inspired is expected and making a meaningful impact is rewarded.

The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day. A member of our recruitment team will provide more details.

Job Summary

MUFG is seeking an Insider Threat Security Engineer to utilize scientific methodologies using predictive analytics to help identify and convey insider risk and risk management activities to our business operations. Works closely with Data Loss Prevention and Global Security Operations teams and serves as the subject matter expert for the data analytics discipline. Provides recommendations and contributes to the overall strategic direction of the Insider Threat program. Will support the Insider Threat Operations Team and be responsible for maintaining systems to facilitate the analysis of insider threat alerts and events, integrating available data sources from a variety of internal and external sources into the Insider Threat Management workflow, cleaning data as necessary, and developing associated analytical models.

Major Responsibilities

This role requires a highly curious and skilled practitioner to identify and respond to high-risk activity and anomalous behaviors that may be indicative of harmful insider threat activity.  This includes intellectual property theft, espionage, fraud, sabotage, and unauthorized data disclosureMust possess the ability to document findings including timelines, evidence and artifacts relating to each eventAbility to coordinate meetings with device owners, managers, and forensics teams as needed to verify evidenceUnderstand data loss prevention, data classification, SIEM a plusManages various analytical tools and information systems to identify and follow trends in order to provide actionable intelligenceExperience with server administration in both on-premises and cloud environments. Knowledge of contemporary SIEM/UEBA platforms and their application to cyber threat analysisExperience with writing small bash, Splunk scripts, SQL queries and java programsKnowledge of networking protocols, encryption, firewalls, host and network intrusion detection systems, data loss prevention systems, Windows and LinuxUnderstanding of latest security trends, especially those associated with insider threat detection, response, and mitigation Security and IT metrics experience a plus; report creation abilities strongly desiredEvaluate / Build SIEM queries, reports, and dashboards to make recommendations on changes of events being monitoredExceptional ability to execute and drive change while never losing site of the basicsProduce documentation that will help to educate and socialize program updates to our key stakeholdersZero tolerance for operational, design, and strategy-oriented gaps

Qualifications

Bachelor's degree in Information Security or a closely related discipline, or equivalent related experienceAbility to professionally handle confidential matters with appropriate judgment around escalationExperience with data analytics tools used for insider threat information collection and knowledge of other insider threat risk scoring data analytics toolsExcellent verbal and written communication skills to translate the vision and strategy into clear priorities and direction, both internally and externallyStrong analytical and quantitative skills; ability to use data and metrics to drive recommendationsStrong knowledge of cyber risk and cybersecurity principles, including familiarity with relevant laws, regulations, and standards such as FISMA, CIS and NISTExperience consulting with business and technology partners on general security requirements, network controls and best practicesAbility to demonstrate analytical expertise, attention to detail, excellent critical thinking, logic, and solution orientation to learn and adapt quicklyPractical knowledge of recent or emerging cyber threatsKnowledge in DLP and big data technologyExperience with investigations within security domain and toolsExperience with MS Office 365 (Word, Excel, PowerPoint, Outlook), Teams, SharePoint, Visio, QuickBase, Confluence and IBM WatsonStrong technical writing, research, analysis, and analytical/problem solving skillsStrong organizational skills, including the ability to drive adherence to cybersecurity processes and tools and to keep focus on multiple tracks of work and open issues in parallelAbility to demonstrate analytical expertise, attention to detail, excellent critical thinking, logic, and solution orientation to learn and adapt quicklyA balance of technical understanding of threat detection technology and service delivery skillsSecurity and IT metrics experience a plus; report creation abilities strongly desired

The typical base pay range for this role is between $110K - $135K depending on job-related knowledge, skills, experience and location. This role may also be eligible for certain discretionary performance-based bonus and/or incentive compensation. Additionally, our Total Rewards program provides colleagues with a competitive benefits package (in accordance with the eligibility requirements and respective terms of each) that includes comprehensive health and wellness benefits, retirement plans, educational assistance and training programs, income replacement for qualified employees with disabilities, paid maternity and parental bonding leave, and paid vacation, sick days, and holidays. For more information on our Total Rewards package, please click the link below.

MUFG Benefits Summary

We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws (including (i) the San Francisco Fair Chance Ordinance, (ii) the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance, (iii) the Los Angeles County Fair Chance Ordinance, and (iv) the California Fair Chance Act) to the extent that (a) an applicant is not subject to a statutory disqualification pursuant to Section 3(a)(39) of the Securities and Exchange Act of 1934 or Section 8a(2) or 8a(3) of the Commodity Exchange Act, and (b) they do not conflict with the background screening requirements of the Financial Industry Regulatory Authority (FINRA) and the National Futures Association (NFA). The major responsibilities listed above are the material job duties of this role for which the Company reasonably believes that criminal history may have a direct, adverse and negative relationship potentially resulting in the withdrawal of conditional offer of employment, if any.

The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified.

We are proud to be an Equal Opportunity Employer and committed to leveraging the diverse backgrounds, perspectives and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate on the basis of race, color, national origin, religion, gender expression, gender identity, sex, age, ancestry, marital status, protected veteran and military status, disability, medical condition, sexual orientation, genetic information, or any other status of an individual or that individual’s associates or relatives that is protected under applicable federal, state, or local law.